VYPR

CVEs

100,075 total · page 1665 of 2,002

  • CVE-2018-8544HigNov 14, 2018
    risk 0.64cvss 8.8epss 0.48

    A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server…

  • CVE-2018-8543HigNov 14, 2018
    risk 0.43cvss 7.5epss 0.14

    A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8541,…

  • CVE-2018-8542HigNov 14, 2018
    risk 0.43cvss 7.5epss 0.14

    A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8541,…

  • CVE-2018-8541HigNov 14, 2018
    risk 0.43cvss 7.5epss 0.14

    A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8542,…

  • CVE-2018-8539HigNov 14, 2018
    risk 0.52cvss 7.8epss 0.19

    A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Microsoft SharePoint Server, Microsoft Office. This CVE ID is unique from…

  • CVE-2018-8524HigNov 14, 2018
    risk 0.52cvss 7.8epss 0.19

    A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique…

  • CVE-2018-8522HigNov 14, 2018
    risk 0.52cvss 7.8epss 0.19

    A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique…

  • CVE-2018-8485HigNov 14, 2018
    risk 0.51cvss 7.8epss 0.01

    An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1,…

  • CVE-2018-8471HigNov 14, 2018
    risk 0.51cvss 7.8epss 0.01

    An elevation of privilege vulnerability exists in the way that the Microsoft RemoteFX Virtual GPU miniport driver handles objects in memory, aka "Microsoft RemoteFX Virtual GPU miniport driver Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10,…

  • CVE-2018-8450HigNov 14, 2018
    risk 0.58cvss 8.8epss 0.16

    A remote code execution vulnerability exists when Windows Search handles objects in memory, aka "Windows Search Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows…

  • CVE-2018-8415HigNov 14, 2018
    risk 0.51cvss 7.8epss 0.01

    A tampering vulnerability exists in PowerShell that could allow an attacker to execute unlogged code, aka "Microsoft PowerShell Tampering Vulnerability." This affects Windows 7, PowerShell Core 6.1, Windows Server 2012 R2, Windows RT 8.1, PowerShell Core 6.0, Windows Server…

  • CVE-2018-8256HigNov 14, 2018
    risk 0.59cvss 8.8epss 0.23

    A remote code execution vulnerability exists when PowerShell improperly handles specially crafted files, aka "Microsoft PowerShell Remote Code Execution Vulnerability." This affects Windows RT 8.1, PowerShell Core 6.0, Microsoft.PowerShell.Archive 1.2.2.0, Windows Server 2016,…

  • CVE-2018-16470HigNov 13, 2018
    risk 0.49cvss 7.5epss 0.02

    There is a possible DoS vulnerability in the multipart parser in Rack before 2.0.6. Specially crafted requests can cause the multipart parser to enter a pathological state, causing the parser to use CPU resources disproportionate to the request size.

  • CVE-2018-6980HigNov 13, 2018
    risk 0.47cvss 7.2epss 0.01

    VMware vRealize Log Insight (4.7.x before 4.7.1 and 4.6.x before 4.6.2) contains a vulnerability due to improper authorization in the user registration method. Successful exploitation of this issue may allow Admin users with view only permission to perform certain administrative…

  • CVE-2018-8009HigNov 13, 2018
    risk 0.51cvss 8.8epss 0.08

    Apache Hadoop 3.1.0, 3.0.0-alpha to 3.0.2, 2.9.0 to 2.9.1, 2.8.0 to 2.8.4, 2.0.0-alpha to 2.7.6, 0.23.0 to 0.23.11 is exploitable via the zip slip vulnerability in places that accept a zip file.

  • CVE-2018-17614HigNov 13, 2018
    risk 0.58cvss 8.8epss 0.09

    This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Losant Arduino MQTT Client prior to V2.7. User interaction is not required to exploit this vulnerability. The specific flaw exists within the parsing of MQTT PUBLISH packets. The…

  • CVE-2018-2491HigNov 13, 2018
    risk 0.51cvss 7.8epss 0.01

    When opening a deep link URL in SAP Fiori Client with log level set to "Debug", the client application logs the URL to the log file. If this URL contains malicious JavaScript code it can eventually run inside the built-in log viewer of the application in case user opens the…

  • CVE-2018-2490HigNov 13, 2018
    risk 0.51cvss 7.8epss 0.01

    The broadcast messages received by SAP Fiori Client are not protected by permissions. SAP Fiori Client version 1.11.5 in Google Play store addresses these issues and users must update to that version.

  • CVE-2018-2489HigNov 13, 2018
    risk 0.51cvss 7.8epss 0.01

    Locally, without any permission, an arbitrary android application could delete the SSO configuration of SAP Fiori Client. SAP Fiori Client version 1.11.5 in Google Play store addresses these issues and users must update to that version.

