VYPR

CVEs

31,171 total · page 516 of 624

  • CVE-2018-12378CriOct 18, 2018
    risk 0.64cvss 9.8epss 0.03

    A use-after-free vulnerability can occur when an IndexedDB index is deleted while still in use by JavaScript code that is providing payload values to be stored. This results in a potentially exploitable crash. This vulnerability affects Firefox < 62, Firefox ESR < 60.2, and…

  • CVE-2018-12377CriOct 18, 2018
    risk 0.64cvss 9.8epss 0.03

    A use-after-free vulnerability can occur when refresh driver timers are refreshed in some circumstances during shutdown when the timer is deleted while still in use. This results in a potentially exploitable crash. This vulnerability affects Firefox < 62, Firefox ESR < 60.2, and…

  • CVE-2018-12376CriOct 18, 2018
    risk 0.64cvss 9.8epss 0.03

    Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox < 62, Firefox ESR < 60.2,…

  • CVE-2018-12369CriOct 18, 2018
    risk 0.64cvss 9.8epss 0.03

    WebExtensions bundled with embedded experiments were not correctly checked for proper authorization. This allowed a malicious WebExtension to gain full browser permissions. This vulnerability affects Firefox ESR < 60.1 and Firefox < 61.

  • CVE-2018-18461CriOct 18, 2018
    risk 0.64cvss 9.8epss 0.04

    The Arigato Autoresponder and Newsletter (aka bft-autoresponder) v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments[] data to models/attachment.php.

  • CVE-2018-18450CriOct 17, 2018
    risk 0.64cvss 9.8epss 0.02

    apps\admin\controller\content\SingleController.php in PbootCMS before V1.3.0 build 2018-11-12 has SQL Injection, as demonstrated by the POST data to the admin.php/Single/mod/mcode/1/id/3 URI.

  • CVE-2018-15616CriOct 17, 2018
    risk 0.59cvss 9.0epss 0.03

    A vulnerability in the Web UI component of Avaya Aura System Platform could allow a remote, unauthenticated user to perform a targeted deserialization attack that could result in remote code execution. Affected versions of System Platform includes 6.3.0 through 6.3.9 and 6.4.0…

  • CVE-2018-12823CriOct 17, 2018
    risk 0.64cvss 9.8epss 0.08

    Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2018-12822CriOct 17, 2018
    risk 0.64cvss 9.8epss 0.08

    Adobe Digital Editions versions 4.5.8 and below have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2018-12814CriOct 17, 2018
    risk 0.65cvss 9.8epss 0.11

    Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2018-12813CriOct 17, 2018
    risk 0.65cvss 9.8epss 0.11

    Adobe Digital Editions versions 4.5.8 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2018-10824CriOct 17, 2018
    risk 0.68cvss 9.8epss 0.12

    An issue was discovered on D-Link DWR-116 through 1.06, DIR-140L through 1.02, DIR-640L through 1.02, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. The administrative password is stored in plaintext in…

  • CVE-2018-7076CriOct 17, 2018
    risk 0.65cvss 9.8epss 0.12

    A remote code execution vulnerability was identified in HPE Intelligent Management Center (iMC) prior to iMC PLAT 7.3 E0605P04.

  • CVE-2018-10933CriOct 17, 2018
    risk 0.69cvss 9.1epss 0.92

    A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without first performing authentication, resulting in unauthorized access.

  • CVE-2018-18427CriOct 17, 2018
    risk 0.64cvss 9.8epss 0.01

    s-cms 3.0 allows SQL Injection via the member/post.php 0_id parameter or the POST data to member/member_login.php.

  • CVE-2018-18408CriOct 17, 2018
    risk 0.64cvss 9.8epss 0.02

    A use-after-free was discovered in the tcpbridge binary of Tcpreplay 4.3.0 beta1. The issue gets triggered in the function post_args() at tcpbridge.c, causing a denial of service or possibly unspecified other impact.

  • CVE-2018-17897CriOct 17, 2018
    risk 0.64cvss 9.8epss 0.06

    LAquis SCADA Versions 4.1.0.3870 and prior has several integer overflow to buffer overflow vulnerabilities, which may allow remote code execution.

