CVE-2017-6820 (roundcube_webmail)
rcube_utils.php in Roundcube before 1.1.8 and 1.2.x before 1.2.4 is susceptible to a cross-site scripting vulnerability via a crafted Cascading Style Sheets (CSS) token sequence within an SVG element.
[월:] 2017년 03월
CVE-2017-5624 (oxygenos)
CVE-2017-5624 (oxygenos)
An issue was discovered in OxygenOS before 4.0.3 for OnePlus 3 and 3T. The attacker can persistently make the (locked) bootloader start the platform with dm-verity disabled, by issuing the ‘fastboot oem disable_dm_verity’ command. Having dm-verity disabled, the kernel will not verify the system partition (and any other dm-verity protected partition), which may allow for persistent code execution and privilege escalation.
Source: CVE-2017-5624 (oxygenos)
CVE-2017-5626 (oxygenos)
CVE-2017-5626 (oxygenos)
OxygenOS before version 4.0.2, on OnePlus 3 and 3T, has two hidden fastboot oem commands (4F500301 and 4F500302) that allow the attacker to lock/unlock the bootloader, disregarding the ‘OEM Unlocking’ checkbox, without user confirmation and without a factory reset. This allows for persistent code execution with high privileges (kernel/root) with complete access to user data.
Source: CVE-2017-5626 (oxygenos)
CVE-2017-6823 (fiyo_cms)
CVE-2017-6823 (fiyo_cms)
Fiyo CMS 2.0.6.1 allows remote authenticated users to gain privileges via a modified level parameter to dapur/ in an app=user&act=edit action.
Source: CVE-2017-6823 (fiyo_cms)
CVE-2017-5624
CVE-2017-5624
An issue was discovered in OxygenOS before 4.0.3 for OnePlus 3 and 3T. The attacker can persistently make the (locked) bootloader start the platform with dm-verity disabled, by issuing the ‘fastboot oem disable_dm_verity’ command. Having dm-verity disabled, the kernel will not verify the system partition (and any other dm-verity protected partition), which may allow for persistent code execution and privilege escalation.
Source: CVE-2017-5624
CVE-2017-5626
CVE-2017-5626
OxygenOS before version 4.0.2, on OnePlus 3 and 3T, has two hidden fastboot oem commands (4F500301 and 4F500302) that allow the attacker to lock/unlock the bootloader, disregarding the ‘OEM Unlocking’ checkbox, without user confirmation and without a factory reset. This allows for persistent code execution with high privileges (kernel/root) with complete access to user data.
Source: CVE-2017-5626
CVE-2017-6820
CVE-2017-6820
rcube_utils.php in Roundcube before 1.1.8 and 1.2.x before 1.2.4 is susceptible to a cross-site scripting vulnerability via a crafted Cascading Style Sheets (CSS) token sequence within an SVG element.
Source: CVE-2017-6820
CVE-2017-6823
CVE-2017-6823
Fiyo CMS 2.0.6.1 allows remote authenticated users to gain privileges via a modified level parameter to dapur/ in an app=user&act=edit action.
Source: CVE-2017-6823
CVE-2017-6444
CVE-2017-6444
The MikroTik Router hAP Lite 6.25 has no protection mechanism for unsolicited TCP ACK packets in the case of a fast network connection, which allows remote attackers to cause a denial of service (CPU consumption) by sending many ACK packets. After the attacker stops the exploit, the CPU usage is 100% and the router requires a reboot for normal operation.
Source: CVE-2017-6444
CVE-2017-6815 (wordpress)
CVE-2017-6815 (wordpress)
In WordPress before 4.7.3 (wp-includes/pluggable.php), control characters can trick redirect URL validation.
Source: CVE-2017-6815 (wordpress)