  • CVE-2018-2488HigNov 13, 2018
    risk 0.51cvss 7.8epss 0.01

    It is possible for a malware application installed on an Android device to send local push notifications with an empty message to SAP Fiori Client and cause the application to crash. SAP Fiori Client version 1.11.5 in Google Play store addresses these issues and users must…

  • CVE-2018-2487HigNov 13, 2018
    risk 0.54cvss 8.3epss 0.02

    SAP Disclosure Management 10.x allows an attacker to exploit through a specially crafted zip file provided by users: When extracted in specific use cases, files within this zip file can land in different locations than the originally intended extraction point.

  • CVE-2018-2485HigNov 13, 2018
    risk 0.50cvss 7.7epss 0.01

    It is possible for a malicious application or malware to execute JavaScript in a SAP Fiori application. This can include reading and writing of information and calling device specific JavaScript APIs in the application. SAP Fiori Client version 1.11.5 in Google Play store…

  • CVE-2018-2482HigNov 13, 2018
    risk 0.49cvss 7.5epss 0.02

    SAP Mobile Secure Android Application, Mobile-secure.apk Android client, before version 6.60.19942.0, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. Install the Mobile Secure Android client released in Mid-Oct…

  • CVE-2018-2481HigNov 13, 2018
    risk 0.47cvss 7.2epss 0.01

    In some SAP standard roles, in SAP_ABA versions, 7.00 to 7.02, 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50, 75C to 75D, a transaction code reserved for customer is used. By implementing such transaction code a malicious user may execute unauthorized transaction functionality.

  • CVE-2018-2478HigNov 13, 2018
    risk 0.47cvss 7.2epss 0.02

    An attacker can use specially crafted inputs to execute commands on the host of a TREX / BWA installation, SAP Basis, versions: 7.0 to 7.02, 7.10 to 7.11, 7.30, 7.31, 7.40 and 7.50 to 7.53. Not all commands are possible, only those that can be executed by the adm user. The…

  • CVE-2018-2477HigNov 13, 2018
    risk 0.57cvss 8.8epss 0.02

    Knowledge Management (XMLForms) in SAP NetWeaver, versions 7.30, 7.31, 7.40 and 7.50 does not sufficiently validate an XML document accepted from an untrusted source.

  • CVE-2018-14657HigNov 13, 2018
    risk 0.53cvss 8.1epss 0.01

    A flaw was found in Keycloak 4.2.1.Final, 4.3.0.Final. When TOPT enabled, an improper implementation of the Brute Force detection algorithm will not enforce its protection measures.

  • CVE-2018-12416HigNov 13, 2018
    risk 0.46cvss 7.1epss 0.01

    The GridServer Broker and GridServer Director components of TIBCO Software Inc.'s TIBCO DataSynapse GridServer Manager contain vulnerabilities which may allow an unauthenticated user to perform cross-site request forgery (CSRF). Affected releases are TIBCO Software Inc. TIBCO…

  • CVE-2018-1792HigNov 13, 2018
    risk 0.57cvss 8.8epss 0.01

    IBM WebSphere MQ 8.0.0.0 through 8.0.0.10, 9.0.0.0 through 9.0.0.5, 9.0.1 through 9.0.5, and 9.1.0.0 could allow a local user to inject code that could be executed with root privileges. IBM X-Force ID: 148947.

  • CVE-2018-17187HigNov 13, 2018
    risk 0.41cvss 7.4epss 0.03

    The Apache Qpid Proton-J transport includes an optional wrapper layer to perform TLS, enabled by use of the 'transport.ssl(...)' methods. Unless a verification mode was explicitly configured, client and server modes previously defaulted as documented to not verifying a peer…

  • CVE-2018-15795HigNov 13, 2018
    risk 0.53cvss 8.1epss 0.01

    Pivotal CredHub Service Broker, versions prior to 1.1.0, uses a guessable form of random number generation in creating service broker's UAA client. A remote malicious user may guess the client secret and obtain or modify credentials for users of the CredHub Service.

  • CVE-2018-15772HigNov 13, 2018
    risk 0.46cvss 7.1epss 0.00

    Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an uncontrolled resource consumption vulnerability. A malicious boxmgmt user may potentially be able to consume large amount of CPU bandwidth to make the system slow or to…

  • CVE-2018-19246HigNov 13, 2018
    risk 0.05cvss 7.5epss 0.22

    PHP-Proxy 5.1.0 allows remote attackers to read local files if the default "pre-installed version" (intended for users who lack shell access to their web server) is used. This occurs because the aeb067ca0aa9a3193dce3a7264c90187 app_key value from the default config.php is in…

  • CVE-2018-19244HigNov 13, 2018
    risk 0.56cvss 8.6epss 0.02

    An XML External Entity (XXE) vulnerability exists in the Charles 4.2.7 import/export setup option. If a user imports a "Charles Settings.xml" file from an attacker, an intranet network may be accessed and information may be leaked.

