VYPR

CVEs

31,277 total · page 549 of 626

  • CVE-2016-6658CriMar 29, 2018
    risk 0.62cvss 9.6epss 0.01

    Applications in cf-release before 245 can be configured and pushed with a user-provided custom buildpack using a URL pointing to the buildpack. Although it is not recommended, a user can specify a credential in the URL (basic auth or OAuth) to access the buildpack through the…

  • CVE-2016-0898CriMar 29, 2018
    risk 0.65cvss 10.0epss 0.01

    MySQL for PCF tiles 1.7.x before 1.7.10 were discovered to log the AWS access key in plaintext. These credentials were logged to the Service Backup component logs, and not the system log, thus were not exposed outside the Service Backup VM.

  • CVE-2015-2020CriMar 29, 2018
    risk 0.64cvss 9.8epss 0.03

    The MyScript SDK before 1.3 for Android might allow attackers to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.

  • CVE-2015-2004CriMar 29, 2018
    risk 0.64cvss 9.8epss 0.02

    The GraceNote GNSDK SDK before SVN Changeset 1.1.7 for Android might allow attackers to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.

  • CVE-2015-2003CriMar 29, 2018
    risk 0.64cvss 9.8epss 0.02

    The PJSIP PJSUA2 SDK before SVN Changeset 51322 for Android might allow attackers to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.

  • CVE-2015-2002CriMar 29, 2018
    risk 0.64cvss 9.8epss 0.02

    The ESRI ArcGis Runtime SDK before 10.2.6-2 for Android might allow attackers to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.

  • CVE-2015-2001CriMar 29, 2018
    risk 0.64cvss 9.8epss 0.02

    The MetaIO SDK before 6.0.2.1 for Android might allow attackers to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.

  • CVE-2015-2000CriMar 29, 2018
    risk 0.64cvss 9.8epss 0.02

    The Jumio SDK before 1.5.0 for Android might allow attackers to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.

  • CVE-2014-5170CriMar 29, 2018
    risk 0.64cvss 9.8epss 0.04

    The Storage API module 7.x before 7.x-1.6 for Drupal might allow remote attackers to execute arbitrary code by leveraging failure to update .htaccess file contents after SA-CORE-2013-003.

  • CVE-2018-9031CriMar 29, 2018
    risk 0.64cvss 9.8epss 0.02

    The login interface on TNLSoftSolutions Sentry Vision 3.x devices provides password disclosure by reading an "if(pwd ==" line in the HTML source code. This means, in effect, that authentication occurs only on the client side.

  • CVE-2018-4841CriMar 29, 2018
    risk 0.64cvss 9.8epss 0.05

    A vulnerability has been identified in TIM 1531 IRC (All versions < V1.1). A remote attacker with network access to port 80/tcp or port 443/tcp could perform administrative operations on the device without prior authentication. Successful exploitation could allow to cause a…

  • CVE-2018-9116CriMar 29, 2018
    risk 0.59cvss 9.1epss 0.02

    An XXE vulnerability within WireMock before 2.16.0 allows a remote unauthenticated attacker to access local files and internal resources and potentially cause a Denial of Service.

  • CVE-2018-7600CriKEVMar 29, 2018
    risk 0.93cvss 9.8epss 1.00

    Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.

  • CVE-2018-0171CriKEVMar 28, 2018
    risk 0.87cvss 9.8epss 1.00

    A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition, or to execute arbitrary code on an affected…

  • CVE-2018-0151CriKEVMar 28, 2018
    risk 0.77cvss 9.8epss 0.14

    A vulnerability in the quality of service (QoS) subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with elevated privileges. The vulnerability is due to…

  • CVE-2018-0150CriMar 28, 2018
    risk 0.64cvss 9.8epss 0.05

    A vulnerability in Cisco IOS XE Software could allow an unauthenticated, remote attacker to log in to a device running an affected release of Cisco IOS XE Software with the default username and password that are used at initial boot, aka a Static Credential Vulnerability. The…

  • CVE-2018-7498CriMar 28, 2018
    risk 0.64cvss 9.8epss 0.01

    In Philips Alice 6 System version R8.0.2 or prior, the lack of proper data encryption passes up the guarantees of confidentiality, integrity, and accountability that properly implemented encryption conveys.

