VYPR

CVEs

31,277 total · page 550 of 626

  • CVE-2018-8931CriMar 22, 2018
    risk 0.59cvss 9.0epss 0.02

    The AMD Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-1.

  • CVE-2018-8930CriMar 22, 2018
    risk 0.59cvss 9.0epss 0.02

    The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient enforcement of Hardware Validated Boot, aka MASTERKEY-1, MASTERKEY-2, and MASTERKEY-3.

  • CVE-2018-5225CriMar 22, 2018
    risk 0.65cvss 9.9epss 0.04

    In browser editing in Atlassian Bitbucket Server from version 4.13.0 before 5.4.8 (the fixed version for 4.13.0 through 5.4.7), 5.5.0 before 5.5.8 (the fixed version for 5.5.x), 5.6.0 before 5.6.5 (the fixed version for 5.6.x), 5.7.0 before 5.7.3 (the fixed version for 5.7.x),…

  • CVE-2018-0541CriMar 22, 2018
    risk 0.64cvss 9.8epss 0.03

    Buffer overflow in Tiny FTP Daemon Ver0.52d allows an attacker to cause a denial-of-service (DoS) condition or execute arbitrary code via unspecified vectors.

  • CVE-2018-0539CriMar 22, 2018
    risk 0.64cvss 9.8epss 0.03

    QQQ SYSTEMS version 2.24 allows an attacker to execute arbitrary commands via unspecified vectors.

  • CVE-2017-1789CriMar 22, 2018
    risk 0.64cvss 9.8epss 0.03

    IBM Tivoli Monitoring V6 6.2.3 and 6.3.0 could allow an unauthenticated user to remotely execute code through unspecified methods. IBM X-Force ID: 137034.

  • CVE-2014-4912CriMar 22, 2018
    risk 0.67cvss 9.8epss 0.09

    An Arbitrary File Upload issue was discovered in Frog CMS 0.9.5 due to lack of extension validation.

  • CVE-2017-0916CriMar 21, 2018
    risk 0.64cvss 9.8epss 0.06

    Gitlab Community Edition version 10.3 is vulnerable to a lack of input validation in the system_hook_push queue through web hook component resulting in remote code execution.

  • CVE-2017-0915CriMar 21, 2018
    risk 0.64cvss 9.8epss 0.06

    Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote code execution.

  • CVE-2018-8073CriMar 21, 2018
    risk 0.64cvss 9.8epss 0.02

    Yii 2.x before 2.0.15 allows remote attackers to execute arbitrary LUA code via a variant of the CVE-2018-7269 attack in conjunction with the Redis extension.

  • CVE-2018-7269CriMar 21, 2018
    risk 0.64cvss 9.8epss 0.01

    The findByCondition function in framework/db/ActiveRecord.php in Yii 2.x before 2.0.15 allows remote attackers to conduct SQL injection attacks via a findOne() or findAll() call, unless a developer recognizes an undocumented need to sanitize array input.

  • CVE-2014-3990CriMar 20, 2018
    risk 0.57cvss 9.8epss 0.07

    The Cart::getProducts method in system/library/cart.php in OpenCart 1.5.6.4 and earlier allows remote attackers to conduct server-side request forgery (SSRF) attacks or possibly conduct XML External Entity (XXE) attacks and execute arbitrary code via a crafted serialized PHP…

  • CVE-2018-8828CriMar 20, 2018
    risk 0.03cvss 9.8epss 0.31

    A Buffer Overflow issue was discovered in Kamailio before 4.4.7, 5.0.x before 5.0.6, and 5.1.x before 5.1.2. A specially crafted REGISTER message with a malformed branch or From tag triggers an off-by-one heap-based buffer overflow in the tmx_check_pretran function in…

  • CVE-2018-5768CriMar 20, 2018
    risk 0.64cvss 9.8epss 0.04

    A remote, unauthenticated attacker can gain remote code execution on the the Tenda AC15 router with a specially crafted password parameter for the COOKIE header.

  • CVE-2018-8088CriMar 20, 2018
    risk 0.58cvss 9.8epss 0.15

    org.slf4j.ext.EventData in the slf4j-ext module in QOS.CH SLF4J before 1.8.0-beta2 allows remote attackers to bypass intended access restrictions via crafted data. EventData in the slf4j-ext module in QOS.CH SLF4J, has been fixed in SLF4J versions 1.7.26 later and in the 2.0.x…

  • CVE-2017-14008CriMar 20, 2018
    risk 0.64cvss 9.8epss 0.03

    GE Centricity PACS RA1000, diagnostic image analysis, all current versions are affected these devices use default or hard-coded credentials. Successful exploitation of this vulnerability may allow a remote attacker to bypass authentication and gain access to the affected devices.

