VYPR

CVEs

31,277 total · page 553 of 626

  • CVE-2018-4872CriFeb 27, 2018
    risk 0.66cvss 10.0epss 0.12

    An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is a security bypass vulnerability that leads to a sandbox escape. Specifically, the vulnerability…

  • CVE-2017-11634CriFeb 26, 2018
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on Wireless IP Camera 360 devices. Remote attackers can discover a weakly encoded admin password by connecting to TCP port 9527 and reading the password field of the debugging information, e.g., nTBCS19C corresponds to a password of 123456.

  • CVE-2017-11632CriFeb 26, 2018
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered on Wireless IP Camera 360 devices. A root account with a known SHA-512 password hash exists, which makes it easier for remote attackers to obtain administrative access via a TELNET session.

  • CVE-2018-7489CriFeb 26, 2018
    risk 0.58cvss 9.8epss 0.20

    FasterXML jackson-databind before 2.7.9.3, 2.8.x before 2.8.11.1 and 2.9.x before 2.9.5 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 deserialization flaw. This is exploitable by sending maliciously crafted JSON input to the…

  • CVE-2018-7485CriFeb 26, 2018
    risk 0.00cvss 9.8epss 0.03

    The SQLWriteFileDSN function in odbcinst/SQLWriteFileDSN.c in unixODBC 2.3.5 has strncpy arguments in the wrong order, which allows attackers to cause a denial of service or possibly have unspecified other impact.

  • CVE-2017-18201CriFeb 26, 2018
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered in GNU libcdio before 2.0.0. There is a double free in get_cdtext_generic() in lib/driver/_cdio_generic.c.

  • CVE-2018-7463CriFeb 26, 2018
    risk 0.64cvss 9.8epss 0.01

    SQL injection vulnerability in files.php in the "files" component in ASANHAMAYESH CMS 3.4.6 allows a remote attacker to execute arbitrary SQL commands via the "id" parameter.

  • CVE-2017-9426CriFeb 26, 2018
    risk 0.64cvss 9.8epss 0.03

    ws.php in the Facetag extension 0.0.3 for Piwigo allows SQL injection via the imageId parameter in a facetag.changeTag or facetag.listTags action.

  • CVE-2017-18197CriFeb 24, 2018
    risk 0.57cvss 9.8epss 0.03

    In mxGraphViewImageReader.java in mxGraph before 3.7.6, the SAXParserFactory instance in convert() is missing flags to prevent XML External Entity (XXE) attacks, as demonstrated by /ServerView.

  • CVE-2017-14910CriFeb 23, 2018
    risk 0.64cvss 9.8epss 0.01

    In Snapdragon Automobile, Snapdragon IoT and Snapdragon Mobile MDM9206 MDM9607, MDM9650, S820A, S820Am, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 820, SD 835, and SD 845, a buffer overread is possible if there are no…

  • CVE-2018-7442CriFeb 23, 2018
    risk 0.59cvss 9.1epss 0.02

    An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutput function does not block '/' characters in the gplot rootname argument, potentially leading to path traversal and arbitrary file overwrite.

  • CVE-2018-7440CriFeb 23, 2018
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutput function allows command injection via a $(command) approach in the gplot rootname argument. This issue exists because of an incomplete fix for CVE-2018-3836.

  • CVE-2018-6859CriFeb 23, 2018
    risk 0.64cvss 9.8epss 0.02

    SQL Injection exists in PHP Scripts Mall Schools Alert Management Script 2.0.2 via the Login Parameter.

  • CVE-2014-3206CriFeb 23, 2018
    risk 0.68cvss 9.8epss 0.52

    Seagate BlackArmor NAS allows remote attackers to execute arbitrary code via the session parameter to localhost/backupmgt/localJob.php or the auth_name parameter to localhost/backupmgmt/pre_connect_check.php.

  • CVE-2014-3205CriFeb 23, 2018
    risk 0.64cvss 9.8epss 0.03

    backupmgt/pre_connect_check.php in Seagate BlackArmor NAS contains a hard-coded password of '!~@##$$%FREDESWWSED' for a backdoor user.

  • CVE-2018-6489CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.01

    XML External Entity (XXE) vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32. This vulnerability can be exploited to allow XML External Entity (XXE)

  • CVE-2018-0015CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.01

    A malicious user with unrestricted access to the AppFormix application management platform may be able to access a Python debug console and execute system commands with root privilege. The AppFormix Agent exposes the debug console on a host where AppFormix Agent is executing. If…

  • CVE-2018-7319CriFeb 22, 2018
    risk 0.67cvss 9.8epss 0.02

    SQL Injection exists in the OS Property Real Estate 3.12.7 component for Joomla! via the cooling_system1, heating_system1, or laundry parameter.

  • CVE-2018-7318CriFeb 22, 2018
    risk 0.67cvss 9.8epss 0.09

    SQL Injection exists in the CheckList 1.1.1 component for Joomla! via the title_search, tag_search, name_search, description_search, or filter_order parameter.