  • CVE-2018-5451CriMar 28, 2018
    risk 0.64cvss 9.8epss 0.03

    In Philips Alice 6 System version R8.0.2 or prior, when an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct. This weakness can lead to the exposure of resources or functionality to unintended actors, possibly…

  • CVE-2017-11510CriMar 28, 2018
    risk 0.64cvss 9.8epss 0.02

    An information leak exists in Wanscam's HW0021 network camera that allows an unauthenticated remote attacker to recover the administrator username and password via an ONVIF GetSnapshotUri request.

  • CVE-2018-9110CriMar 28, 2018
    risk 0.52cvss 9.1epss 0.03

    Studio 42 elFinder before 2.1.37 has a directory traversal vulnerability in elFinder.class.php with the zipdl() function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process.…

  • CVE-2018-9109CriMar 28, 2018
    risk 0.52cvss 9.1epss 0.03

    Studio 42 elFinder before 2.1.36 has a directory traversal vulnerability in elFinder.class.php with the zipdl() function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process.

  • CVE-2018-8823CriMar 28, 2018
    risk 0.68cvss 9.8epss 0.52

    modules/bamegamenu/ajax_phpcode.php in the Responsive Mega Menu (Horizontal+Vertical+Dropdown) Pro module 1.0.32 for PrestaShop 1.5.5.0 through 1.7.2.5 allows remote attackers to execute arbitrary PHP code via the code parameter.

  • CVE-2018-1237CriMar 27, 2018
    risk 0.64cvss 9.8epss 0.02

    Dell EMC ScaleIO versions prior to 2.5, contain improper restriction of excessive authentication attempts on the Light installation Agent (LIA). This component is deployed on every server in the ScaleIO cluster and is used for central management of ScaleIO nodes. A remote…

  • CVE-2018-9057CriMar 27, 2018
    risk 0.57cvss 9.8epss 0.02

    aws/resource_aws_iam_user_login_profile.go in the HashiCorp Terraform Amazon Web Services (AWS) provider through v1.12.0 has an inappropriate PRNG algorithm and seeding, which makes it easier for remote attackers to obtain access by leveraging an IAM account that was provisioned…

  • CVE-2014-4959CriMar 27, 2018
    risk 0.64cvss 9.8epss 0.02

    **DISPUTED** SQL injection vulnerability in SQLiteDatabase.java in the SQLi Api in Android allows remote attackers to execute arbitrary SQL commands via the delete method.

  • CVE-2018-9032CriMar 27, 2018
    risk 0.69cvss 9.8epss 0.29

    An authentication bypass vulnerability on D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router (Hardware Version : A1, B1; Firmware Version : 1.02-2.06) devices potentially allows attackers to bypass SharePort Web Access Portal by directly visiting /category_view.php…

  • CVE-2017-12815CriMar 26, 2018
    risk 0.65cvss 10.0epss 0.02

    Analysis of the Bomgar Remote Support Portal JavaStart.jar Applet 52790 and earlier revealed that it is vulnerable to a path traversal vulnerability. The archive can be downloaded from a given Bomgar Remote Support Portal deployment at https://domain/api/content/JavaStart.jar…

  • CVE-2014-2293CriMar 26, 2018
    risk 0.64cvss 9.8epss 0.05

    Zikula Application Framework before 1.3.7 build 11 allows remote attackers to conduct PHP object injection attacks and delete arbitrary files or execute arbitrary PHP code via crafted serialized data in the (1) authentication_method_ser or (2) authentication_info_ser parameter…

  • CVE-2014-2048CriMar 26, 2018
    risk 0.64cvss 9.8epss 0.03

    The user_openid app in ownCloud Server before 5.0.15 allows remote attackers to obtain access by leveraging an insecure OpenID implementation.

  • CVE-2018-1312CriMar 26, 2018
    risk 0.65cvss 9.8epss 0.16

    In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication configuration, HTTP requests…

  • CVE-2018-5474CriMar 26, 2018
    risk 0.64cvss 9.8epss 0.06

    Philips Intellispace Portal all versions 7.0.x and 8.0.x have an input validation vulnerability that could allow a remote attacker to execute arbitrary code or cause the application to crash.

  • CVE-2018-5472CriMar 26, 2018
    risk 0.64cvss 9.8epss 0.05

    Philips Intellispace Portal all versions 7.0.x and 8.0.x have an insecure windows permissions vulnerability that could allow an attacker to gain unauthorized access and in some cases escalate their level of privilege or execute arbitrary code.