  • CVE-2017-14006CriMar 20, 2018
    risk 0.64cvss 9.8epss 0.02

    GE Xeleris versions 1.0,1.1,2.1,3.0,3.1, medical imaging systems, all current versions are affected, these devices use default or hard-coded credentials. Successful exploitation of this vulnerability may allow a remote attacker to bypass authentication and gain access to the…

  • CVE-2017-14004CriMar 20, 2018
    risk 0.64cvss 9.8epss 0.02

    GE GEMNet License server (EchoServer) all current versions are affected these devices use default or hard-coded credentials. Successful exploitation of this vulnerability may allow a remote attacker to bypass authentication and gain access to the affected devices.

  • CVE-2017-14002CriMar 20, 2018
    risk 0.64cvss 9.8epss 0.05

    GE Infinia/Infinia with Hawkeye 4 medical imaging systems all current versions are affected these devices use default or hard-coded credentials. Successful exploitation of this vulnerability may allow a remote attacker to bypass authentication and gain access to the affected…

  • CVE-2018-5770CriMar 20, 2018
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered on Tenda AC15 devices. A remote, unauthenticated attacker can make a request to /goform/telnet, creating a telnetd service on the device. This service is password protected; however, several default accounts exist on the device that are root accounts,…

  • CVE-2018-7445CriKEVMar 19, 2018
    risk 0.84cvss 9.8epss 0.61

    A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs before authentication takes…

  • CVE-2014-2652CriMar 19, 2018
    risk 0.64cvss 9.8epss 0.01

    SQL injection vulnerability in OpenScape Deployment Service (DLS) before 6.x and 7.x before R1.11.3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

  • CVE-2018-5551CriMar 19, 2018
    risk 0.59cvss 9.0epss 0.02

    Versions of DocuTrac QuicDoc and Office Therapy that ship with DTISQLInstaller.exe version 1.6.4.0 and prior contain three credentials with known passwords: QDMaster, OTMaster, and sa.

  • CVE-2018-8766CriMar 18, 2018
    risk 0.64cvss 9.8epss 0.03

    joyplus-cms 1.6.0 allows Remote Code Execution because of an Arbitrary File Upload issue in manager/editor/upload.php, related to manager/admin_vod.php?action=add.

  • CVE-2017-18239CriMar 18, 2018
    risk 0.57cvss 9.8epss 0.02

    A time-sensitive equality check on the JWT signature in the JsonWebToken.validate method in main/scala/authentikat/jwt/JsonWebToken.scala in authentikat-jwt (aka com.jason-goodwin/authentikat-jwt) version 0.4.5 and earlier allows the supplier of a JWT token to guess bit after…

  • CVE-2018-1078CriMar 16, 2018
    risk 0.64cvss 9.8epss 0.01

    OpenDayLight version Carbon SR3 and earlier contain a vulnerability during node reconciliation that can result in traffic flows that should be expired or should expire shortly being re-installed and their timers reset resulting in traffic being allowed that should be expired.

  • CVE-2017-8013CriMar 16, 2018
    risk 0.64cvss 9.8epss 0.02

    EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: "Apollo System Test", "emc.dpa.agent.logon" and "emc.dpa.metrics.logon". An attacker with…

  • CVE-2016-9880CriMar 16, 2018
    risk 0.64cvss 9.8epss 0.02

    The GemFire broker for Cloud Foundry 1.6.x before 1.6.5 and 1.7.x before 1.7.1 has multiple API endpoints which do not require authentication and could be used to gain access to the cluster managed by the broker.

  • CVE-2018-8739CriMar 16, 2018
    risk 0.64cvss 9.8epss 0.02

    VPN Unlimited 4.2.0 for macOS suffers from a root privilege escalation vulnerability in its privileged helper tool. The privileged helper tool implements an XPC interface, which allows arbitrary applications to execute system commands as root.

  • CVE-2018-7544CriMar 16, 2018
    risk 0.59cvss 9.1epss 0.02

    A cross-protocol scripting issue was discovered in the management interface in OpenVPN through 2.4.5. When this interface is enabled over TCP without a password, and when no other clients are connected to this interface, attackers can execute arbitrary management commands,…

  • CVE-2018-1000134CriMar 16, 2018
    risk 0.57cvss 9.8epss 0.05

    UnboundID LDAP SDK version from commit 801111d8b5c732266a5dbd4b3bb0b6c7b94d7afb up to commit 8471904a02438c03965d21367890276bc25fa5a6, where the issue was reported and fixed contains an Incorrect Access Control vulnerability in process function in SimpleBindRequest class doesn't…

  • CVE-2018-7033CriMar 15, 2018
    risk 0.64cvss 9.8epss 0.02

    SchedMD Slurm before 17.02.10 and 17.11.x before 17.11.5 allows SQL Injection attacks against SlurmDBD.

  • CVE-2017-18067CriMar 15, 2018
    risk 0.64cvss 9.8epss 0.03

    In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper input validation while processing an encrypted authentication management frame in lim_send_auth_mgmt_frame() leads to buffer overflow.