  • CVE-2018-17895CriOct 17, 2018
    risk 0.64cvss 9.8epss 0.05

    LAquis SCADA Versions 4.1.0.3870 and prior has several out-of-bounds read vulnerabilities, which may allow remote code execution.

  • CVE-2018-17893CriOct 17, 2018
    risk 0.64cvss 9.8epss 0.06

    LAquis SCADA Versions 4.1.0.3870 and prior has an untrusted pointer dereference vulnerability, which may allow remote code execution.

  • CVE-2018-3294CriOct 17, 2018
    risk 0.59cvss 9.0epss 0.02

    Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). The supported version that is affected is Prior to 5.2.20. Easily exploitable vulnerability allows low privileged attacker with network access via VRDP to compromise Oracle VM…

  • CVE-2018-3259CriOct 17, 2018
    risk 0.64cvss 9.8epss 0.03

    Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1 and 18c. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java VM.…

  • CVE-2018-3252CriOct 17, 2018
    risk 0.66cvss 9.8epss 0.28

    Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0 and 12.2.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access…

  • CVE-2018-3245CriOct 17, 2018
    risk 0.74cvss 9.8epss 0.94

    Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0 and 12.2.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access…

  • CVE-2018-3201CriOct 17, 2018
    risk 0.64cvss 9.8epss 0.03

    Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). The supported version that is affected is 12.2.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise…

  • CVE-2018-3197CriOct 17, 2018
    risk 0.64cvss 9.8epss 0.03

    Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). The supported version that is affected is 12.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise…

  • CVE-2018-3191CriOct 17, 2018
    risk 0.69cvss 9.8epss 0.63

    Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0 and 12.2.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access…

  • CVE-2018-3183CriOct 17, 2018
    risk 0.59cvss 9.0epss 0.03

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Scripting). Supported versions that are affected are Java SE: 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated…

  • CVE-2018-2913CriOct 17, 2018
    risk 0.65cvss 10.0epss 0.04

    Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate (subcomponent: Monitoring Manager). Supported versions that are affected are 12.1.2.1.0, 12.2.0.2.0 and 12.3.0.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via TCP…

  • CVE-2018-18389CriOct 16, 2018
    risk 0.57cvss 9.8epss 0.02

    Due to incorrect access control in Neo4j Enterprise Database Server 3.4.x before 3.4.9, the setting of LDAP for authentication with STARTTLS, and System Account for authorization, allows an attacker to log into the server by sending any valid username with an arbitrary password.

  • CVE-2018-18375CriOct 16, 2018
    risk 0.64cvss 9.8epss 0.01

    goform/getProfileList in Orange AirBox Y858_FL_01.16_04 allows attackers to extract APN data (name, number, username, and password) via the rand parameter.

  • CVE-2018-17532CriOct 15, 2018
    risk 0.69cvss 9.8epss 0.71

    Teltonika RUT9XX routers with firmware before 00.04.233 are prone to multiple unauthenticated OS command injection vulnerabilities in autologin.cgi and hotspotlogin.cgi due to insufficient user input sanitization. This allows remote attackers to execute arbitrary commands with…

  • CVE-2018-15540CriOct 15, 2018
    risk 0.64cvss 9.8epss 0.02

    Agentejo Cockpit performs actions on files without appropriate validation and therefore allows an attacker to traverse the file system to unintended locations and/or access arbitrary files, aka /media/api Directory Traversal.

  • CVE-2018-18322CriOct 15, 2018
    risk 0.68cvss 9.8epss 0.15

    CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.480 has Command Injection via shell metacharacters in the admin/index.php service_start, service_restart, service_fullstatus, or service_stop parameter.

  • CVE-2018-18320CriOct 15, 2018
    risk 0.64cvss 9.8epss 0.05

    An issue was discovered in the Merlin.PHP component 0.6.6 for Asuswrt-Merlin devices. An attacker can execute arbitrary commands because exec.php has a popen call. NOTE: the vendor indicates that Merlin.PHP is designed only for use on a trusted intranet network, and…

  • CVE-2018-18319CriOct 15, 2018
    risk 0.64cvss 9.8epss 0.05

    An issue was discovered in the Merlin.PHP component 0.6.6 for Asuswrt-Merlin devices. An attacker can execute arbitrary commands because api.php has an eval call, as demonstrated by the /6/api.php?function=command&class=remote&Cc='ls' URI. NOTE: the vendor indicates that…

  • CVE-2018-17900CriOct 12, 2018
    risk 0.64cvss 9.8epss 0.02

    Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The web application improperly protects credentials which could allow an attacker to obtain credentials for remote access to controllers.

