Artica Web Proxy before 3.06.112911 allows remote attackers to execute arbitrary code as root by conducting a cross-site scripting (XSS) attack involving the username-form-id parameter to freeradius.users.php. Date published : 2017-12-06 https://www.exploit-db.com/exploits/43206/ http://seclists.org/fulldisclosure/2017/Dec/3
Cross-site scripting (XSS) vulnerability in MistServer before 2.13 allows remote attackers to inject arbitrary web script or HTML via vectors related to failed authentication requests alerts. Date published : 2017-12-06 https://news.mistserver.org/news/78/Stable+release+2.13+now+available%21 https://www.exploit-db.com/exploits/43205/
A non-privileged user is able to mount a fuse filesystem on RHEL 6 or 7 and crash a system if an application punches a hole in a file that does not end aligned to...
An information disclosure vulnerability in the NVIDIA libwilhelm. Product: Android. Versions: Android kernel. Android ID A-64339309. References: N-CVE-2017-13175. Date published : 2017-12-06 https://source.android.com/security/bulletin/pixel/2017-12-01
An elevation of privilege vulnerability in the kernel edl. Product: Android. Versions: Android kernel. Android ID A-63100473. Date published : 2017-12-06 http://www.securityfocus.com/bid/102107 https://source.android.com/security/bulletin/2017-12-01
An elevation of privilege vulnerability in the MediaTek system server. Product: Android. Versions: Android kernel. Android ID A-28067350. References: M-ALPS02672361. Date published : 2017-12-06 http://www.securityfocus.com/bid/102108 https://source.android.com/security/bulletin/2017-12-01
An elevation of privilege vulnerability in the MediaTek bluetooth driver. Product: Android. Versions: Android kernel. Android ID A-36493287. References: M-ALPS03495791. Date published : 2017-12-06 https://source.android.com/security/bulletin/pixel/2017-12-01
An elevation of privilege vulnerability in the MediaTek performance service. Product: Android. Versions: Android kernel. Android ID A-64316572. References: M-ALPS03479086. Date published : 2017-12-06 http://www.securityfocus.com/bid/102108 https://source.android.com/security/bulletin/2017-12-01
An elevation of privilege vulnerability in the MediaTek display driver. Product: Android. Versions: Android kernel. Android ID A-36102397. References: M-ALPS03359280. Date published : 2017-12-06 http://www.securityfocus.com/bid/102108 https://source.android.com/security/bulletin/2017-12-01
An information disclosure vulnerability in the kernel camera server. Product: Android. Versions: Android kernel. Android ID A-37512375. Date published : 2017-12-06 https://source.android.com/security/bulletin/pixel/2017-12-01
An elevation of privilege vulnerability in the kernel scsi driver. Product: Android. Versions: Android kernel. Android ID A-65023233. Date published : 2017-12-06 https://source.android.com/security/bulletin/pixel/2017-12-01 https://usn.ubuntu.com/3753-1/
An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993. Date published : 2017-12-06 https://source.android.com/security/bulletin/pixel/2017-12-01 http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00007.html
An elevation of privilege vulnerability in the kernel v4l2 video driver. Product: Android. Versions: Android kernel. Android ID A-34624167. Date published : 2017-12-06 https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0 https://source.android.com/security/bulletin/pixel/2017-12-01
An elevation of privilege vulnerability in the kernel file system. Product: Android. Versions: Android kernel. Android ID A-31269937. Date published : 2017-12-06 https://source.android.com/security/bulletin/pixel/2017-12-01