CVE in 2017

18,113 vulnerabilities published +177.9% vs 2016

2014 2015 2016 2017 2018 2019 2020

18,113

Total CVEs

336

Critical

822

High

7.5

CVSS Average

Monthly Distribution

1,141 CVEs

19 critical

Jan

1,141

1,075 CVEs

13 critical

Feb

1,075

1,371 CVEs

18 critical

Mar

1,371

1,592 CVEs

24 critical

Apr

1,592

4,155 CVEs

28 critical

May

4,155

1,043 CVEs

22 critical

Jun

1,043

1,312 CVEs

22 critical

Jul

1,312

1,564 CVEs

39 critical

Aug

1,564

1,232 CVEs

71 critical

Sep

1,232

1,433 CVEs

21 critical

Oct

1,433

1,077 CVEs

25 critical

Nov

1,077

1,118 CVEs

34 critical

Dec

1,118

Top 20 Most Critical CVEs of 2017

View all

CVE-2017-16845

hw/input/ps2.c in Qemu does not validate 'rptr' and 'count' values during guest migration, leading to out-of-bounds access.

Nov 17 10.0

CVE-2017-2788

A buffer overflows exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet…

Mar 10 10.0

CVE-2016-9343

An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 (excluding all firmware versions prior…

Feb 13 10.0

CVE-2017-12905

Server Side Request Forgery vulnerability in Vebto Pixie Image Editor 1.4 and 1.7 allows remote attackers to disclose information or…

Sep 25 10.0

CVE-2017-7876

This command injection vulnerability in QTS allows attackers to run arbitrary commands in the compromised application. QNAP have already fixed…

Jun 15 10.0

CVE-2017-8110

www.modified-shop.org modified eCommerce Shopsoftware 2.0.2.2 rev 10690 has XXE in api/it-recht-kanzlei/api-it-recht-kanzlei.php.

Apr 25 10.0

CVE-2017-15944 KEV

Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote attackers to…

Dec 11 9.8

CVE-2017-3881 KEV

A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could…

Mar 17 9.8

CVE-2017-12943

D-Link DIR-600 Rev Bx devices with v2.x firmware allow remote attackers to read passwords via a model/__show_info.php?REQUIRE_FILE= absolute path traversal…

Aug 18 9.8

CVE-2017-6862 KEV

NETGEAR WNR2000v3 devices before 1.1.2.14, WNR2000v4 devices before 1.0.0.66, and WNR2000v5 devices before 1.0.0.42 allow authentication bypass and remote code…

May 26 9.8

CVE-2017-8543 KEV

Microsoft Windows XP SP3, Windows XP x64 XP2, Windows Server 2003 SP2, Windows Vista, Windows 7 SP1, Windows Server 2008…

Jun 15 9.8

CVE-2017-6316 KEV

Citrix NetScaler SD-WAN devices through v9.1.2.26.561201 allow remote attackers to execute arbitrary shell commands as root via a CGISESSID cookie.…

Jul 20 9.8

CVE-2016-1555 KEV

(1) boardData102.php, (2) boardData103.php, (3) boardDataJP.php, (4) boardDataNA.php, and (5) boardDataWW.php in Netgear WN604 before 3.3.3 and WN802Tv2, WNAP210v2, WNAP320,…

Apr 21 9.8

CVE-2016-10174 KEV

The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL /apply.cgi?/lang_check.html. This buffer overflow…

Jan 30 9.8

CVE-2017-9602

KBVault Mysql Free Knowledge Base application package 0.16a comes with a FileExplorer/Explorer.aspx?id=/Uploads file-management component. An unauthenticated user can access the…

Jun 16 9.8

CVE-2017-7312

An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId/275 URI, anyone can add a…

Jun 7 9.8

CVE-2016-7836 KEV

SKYSEA Client View Ver.11.221.03 and earlier allows remote code execution via a flaw in processing authentication on the TCP connection…

Jun 9 9.8

CVE-2017-7921 KEV

An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0…

May 6 9.8

CVE-2016-8735 KEV

Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and…

Apr 6 9.8

CVE-2014-3931 KEV

fastping.c in MRLG (aka Multi-Router Looking Glass) before 5.5.0 allows remote attackers to cause an arbitrary memory write and memory…

Mar 31 9.8

Explore Other Years

2026 2025 2024 2023 2022 2021 2020 2019 2018 2017 2016 2015 2014 2013 2012

CVE Vulnerabilities

Posts & Pages

CVE in 2017

Monthly Distribution

Top 20 Most Critical CVEs of 2017

Explore Other Years