  • CVE-2018-17894CriOct 12, 2018
    risk 0.64cvss 9.8epss 0.02

    NUUO CMS all versions 3.1 and prior, The application creates default accounts that have hard-coded passwords, which could allow an attacker to gain privileged access.

  • CVE-2018-17890CriOct 12, 2018
    risk 0.64cvss 9.8epss 0.03

    NUUO CMS all versions 3.1 and prior, The application uses insecure and outdated software components for functionality, which could allow arbitrary code execution.

  • CVE-2018-17888CriOct 12, 2018
    risk 0.69cvss 9.8epss 0.30

    NUUO CMS all versions 3.1 and prior, The application uses a session identification mechanism that could allow attackers to obtain the active session ID, which could allow arbitrary remote code execution.

  • CVE-2018-18258CriOct 11, 2018
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in BageCMS 3.1.3. The attacker can execute arbitrary PHP code on the web server and can read any file on the web server via an index.php?r=admini/template/updateTpl&filename= URI.

  • CVE-2018-9206CriOct 11, 2018
    risk 0.74cvss 9.8epss 0.97

    Unauthenticated arbitrary file upload vulnerability in Blueimp jQuery-File-Upload <= v9.22.0

  • CVE-2018-18242CriOct 11, 2018
    risk 0.64cvss 9.8epss 0.01

    youke365 v1.1.5 has SQL injection via admin/login.html, as demonstrated by username=admin&pass=123456&code=9823&act=login&submit=%E7%99%BB+%E9%99%86.

  • CVE-2018-18240CriOct 11, 2018
    risk 0.57cvss 9.8epss 0.04

    Pippo through 1.11.0 allows remote code execution via a command to java.lang.ProcessBuilder because the XstreamEngine component does not use XStream's available protection mechanisms to restrict unmarshalling.

  • CVE-2018-12596CriOct 10, 2018
    risk 0.68cvss 9.8epss 0.22

    Episerver Ektron CMS before 9.0 SP3 Site CU 31, 9.1 before SP3 Site CU 45, or 9.2 before SP2 Site CU 22 allows remote attackers to call aspx pages via the "activateuser.aspx" page, even if a page is located under the /WorkArea/ path, which is forbidden (normally available…

  • CVE-2018-12544CriOct 10, 2018
    risk 0.57cvss 9.8epss 0.02

    In version from 3.5.Beta1 to 3.5.3 of Eclipse Vert.x, the OpenAPI XML type validator creates XML parsers without taking appropriate defense against XML attacks. This mechanism is exclusively when the developer uses the Eclipse Vert.x OpenAPI XML type validator to validate a…

  • CVE-2018-12542CriOct 10, 2018
    risk 0.57cvss 9.8epss 0.02

    In version from 3.0.0 to 3.5.3 of Eclipse Vert.x, the StaticHandler uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '\' (forward slashes) sequences that can resolve to a location that is outside of…

  • CVE-2018-12410CriOct 10, 2018
    risk 0.64cvss 9.8epss 0.04

    The web server component of TIBCO Software Inc's Spotfire Statistics Services contains multiple vulnerabilities that may allow the remote execution of code. Without needing to authenticate, an attacker may be able to remotely execute code with the permissions of the system…

  • CVE-2018-0044CriOct 10, 2018
    risk 0.64cvss 9.8epss 0.01

    An insecure SSHD configuration in Juniper Device Manager (JDM) and host OS on Juniper NFX Series devices may allow remote unauthenticated access if any of the passwords on the system are empty. The affected SSHD configuration has the PermitEmptyPasswords option set to "yes".…

  • CVE-2018-17915CriOct 10, 2018
    risk 0.64cvss 9.8epss 0.01

    All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud Server do not encrypt all device communication. This includes the XMeye service and firmware update communication. This could allow an attacker to eavesdrop on video feeds, steal XMeye login credentials, or…

  • CVE-2018-8500CriOct 10, 2018
    risk 0.58cvss 9.8epss 0.18

    A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore.