Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 21 - 30 of 98520 in total

Cent OS: CVE-2017-7809: CESA-2017:2456 (firefox) Vulnerability

  • Severity: 4
  • Published: August 10, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From ELSA-2017-2456:

[52.3.0-3.0.1] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ...

Oracle Linux: CVE-2017-7809: ELSA-2017-2456 - firefox security update Vulnerability

  • Severity: 4
  • Published: August 10, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From ELSA-2017-2456:

[52.3.0-3.0.1] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ...

Debian: CVE-2017-7546: postgresql-9.4 -- security update Vulnerability

  • Severity: 4
  • Published: August 09, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From VID-982872F1-7DD3-11E7-9736-6CC21735F730:

The PostgreSQL project reports:

CVE-2017...

Debian: CVE-2017-9800: subversion -- security update Vulnerability

  • Severity: 4
  • Published: August 09, 2017

A maliciously constructed svn+ssh:// URL would cause Subversion clients before 1.8.19, 1.9.x before 1.9.7, and 1.10.0.x through 1.10.0-alpha3 to run an arbitrary shell command. Such a URL could be generated by a malicious server, by a malicious user committing to a honest server (to attack another user of that server's repositories), or ...

Debian: CVE-2017-7547: postgresql-9.4 -- security update Vulnerability

  • Severity: 4
  • Published: August 09, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From VID-982872F1-7DD3-11E7-9736-6CC21735F730:

The PostgreSQL project reports:

CVE-2017...

Red Hat: CVE-2017-7809: Critical: firefox security update (RHSA-2017:2456) Vulnerability

  • Severity: 4
  • Published: August 09, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From ELSA-2017-2456:

[52.3.0-3.0.1] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ...

Red Hat: CVE-2017-2885: Important: libsoup security update (RHSA-2017:2459) Vulnerability

  • Severity: 4
  • Published: August 09, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From USN-3383-1:

Aleksandar Nikolic discovered a stack based buffer overflow when handling chunked encoding. An attacker could use this to cause a denial of se...