  • CVE-2018-19228HigNov 12, 2018
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in LAOBANCMS 2.0. It allows arbitrary file deletion via ../ directory traversal in the admin/pic.php del parameter, as demonstrated by deleting install/install.txt to permit a reinstallation.

  • CVE-2018-19225HigNov 12, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in LAOBANCMS 2.0. admin/mima.php has CSRF.

  • CVE-2018-19224HigNov 12, 2018
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in LAOBANCMS 2.0. /admin/login.php allows spoofing of the id and guanliyuan cookies.

  • CVE-2018-19216HigNov 12, 2018
    risk 0.51cvss 7.8epss 0.01

    Netwide Assembler (NASM) before 2.13.02 has a use-after-free in detoken at asm/preproc.c.

  • CVE-2018-19215HigNov 12, 2018
    risk 0.51cvss 7.8epss 0.01

    Netwide Assembler (NASM) 2.14rc16 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for the special cases of the % and $ and ! characters.

  • CVE-2018-19214HigNov 12, 2018
    risk 0.51cvss 7.8epss 0.01

    Netwide Assembler (NASM) 2.14rc15 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for insufficient input.

  • CVE-2018-19205HigNov 12, 2018
    risk 0.49cvss 7.5epss 0.02

    Roundcube before 1.3.7 mishandles GnuPG MDC integrity-protection warnings, which makes it easier for attackers to obtain sensitive information, a related issue to CVE-2017-17688. This is associated with plugins/enigma/lib/enigma_driver_gnupg.php.

  • CVE-2018-19204HigNov 12, 2018
    risk 0.58cvss 8.8epss 0.05

    PRTG Network Monitor before 18.3.44.2054 allows a remote authenticated attacker (with read-write privileges) to execute arbitrary code and OS commands with system privileges. When creating an HTTP Advanced Sensor, the user's input in the POST parameter 'proxyport_' is…

  • CVE-2018-19203HigNov 12, 2018
    risk 0.49cvss 7.5epss 0.03

    PRTG Network Monitor before 18.2.41.1652 allows remote unauthenticated attackers to terminate the PRTG Core Server Service via a special HTTP request.

  • CVE-2018-19200HigNov 12, 2018
    risk 0.00cvss 7.5epss 0.02

    An issue was discovered in uriparser before 0.9.0. UriCommon.c allows attempted operations on NULL input via a uriResetUri* function.

  • CVE-2018-19192HigNov 12, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in XiaoCms 20141229. admin/index.php?c=content&a=add&catid=3 has CSRF, as demonstrated by entering news via the data[content] parameter.

  • CVE-2018-19184HigNov 12, 2018
    risk 0.42cvss 7.5epss 0.02

    cmd/evm/runner.go in Go Ethereum (aka geth) 1.8.17 allows attackers to cause a denial of service (SEGV) via crafted bytecode.

  • CVE-2018-19183HigNov 12, 2018
    risk 0.49cvss 7.5epss 0.03

    ethereumjs-vm 2.4.0 allows attackers to cause a denial of service (vm.runCode failure and REVERT) via a "code: Buffer.from(my_code, 'hex')" attribute. NOTE: the vendor disputes this because REVERT is a normal bytecode that can be triggered from high-level source code, leading to…

  • CVE-2018-18920HigNov 12, 2018
    risk 0.57cvss 8.8epss 0.03

    Py-EVM v0.2.0-alpha.33 allows attackers to make a vm.execute_bytecode call that triggers computation._stack.values with '"stack": [100, 100, 0]' where b'\x' was expected, resulting in an execution failure because of an invalid opcode. This is reportedly related to "smart…

  • CVE-2018-19181HigNov 11, 2018
    risk 0.49cvss 7.5epss 0.01

    statics/ueditor/php/vendor/Local.class.php in YUNUCMS 1.1.5 allows arbitrary file deletion via the statics/ueditor/php/controller.php?action=remove key parameter, as demonstrated by using directory traversal to delete the install.lock file.

  • CVE-2018-19135HigNov 11, 2018
    risk 0.60cvss 8.8epss 0.03

    ClipperCMS 1.3.3 does not have CSRF protection on its kcfinder file upload (enabled by default). This can be used by an attacker to perform actions for an admin (or any user with the file upload capability). With this vulnerability, one can automatically upload files (by…