VYPR

CVEs

100,082 total · page 1656 of 2,002

  • CVE-2018-20061HigDec 11, 2018
    risk 0.49cvss 7.5epss 0.01

    A SQL injection issue was discovered in ERPNext 10.x and 11.x through 11.0.3-beta.29. This attack is only available to a logged-in user; however, many ERPNext sites allow account creation via the web. No special privileges are needed to conduct the attack. By calling a…

  • CVE-2018-19969HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.01

    phpMyAdmin 4.7.x and 4.8.x versions prior to 4.8.4 are affected by a series of CSRF flaws. By deceiving a user into clicking on a crafted URL, it is possible to perform harmful SQL operations such as renaming databases, creating new tables/routines, deleting designer pages,…

  • CVE-2018-1904HigDec 11, 2018
    risk 0.53cvss 8.1epss 0.04

    IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow remote attackers to execute arbitrary Java code through an administrative client class with a serialized object from untrusted sources. IBM X-Force ID: 152533.

  • CVE-2018-18359HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.01

    Incorrect handling of Reflect.construct in V8 in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

  • CVE-2018-18356HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.03

    An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-18354HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.01

    Insufficient validate of external protocols in Shell Integration in Google Chrome on Windows prior to 71.0.3578.80 allowed a remote attacker to launch external programs via a crafted HTML page.

  • CVE-2018-18347HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.01

    Incorrect handling of failed navigations with invalid URLs in Navigation in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to trick a user into executing javascript in an arbitrary origin via a crafted HTML page.

  • CVE-2018-18343HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.01

    Incorrect handing of paths leading to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-18342HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.03

    Execution of user supplied Javascript during object deserialization can update object length leading to an out of bounds write in V8 in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

  • CVE-2018-18341HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.01

    An integer overflow leading to a heap buffer overflow in Blink in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-18340HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.01

    Incorrect object lifecycle in MediaRecorder in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-18339HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.01

    Incorrect object lifecycle in WebAudio in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-18338HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.01

    Incorrect, thread-unsafe use of SkImage in Canvas in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-18337HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.02

    Incorrect handling of stylesheets leading to a use after free in Blink in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-18336HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.02

    Incorrect object lifecycle in PDFium in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

  • CVE-2018-18335HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.04

    Heap buffer overflow in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-17481HigDec 11, 2018
    risk 0.57cvss 8.8epss 0.02

    Incorrect object lifecycle handling in PDFium in Google Chrome prior to 71.0.3578.98 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

  • CVE-2018-17480HigKEVDec 11, 2018
    risk 0.72cvss 8.8epss 0.34

    Execution of user supplied Javascript during array deserialization leading to an out of bounds write in V8 in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

  • CVE-2018-20058HigDec 11, 2018
    risk 0.49cvss 7.5epss 0.01

    In Evernote before 7.6 on macOS, there is a local file path traversal issue in attachment previewing, aka MACOSNOTE-28634.

  • CVE-2018-20057HigDec 11, 2018
    risk 0.58cvss 8.8epss 0.07

    An issue was discovered in /bin/boa on D-Link DIR-619L Rev.B 2.06B1 and DIR-605L Rev.B 2.12B1 devices. goform/formSysCmd allows remote authenticated users to execute arbitrary OS commands via the sysCmd POST parameter.

  • CVE-2018-20051HigDec 10, 2018
    risk 0.49cvss 7.5epss 0.01

    Mishandling of '>' on the Jooan JA-Q1H Wi-Fi camera with firmware 21.0.0.91 allows remote attackers to cause a denial of service (crash and reboot) via certain ONVIF methods such as CreateUsers, SetImagingSettings, GetStreamUri, and so on.

  • CVE-2018-20050HigDec 10, 2018
    risk 0.49cvss 7.5epss 0.01

    Mishandling of an empty string on the Jooan JA-Q1H Wi-Fi camera with firmware 21.0.0.91 allows remote attackers to cause a denial of service (crash and reboot) via the ONVIF GetStreamUri method and GetVideoEncoderConfigurationOptions method.

  • CVE-2018-15800HigDec 10, 2018
    risk 0.46cvss 8.1epss 0.01

    Cloud Foundry Bits Service, versions prior to 2.18.0, includes an information disclosure vulnerability. A remote malicious user may execute a timing attack to brute-force the signing key, allowing them complete read and write access to the the Bits Service storage.

  • CVE-2018-1279HigDec 10, 2018
    risk 0.55cvss 8.5epss 0.02

    Pivotal RabbitMQ for PCF, all versions, uses a deterministically generated cookie that is shared between all machines when configured in a multi-tenant cluster. A remote attacker who can gain information about the network topology can guess this cookie and, if they have access…

  • CVE-2018-1000866HigDec 10, 2018
    risk 0.50cvss 8.8epss 0.02

    A sandbox bypass vulnerability exists in Pipeline: Groovy Plugin 2.59 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/SandboxTransformer.java, groovy-cps/lib/src/main/java/com/cloudbees/groovy/cps/SandboxCpsTransformer.java that allows attackers with…

  • CVE-2018-1000865HigDec 10, 2018
    risk 0.50cvss 8.8epss 0.02

    A sandbox bypass vulnerability exists in Script Security Plugin 1.47 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/SandboxTransformer.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM, if plugins…

  • CVE-2018-1000863HigDec 10, 2018
    risk 0.47cvss 8.2epss 0.07

    A data modification vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in User.java, IdStrategy.java that allows attackers to submit crafted user names that can cause an improper migration of user record storage formats, potentially preventing the victim…

  • CVE-2018-20018HigDec 10, 2018
    risk 0.49cvss 7.5epss 0.01

    S-CMS V3.0 has SQL injection via the S_id parameter, as demonstrated by the /1/?type=productinfo&S_id=140 URI.

