Browse CVEs
11,249 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2016-6795 | In the Convention plugin in Apache Struts 2.3.x before 2.... | Critical | 9.8 | Medium Risk | Patched | 20-Sep-17 |
| CVE-2017-9793 | The REST Plugin in Apache Struts 2.1.x, 2.3.7 through 2.3... | High | 7.5 | Medium Risk | Patched | 20-Sep-17 |
| CVE-2017-9804 | In Apache Struts 2.3.7 through 2.3.33 and 2.5 through 2.5... | High | 7.5 | Medium Risk | Patched | 20-Sep-17 |
| CVE-2016-8738 | In Apache Struts 2.5 through 2.5.5, if an application all... | Medium | 5.9 | Medium Risk | Patched | 20-Sep-17 |
| CVE-2017-9790 | When handling a libprocess message wrapped in an HTTP req... | High | 7.5 | Medium Risk | Patched | 29-Sep-17 |
| CVE-2017-7687 | When handling a decoding failure for a malformed URL path... | High | 7.5 | Medium Risk | Patched | 29-Sep-17 |
| CVE-2017-14942 | Intelbras WRN 150 devices allow remote attackers to read ... | Critical | 9.8 | Medium Risk | 30-Sep-17 | |
| CVE-2016-4434 | Apache Tika before 1.13 does not properly initialize the ... | High | 7.8 | Medium Risk | Patched | 30-Sep-17 |
| CVE-2017-9794 | When a cluster is operating in secure mode, a user with r... | Medium | 4.3 | Medium Risk | Patched | 30-Sep-17 |
| CVE-2016-6806 | Apache Wicket 6.x before 6.25.0, 7.x before 7.5.0, and 8.... | High | 8.8 | Medium Risk | Patched | 03-Oct-17 |