VYPR

CVEs

31,277 total · page 551 of 626

  • CVE-2018-1000122CriMar 14, 2018
    risk 0.60cvss 9.1epss 0.09

    A buffer over-read exists in curl 7.20.0 to and including curl 7.58.0 in the RTSP+RTP handling code that allows an attacker to cause a denial of service or information leakage

  • CVE-2018-1000120CriMar 14, 2018
    risk 0.65cvss 9.8epss 0.12

    A buffer overflow exists in curl 7.12.3 to and including curl 7.58.0 in the FTP URL handling that allows an attacker to cause a denial of service or worse.

  • CVE-2018-5782CriMar 14, 2018
    risk 0.68cvss 9.8epss 0.20

    A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to inject PHP code using specially crafted requests to the vsethost.php page. Successful…

  • CVE-2018-5781CriMar 14, 2018
    risk 0.64cvss 9.8epss 0.02

    A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to inject PHP code using specially crafted requests to the vendrecording.php page.…

  • CVE-2018-5780CriMar 14, 2018
    risk 0.64cvss 9.8epss 0.02

    A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to inject PHP code using specially crafted requests to the vnewmeeting.php page.…

  • CVE-2018-5779CriMar 14, 2018
    risk 0.64cvss 9.8epss 0.03

    A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to copy a malicious script into a newly generated PHP file and then execute the generated…

  • CVE-2018-7474CriMar 14, 2018
    risk 0.67cvss 9.8epss 0.07

    An issue was discovered in Textpattern CMS 4.6.2 and earlier. It is possible to inject SQL code in the variable "qty" on the page index.php.

  • CVE-2018-7279CriMar 14, 2018
    risk 0.64cvss 9.8epss 0.02

    A remote code execution issue was discovered in AlienVault USM and OSSIM before 5.5.1.

  • CVE-2018-1000132CriMar 14, 2018
    risk 0.59cvss 9.1epss 0.03

    Mercurial version 4.5 and earlier contains a Incorrect Access Control (CWE-285) vulnerability in Protocol server that can result in Unauthorized data access. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been fixed in 4.5.1.

  • CVE-2018-1000131CriMar 14, 2018
    risk 0.64cvss 9.8epss 0.02

    Pradeep Makone wordpress Support Plus Responsive Ticket System version 9.0.2 and earlier contains a SQL Injection vulnerability in the function to get tickets, the parameter email in cookie was injected that can result in filter the parameter. This attack appear to be…

  • CVE-2018-8097CriMar 14, 2018
    risk 0.57cvss 9.8epss 0.06

    io/mongo/parser.py in Eve (aka pyeve) before 0.7.5 allows remote attackers to execute arbitrary code via Code Injection in the where parameter.

  • CVE-2018-8096CriMar 14, 2018
    risk 0.71cvss 9.8epss 0.50

    Datalust Seq before 4.2.605 is vulnerable to Authentication Bypass (with the attacker obtaining admin access) via '"Name":"isauthenticationenabled","Value":false' in an api/settings/setting-isauthenticationenabled PUT request.

  • CVE-2018-1000125CriMar 13, 2018
    risk 0.64cvss 9.8epss 0.01

    inversoft prime-jwt version prior to version 1.3.0 or prior to commit 0d94dcef0133d699f21d217e922564adbb83a227 contains an input validation vulnerability in JWTDecoder.decode that can result in a JWT that is decoded and thus implicitly validated even if it lacks a valid…

  • CVE-2018-1000124CriMar 13, 2018
    risk 0.65cvss 10.0epss 0.02

    I Librarian I-librarian version 4.8 and earlier contains a XML External Entity (XXE) vulnerability in line 154 of importmetadata.php(simplexml_load_string) that can result in an attacker reading the contents of a file and SSRF. This attack appear to be exploitable via posting…

  • CVE-2018-1000123CriMar 13, 2018
    risk 0.00cvss 9.8epss 0.01

    Ionic Team Cordova plugin iOS Keychain version before commit 18233ca25dfa92cca018b9c0935f43f78fd77fbf contains an Information Exposure Through Log Files (CWE-532) vulnerability in CDVKeychain.m that can result in login, password and other sensitive data leakage. This attack…