  • CVE-2017-17773CriMar 15, 2018
    risk 0.64cvss 9.8epss 0.01

    In Snapdragon Automobile, Snapdragon Wearable and Snapdragon Mobile MDM9206,MDM9607,MDM9650,SD 210/SD 212/SD 205,SD 400,SD 410/12,SD 425,SD 430,SD 450,SD 600,SD 602A,SD 615/16/SD 415,SD 617,SD 625,SD 650/52,SD 800,SD 808,SD 810,SD 820,SD 820Am,SD 835,SD 845,MSM8909W, improper…

  • CVE-2017-15815CriMar 15, 2018
    risk 0.64cvss 9.8epss 0.01

    In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a potential buffer overflow can happen when processing any 802.11 MGMT frames like Auth frame in limProcessAuthFrame.

  • CVE-2016-10393CriMar 15, 2018
    risk 0.64cvss 9.8epss 0.01

    In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, when processing a clip with large size values, integer arithmetic overflows, and allocated buffer size will be less than intended buffer size. The following buffer…

  • CVE-2018-6231CriMar 15, 2018
    risk 0.64cvss 9.8epss 0.07

    A server auth command injection authentication bypass vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.3 and below could allow remote attackers to escalate privileges on vulnerable installations.

  • CVE-2018-6229CriMar 15, 2018
    risk 0.68cvss 9.8epss 0.11

    A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 edit policy script could allow an attacker to execute SQL commands to upload and execute arbitrary code that may harm the target system.

  • CVE-2018-6228CriMar 15, 2018
    risk 0.68cvss 9.8epss 0.11

    A SQL injection vulnerability in a Trend Micro Email Encryption Gateway 5.5 policy script could allow an attacker to execute SQL commands to upload and execute arbitrary code that may harm the target system.

  • CVE-2018-6223CriMar 15, 2018
    risk 0.68cvss 9.8epss 0.11

    A missing authentication for appliance registration vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to manipulate the registration process of the product to reset configuration parameters.

  • CVE-2018-6220CriMar 15, 2018
    risk 0.68cvss 9.8epss 0.10

    An arbitrary file write vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to inject arbitrary data, which may lead to gaining code execution on vulnerable systems.

  • CVE-2018-7756CriMar 15, 2018
    risk 0.72cvss 9.8epss 0.62

    RunExeFile.exe in the installer for DEWESoft X3 SP1 (64-bit) devices does not require authentication for sessions on TCP port 1999, which allows remote attackers to execute arbitrary code or access internal commands, as demonstrated by a RUN command that launches a .EXE file…

  • CVE-2018-7702CriMar 15, 2018
    risk 0.63cvss 9.1epss 0.15

    SecurEnvoy SecurMail before 9.2.501 allows remote attackers to spoof transmission of arbitrary e-mail messages, resend e-mail messages to arbitrary recipients, or modify arbitrary message bodies and attachments by leveraging missing authentication and authorization.

  • CVE-2017-12194CriMar 14, 2018
    risk 0.64cvss 9.8epss 0.06

    A flaw was found in the way spice-client processed certain messages sent from the server. An attacker, having control of malicious spice-server, could use this flaw to crash the client or execute arbitrary code with permissions of the user running the client. spice-gtk versions…

  • CVE-2018-8712CriMar 14, 2018
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Webmin 1.840 and 1.880 when the default Yes setting of "Can view any file as a log file" is enabled. As a result of weak default configuration settings, limited users have full access rights to the underlying Unix system files, allowing the user to…

  • CVE-2018-8711CriMar 14, 2018
    risk 0.64cvss 9.8epss 0.02

    A local file inclusion issue was discovered in the WooCommerce Products Filter (aka WOOF) plugin before 2.2.0 for WordPress, as demonstrated by the shortcode parameter in a woof_redraw_woof action. The vulnerability is due to the lack of args/input validation on render_html…

  • CVE-2018-8710CriMar 14, 2018
    risk 0.64cvss 9.8epss 0.04

    A remote code execution issue was discovered in the WooCommerce Products Filter (aka WOOF) plugin before 2.2.0 for WordPress, as demonstrated by the shortcode parameter in a woof_redraw_woof action. The plugin implemented a page redraw AJAX function accessible to anyone without…

  • CVE-2018-6329CriMar 14, 2018
    risk 0.72cvss 9.8epss 0.62

    It was discovered that the Unitrends Backup (UB) before 10.1.0 libbpext.so authentication could be bypassed with a SQL injection, allowing a remote attacker to place a privilege escalation exploit on the target system and subsequently execute arbitrary commands.

  • CVE-2018-6328CriMar 14, 2018
    risk 0.72cvss 9.8epss 0.66

    It was discovered that the Unitrends Backup (UB) before 10.1.0 user interface was exposed to an authentication bypass, which then could allow an unauthenticated user to inject arbitrary commands into its /api/hosts parameters using backquotes.

  • CVE-2018-7500CriMar 14, 2018
    risk 0.64cvss 9.8epss 0.02

    A Permissions, Privileges, and Access Controls issue was discovered in OSIsoft PI Web API versions 2017 R2 and prior. Privileges may be escalated, giving attackers access to the PI System via the service account.