Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 31 - 40 of 86244 in total

SUSE: CVE-2017-2937: SUSE Linux Security Advisory Vulnerability

  • Severity: 10
  • Published: January 09, 2017

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript FileReference class, when using class inheritance. Successful exploitation could lead to arbitrary code execution.

SUSE: CVE-2017-2927: SUSE Linux Security Advisory Vulnerability

  • Severity: 10
  • Published: January 09, 2017

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability when processing Adobe Texture Format files. Successful exploitation could lead to arbitrary code execution.

Amazon Linux AMI: CVE-2016-9962: Security patch for docker (ALAS-2017-783) Vulnerability

  • Severity: 4
  • Published: January 09, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From ALAS-2017-783:

It was discovered that runC allowed additional container processes via `runc exec` to be ptraced by the pid 1 of the container. This allows...

SUSE: CVE-2017-2928: SUSE Linux Security Advisory Vulnerability

  • Severity: 10
  • Published: January 09, 2017

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to setting visual mode effects. Successful exploitation could lead to arbitrary code execution.