Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 21 - 30 of 91125 in total

Oracle Linux: CVE-2017-3539: ELSA-2017-1109 - java-1.8.0-openjdk security update Vulnerability

  • Severity: 4
  • Published: April 19, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2017:1109:

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.

<...

Debian: CVE-2017-5438: firefox-esr -- security update Vulnerability

  • Severity: 4
  • Published: April 19, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2017:1106:

Mozilla Firefox is an open source web browser.

This update upgrades Firefox to version 52.1.0 ESR.

Security Fix(es...

Red Hat: CVE-2017-5434: Critical: firefox security update (RHSA-2017:1106) Vulnerability

  • Severity: 4
  • Published: April 19, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2017:1106:

Mozilla Firefox is an open source web browser.

This update upgrades Firefox to version 52.1.0 ESR.

Security Fix(es...

Cisco ASA: Software DNS Denial of Service Vulnerability (cisco-sa-20170419-asa-dns) (CVE-2017-6607) Vulnerability

  • Severity: 4
  • Published: April 19, 2017

A vulnerability in the DNS code of Cisco ASA Software could allow an unauthenticated, remote attacker to cause an affected device to reload or corrupt the information present in the device's local DNS cache. The vulnerability is due to a flaw in handling crafted DNS response messages. An attacker could exploit this vulnerability by trigg...

Debian: CVE-2017-5465: firefox-esr -- security update Vulnerability

  • Severity: 4
  • Published: April 19, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2017:1106:

Mozilla Firefox is an open source web browser.

This update upgrades Firefox to version 52.1.0 ESR.

Security Fix(es...

Red Hat: CVE-2017-5456: Critical: firefox security update (RHSA-2017:1106) Vulnerability

  • Severity: 4
  • Published: April 19, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2017:1106:

Mozilla Firefox is an open source web browser.

This update upgrades Firefox to version 52.1.0 ESR.

Security Fix(es...

Debian: CVE-2017-5442: firefox-esr -- security update Vulnerability

  • Severity: 4
  • Published: April 19, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2017:1106:

Mozilla Firefox is an open source web browser.

This update upgrades Firefox to version 52.1.0 ESR.

Security Fix(es...