  • CVE-2018-7750CriMar 13, 2018
    risk 0.62cvss 9.8epss 0.27

    transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing…

  • CVE-2018-6300CriMar 13, 2018
    risk 0.64cvss 9.8epss 0.01

    Remote password change in Hanwha Techwin Smartcams

  • CVE-2018-6299CriMar 13, 2018
    risk 0.64cvss 9.8epss 0.01

    Authentication bypass in Hanwha Techwin Smartcams

  • CVE-2018-6298CriMar 13, 2018
    risk 0.64cvss 9.8epss 0.04

    Remote code execution in Hanwha Techwin Smartcams

  • CVE-2018-6297CriMar 13, 2018
    risk 0.64cvss 9.8epss 0.01

    Buffer overflow in Hanwha Techwin Smartcams

  • CVE-2018-6295CriMar 13, 2018
    risk 0.64cvss 9.8epss 0.01

    Unencrypted way of remote control and communications in Hanwha Techwin Smartcams

  • CVE-2018-6294CriMar 13, 2018
    risk 0.64cvss 9.8epss 0.01

    Unsecured way of firmware update in Hanwha Techwin Smartcams

  • CVE-2018-1000076CriMar 13, 2018
    risk 0.57cvss 9.8epss 0.03

    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Improper Verification of Cryptographic Signature vulnerability in package.rb…

  • CVE-2018-7538CriMar 12, 2018
    risk 0.67cvss 9.8epss 0.04

    A SQL injection vulnerability in the tracker functionality of Enalean Tuleap software engineering platform before 9.18 allows attackers to execute arbitrary SQL commands.

  • CVE-2016-9953CriMar 12, 2018
    risk 0.64cvss 9.8epss 0.02

    The verify_certificate function in lib/vtls/schannel.c in libcurl 7.30.0 through 7.51.0, when built for Windows CE using the schannel TLS backend, allows remote attackers to obtain sensitive information, cause a denial of service (crash), or possibly have unspecified other…

  • CVE-2018-7749CriMar 12, 2018
    risk 0.57cvss 9.8epss 0.02

    The SSH server implementation of AsyncSSH before 1.12.1 does not properly check whether authentication is completed before processing other requests. A customized SSH client can simply skip the authentication step.

  • CVE-2017-2628CriMar 12, 2018
    risk 0.64cvss 9.8epss 0.04

    curl, as shipped in Red Hat Enterprise Linux 6 before version 7.19.7-53, did not correctly backport the fix for CVE-2015-3148 because it did not reflect the fact that the HAVE_GSSAPI define was meanwhile substituted by USE_HTTP_NEGOTIATE. This issue was introduced in RHEL 6.7…

  • CVE-2018-8057CriMar 11, 2018
    risk 0.69cvss 9.8epss 0.23

    A SQL Injection vulnerability exists in Western Bridge Cobub Razor 0.8.0 via the channel_name or platform parameter in a /index.php?/manage/channel/addchannel request, related to /application/controllers/manage/channel.php.

  • CVE-2018-7213CriMar 11, 2018
    risk 0.64cvss 9.8epss 0.02

    The Password Manager Extension in Abine Blur 7.8.242* before 7.8.2428 allows attackers to bypass the Multi-Factor Authentication and macOS disk-encryption protection mechanisms, and consequently exfiltrate secured data, because the right-click context menu is not secured.

  • CVE-2018-7238CriMar 9, 2018
    risk 0.64cvss 9.8epss 0.03

    A buffer overflow vulnerability exist in the web-based GUI of Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow an unauthenticated, remote attacker to execute arbitrary code.

  • CVE-2018-7237CriMar 9, 2018
    risk 0.59cvss 9.1epss 0.02

    A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow a remote attacker to delete arbitrary system file due to lack of validation of the /login/bin/set_param to the file name with the value of…

  • CVE-2018-7233CriMar 9, 2018
    risk 0.64cvss 9.8epss 0.02

    A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow execution of commands due to lack of validation of the shell meta characters with the value of 'model_name' or 'mac_address'.

  • CVE-2018-7232CriMar 9, 2018
    risk 0.64cvss 9.8epss 0.02

    A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow execution of commands due to lack of validation of the shell meta characters with the value of 'network.ieee8021x.delete_certs'.

  • CVE-2018-7231CriMar 9, 2018
    risk 0.64cvss 9.8epss 0.02

    A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow execution of commands due to lack of validation of the shell meta characters with the value of 'system.opkg.remove'.

  • CVE-2018-7229CriMar 9, 2018
    risk 0.64cvss 9.8epss 0.02

    A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow an unauthenticated, remote attacker to bypass authentication and gain administrator privileges because the use of hardcoded credentials.

  • CVE-2018-7228CriMar 9, 2018
    risk 0.64cvss 9.8epss 0.02

    A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow an unauthenticated, remote attacker to bypass authentication and get the administrator privileges.

  • CVE-2014-6617CriMar 9, 2018
    risk 0.64cvss 9.8epss 0.05

    Softing FG-100 PB PROFIBUS firmware version FG-x00-PB_V2.02.0.00 contains a hardcoded password for the root account, which allows remote attackers to obtain administrative access via a TELNET session.

  • CVE-2014-4861CriMar 9, 2018
    risk 0.64cvss 9.8epss 0.01

    The Remote Desktop Launcher in Thycotic Secret Server before 8.6.000010 does not properly cleanup a temporary file that contains an encrypted password once a session has ended.

  • CVE-2014-2592CriMar 9, 2018
    risk 0.64cvss 9.8epss 0.02

    Unrestricted file upload vulnerability in Aruba Web Management portal allows remote attackers to execute arbitrary code by uploading a file with an executable extension.

  • CVE-2018-6916CriMar 9, 2018
    risk 0.64cvss 9.8epss 0.02

    In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p7, 10.4-STABLE, 10.4-RELEASE-p7, and 10.3-RELEASE-p28, the kernel does not properly validate IPsec packets coming from a trusted host. Additionally, a use-after-free vulnerability exists in the IPsec AH handling code. This issue could…

  • CVE-2018-7890CriMar 8, 2018
    risk 0.09cvss 9.8epss 0.79

    A remote code execution issue was discovered in Zoho ManageEngine Applications Manager before 13.6 (build 13640). The publicly accessible testCredential.do endpoint takes multiple user inputs and validates supplied credentials by accessing a specified system. This endpoint calls…

  • CVE-2018-7183CriMar 8, 2018
    risk 0.65cvss 9.8epss 0.11

    Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.

  • CVE-2018-1216CriMar 8, 2018
    risk 0.65cvss 9.8epss 0.22

    A hard-coded password vulnerability was discovered in vApp Manager which is embedded in Dell EMC Unisphere for VMAX, Dell EMC Solutions Enabler, Dell EMC VASA Virtual Appliances, and Dell EMC VMAX Embedded Management (eManagement): Dell EMC Unisphere for VMAX Virtual Appliance…

  • CVE-2017-7640CriMar 8, 2018
    risk 0.64cvss 9.8epss 0.02

    QNAP NAS application Media Streaming add-on version 421.1.0.2, 430.1.2.0, and earlier allows remote attackers to run arbitrary OS commands against the system with root privileges.

  • CVE-2018-0147CriKEVMar 8, 2018
    risk 0.77cvss 9.8epss 0.19

    A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) prior to release 5.8 patch 9 could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is due to insecure deserialization of…

  • CVE-2018-7753CriMar 7, 2018
    risk 0.57cvss 9.8epss 0.02

    An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that have URI values weren't properly sanitized if the values contained character entities. Using character entities, it was possible to construct a URI value with a scheme that was not allowed that would slide…

  • CVE-2017-15367CriMar 7, 2018
    risk 0.62cvss 9.8epss 0.24

    Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server.

  • CVE-2014-5044CriMar 7, 2018
    risk 0.64cvss 9.8epss 0.06

    Multiple integer overflows in libgfortran might allow remote attackers to execute arbitrary code or cause a denial of service (Fortran application crash) via vectors related to array allocation.

  • CVE-2018-1000116CriMar 7, 2018
    risk 0.64cvss 9.8epss 0.07

    NET-SNMP version 5.7.2 contains a heap corruption vulnerability in the UDP protocol handler that can result in command execution.

  • CVE-2018-7739CriMar 7, 2018
    risk 0.71cvss 9.8epss 0.55

    antsle antman before 0.9.1a allows remote attackers to bypass authentication via invalid characters in the username and password parameters, as demonstrated by a username=>&password=%0a string to the /login URI. This allows obtaining root permissions within the web management…