  • CVE-2018-5468CriMar 26, 2018
    risk 0.64cvss 9.8epss 0.05

    Philips Intellispace Portal all versions 7.0.x and 8.0.x have a remote desktop access vulnerability that could allow an attacker to gain unauthorized access and in some cases escalate their level of privilege or execute arbitrary code

  • CVE-2018-8971CriMar 24, 2018
    risk 0.64cvss 9.8epss 0.01

    The Auth0 integration in GitLab before 10.3.9, 10.4.x before 10.4.6, and 10.5.x before 10.5.6 has an incorrect omniauth-auth0 configuration, leading to signing in unintended users.

  • CVE-2018-8967CriMar 24, 2018
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in zzcms 8.2. It allows SQL injection via the id parameter in an adv2.php?action=modify request.

  • CVE-2018-1000141CriMar 23, 2018
    risk 0.59cvss 9.1epss 0.01

    I, Librarian version 4.9 and earlier contains an Incorrect Access Control vulnerability in ajaxdiscussion.php that can result in any users gaining unauthorized access (read, write and delete) to project discussions.

  • CVE-2018-1000140CriMar 23, 2018
    risk 0.64cvss 9.8epss 0.10

    rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can result in Remote code execution. This attack appear to be exploitable a remote attacker that can connect to rsyslog and trigger a stack…

  • CVE-2018-1000138CriMar 23, 2018
    risk 0.59cvss 9.1epss 0.02

    I, Librarian version 4.8 and earlier contains a SSRF vulnerability in "url" parameter of getFromWeb in functions.php that can result in the attacker abusing functionality on the server to read or update internal resources.

  • CVE-2017-17736CriMar 23, 2018
    risk 0.69cvss 9.8epss 0.69

    Kentico 9.0 before 9.0.51 and 10.0 before 10.0.48 allows remote attackers to obtain Global Administrator access by visiting CMSInstall/install.aspx and then navigating to the CMS Administration Dashboard.

  • CVE-2018-1207CriMar 23, 2018
    risk 0.74cvss 9.8epss 0.91

    Dell EMC iDRAC7/iDRAC8, versions prior to 2.52.52.52, contain CGI injection vulnerability which could be used to execute remote code. A remote unauthenticated attacker may potentially be able to use CGI variables to execute remote code.

  • CVE-2018-8944CriMar 22, 2018
    risk 0.64cvss 9.8epss 0.01

    PHPOK 4.8.338 has an arbitrary file upload vulnerability.

  • CVE-2018-8943CriMar 22, 2018
    risk 0.64cvss 9.8epss 0.01

    There is a SQL injection in the PHPSHE 1.6 userbank parameter.

  • CVE-2018-7532CriMar 22, 2018
    risk 0.64cvss 9.8epss 0.08

    Unauthentication vulnerabilities have been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which may allow remote code execution.

  • CVE-2018-7528CriMar 22, 2018
    risk 0.59cvss 9.1epss 0.02

    An SQL injection vulnerability has been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which may allow an attacker to alter stored data.

  • CVE-2018-7520CriMar 22, 2018
    risk 0.64cvss 9.8epss 0.02

    An improper access control vulnerability has been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which could allow a full configuration download, including passwords.

  • CVE-2018-8936CriMar 22, 2018
    risk 0.59cvss 9.0epss 0.02

    The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips allow Platform Security Processor (PSP) privilege escalation.

  • CVE-2018-8935CriMar 22, 2018
    risk 0.59cvss 9.0epss 0.02

    The Promontory chipset, as used in AMD Ryzen and Ryzen Pro platforms, has a backdoor in the ASIC, aka CHIMERA-HW.

  • CVE-2018-8934CriMar 22, 2018
    risk 0.59cvss 9.0epss 0.02

    The Promontory chipset, as used in AMD Ryzen and Ryzen Pro platforms, has a backdoor in firmware, aka CHIMERA-FW.

  • CVE-2018-8933CriMar 22, 2018
    risk 0.59cvss 9.0epss 0.02

    The AMD EPYC Server processor chips have insufficient access control for protected memory regions, aka FALLOUT-1, FALLOUT-2, and FALLOUT-3.

  • CVE-2018-8932CriMar 22, 2018
    risk 0.59cvss 9.0epss 0.02

    The AMD Ryzen and Ryzen Pro processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-2, RYZENFALL-3, and RYZENFALL-4.