  • CVE-2018-20015HigDec 10, 2018
    risk 0.57cvss 8.8epss 0.01

    YzmCMS v5.2 has admin/role/add.html CSRF.

  • CVE-2018-20004HigDec 10, 2018
    risk 0.57cvss 8.8epss 0.02

    An issue has been found in Mini-XML (aka mxml) 2.12. It is a stack-based buffer overflow in mxml_write_node in mxml-file.c via vectors involving a double-precision floating point number and the '' substring, as demonstrated by testmxml.

  • CVE-2018-20000HigDec 10, 2018
    risk 0.00cvss 7.5epss 0.02

    Apereo Bedework bw-webdav before 4.0.3 allows XXE attacks, as demonstrated by an invite-reply document that reads a local file, related to webdav/servlet/common/MethodBase.java and webdav/servlet/common/PostRequestPars.java.

  • CVE-2018-19980HigDec 8, 2018
    risk 0.49cvss 7.5epss 0.01

    Anker Nebula Capsule Pro NBUI_M1_V2.1.9 devices allow attackers to cause a denial of service (reboot of the underlying Android 7.1.2 operating system) via a crafted application that sends data to WifiService.

  • CVE-2018-19966HigDec 8, 2018
    risk 0.57cvss 8.8epss 0.00

    An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service (host OS crash) or possibly gain host OS privileges because of an interpretation conflict for a union data structure associated with shadow paging. NOTE: this issue exists…

  • CVE-2018-19963HigDec 8, 2018
    risk 0.51cvss 7.8epss 0.00

    An issue was discovered in Xen 4.11 allowing HVM guest OS users to cause a denial of service (host OS crash) or possibly gain host OS privileges because x86 IOREQ server resource accounting (for external emulators) was mishandled.

  • CVE-2018-19962HigDec 8, 2018
    risk 0.51cvss 7.8epss 0.00

    An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because small IOMMU mappings are unsafely combined into larger ones.

  • CVE-2018-19961HigDec 8, 2018
    risk 0.51cvss 7.8epss 0.00

    An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because TLB flushes do not always occur after IOMMU mapping changes.

  • CVE-2018-9577HigDec 7, 2018
    risk 0.51cvss 7.8epss 0.01

    In impd_parametric_drc_parse_gain_set_params of impd_drc_static_payload.c there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.…

  • CVE-2018-9576HigDec 7, 2018
    risk 0.51cvss 7.8epss 0.01

    In impd_parse_parametric_drc_instructions of impd_drc_static_payload.c there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.…

  • CVE-2018-9575HigDec 7, 2018
    risk 0.51cvss 7.8epss 0.01

    In impd_parse_dwnmix_instructions of impd_drc_static_payload.c there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product:…

  • CVE-2018-9574HigDec 7, 2018
    risk 0.51cvss 7.8epss 0.01

    In impd_parse_split_drc_characteristic of impd_drc_static_payload.c there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product:…

  • CVE-2018-9573HigDec 7, 2018
    risk 0.51cvss 7.8epss 0.01

    In impd_parse_filt_block of impd_drc_dynamic_payload.c there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android.…

  • CVE-2018-9572HigDec 7, 2018
    risk 0.57cvss 8.8epss 0.01

    In impd_drc_parse_coeff of impd_drc_static_payload.c there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android.…

  • CVE-2018-9571HigDec 7, 2018
    risk 0.57cvss 8.8epss 0.01

    In impd_parse_loud_eq_instructions of impd_drc_dynamic_payload.c there is a possible out-of-bound write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product:…

  • CVE-2018-9570HigDec 7, 2018
    risk 0.51cvss 7.8epss 0.01

    In impd_parse_drc_ext_v1 of impd_drc_dynamic_payload.c there is a possible out-of-bound write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android.…

  • CVE-2018-9569HigDec 7, 2018
    risk 0.57cvss 8.8epss 0.01

    In impd_init_drc_decode_post_config of impd_drc_gain_decoder.c there is a possible out-of-bound write due to incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product:…

  • CVE-2018-9518HigDec 7, 2018
    risk 0.51cvss 7.8epss 0.00

    In nfc_llcp_build_sdreq_tlv of llcp_commands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android.…

  • CVE-2018-5810HigDec 7, 2018
    risk 0.00cvss 8.8epss 0.02

    An error within the "rollei_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash.

  • CVE-2018-5809HigDec 7, 2018
    risk 0.00cvss 8.8epss 0.03

    An error within the "LibRaw::parse_exif()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.

  • CVE-2018-5808HigDec 7, 2018
    risk 0.00cvss 8.8epss 0.03

    An error within the "find_green()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.

  • CVE-2018-5807HigDec 7, 2018
    risk 0.00cvss 8.8epss 0.02

    An error within the "samsung_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash.