cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2017-8139,https://securityvulnerability.io/vulnerability/CVE-2017-8139,,HedEx Earlier than V200R006C00 versions have the stored cross-site scripting (XSS) vulnerability. Attackers can exploit the vulnerability to plant malicious scripts into the configuration file to interrupt the services of legitimate users.,McAfee,Hedex Lite,6.1,MEDIUM,0.0008900000248104334,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-8138,https://securityvulnerability.io/vulnerability/CVE-2017-8138,,HedEx Earlier than V200R006C00 versions has a cross-site request forgery (CSRF) vulnerability. An attacker could trick a user into accessing a website containing malicious scripts which may tamper with configurations and interrupt normal services.,McAfee,Hedex Lite,8.8,HIGH,0.0007999999797903001,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-8136,https://securityvulnerability.io/vulnerability/CVE-2017-8136,,HedEx Earlier than V200R006C00 versions has an arbitrary file download vulnerability. An attacker could exploit it to download arbitrary files on a target device to cause information leak.,McAfee,Hedex Lite,5.5,MEDIUM,0.0007200000109151006,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-8137,https://securityvulnerability.io/vulnerability/CVE-2017-8137,,"HedEx Earlier than V200R006C00 versions has a dynamic link library (DLL) hijacking vulnerability due to calling the DDL file by accessing a relative path. An attacker could exploit this vulnerability to tamper with the DLL file, leading to DLL hijacking.",McAfee,Hedex Lite,7.8,HIGH,0.000699999975040555,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0