  • CVE-2018-7316CriFeb 22, 2018
    risk 0.67cvss 9.8epss 0.08

    Arbitrary File Upload exists in the Proclaim 9.1.1 component for Joomla! via a mediafileform action.

  • CVE-2018-7315CriFeb 22, 2018
    risk 0.67cvss 9.8epss 0.03

    SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2, religion, mothertounge, caste, or country parameter.

  • CVE-2018-7314CriFeb 22, 2018
    risk 0.71cvss 9.8epss 0.58

    SQL Injection exists in the PrayerCenter 3.0.2 component for Joomla! via the sessionid parameter, a different vulnerability than CVE-2008-6429.

  • CVE-2018-7312CriFeb 22, 2018
    risk 0.67cvss 9.8epss 0.03

    SQL Injection exists in the Alexandria Book Library 3.1.2 component for Joomla! via the letter parameter.

  • CVE-2018-7301CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.01

    eQ-3 AG HomeMatic CCU2 2.29.22 devices have an open XML-RPC port without authentication. This can be exploited by sending arbitrary XML-RPC requests to control the attached BidCos devices.

  • CVE-2018-7300CriFeb 22, 2018
    risk 0.69cvss 9.8epss 0.31

    Directory Traversal / Arbitrary File Write / Remote Code Execution in the User.setLanguage method in eQ-3 AG Homematic CCU2 2.29.2 and earlier allows remote attackers to write arbitrary files to the device's filesystem. This vulnerability can be exploited by unauthenticated…

  • CVE-2018-7297CriFeb 22, 2018
    risk 0.72cvss 9.8epss 0.65

    Remote Code Execution in the TCL script interpreter in eQ-3 AG Homematic CCU2 2.29.2 and earlier allows remote attackers to obtain read/write access and execute system commands on the device. This vulnerability can be exploited by unauthenticated attackers with access to the web…

  • CVE-2018-7409CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.03

    In unixODBC before 2.3.5, there is a buffer overflow in the unicode_to_ansi_copy() function in DriverManager/__info.c.

  • CVE-2017-5250CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.01

    In version 1.9.7 and prior of Insteon's Insteon for Hub Android app, the OAuth token used by the app to authorize user access is not stored in an encrypted and secure manner.

  • CVE-2017-5249CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.01

    In version 6.1.0.19 and prior of Wink Labs's Wink - Smart Home Android app, the OAuth token used by the app to authorize user access is not stored in an encrypted and secure manner.

  • CVE-2017-18194CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.01

    SQL injection vulnerability in users/signup.php in the "signup" component in HamayeshNegar CMS allows a remote attacker to execute arbitrary SQL commands via the "utype" parameter.

  • CVE-2018-7313CriFeb 22, 2018
    risk 0.68cvss 9.8epss 0.19

    SQL Injection exists in the CW Tags 2.0.6 component for Joomla! via the searchtext array parameter.

  • CVE-2018-0130CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.02

    A vulnerability in the use of JSON web tokens by the web-based service portal of Cisco Elastic Services Controller Software could allow an unauthenticated, remote attacker to gain administrative access to an affected system. The vulnerability is due to the presence of static…

  • CVE-2018-0124CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.05

    A vulnerability in Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to bypass security protections, gain elevated privileges, and execute arbitrary code. The vulnerability is due to insecure key generation during application…

  • CVE-2018-0121CriFeb 22, 2018
    risk 0.64cvss 9.8epss 0.03

    A vulnerability in the authentication functionality of the web-based service portal of Cisco Elastic Services Controller Software could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrator privileges on an affected…

  • CVE-2015-5725CriFeb 21, 2018
    risk 0.57cvss 9.8epss 0.02

    SQL injection vulnerability in the offset method in the Active Record class in CodeIgniter before 2.2.4 allows remote attackers to execute arbitrary SQL commands via vectors involving the offset variable.

  • CVE-2018-1164CriFeb 21, 2018
    risk 0.64cvss 9.8epss 0.04

    This vulnerability allows remote attackers to cause a denial-of-service condition on vulnerable installations of ZyXEL P-870H-51 DSL Router 1.00(AWG.3)D5. Authentication is not required to exploit this vulnerability. The specific flaw exists within numerous exposed CGI…

  • CVE-2018-7263CriFeb 20, 2018
    risk 0.64cvss 9.8epss 0.02

    The mad_decoder_run() function in decoder.c in Underbit libmad through 0.15.1b allows remote attackers to cause a denial of service (SIGABRT because of double free or corruption) or possibly have unspecified other impact via a crafted file. NOTE: this may overlap CVE-2017-11552.

  • CVE-2018-6487CriFeb 20, 2018
    risk 0.64cvss 9.8epss 0.02

    Remote Disclosure of Information in Micro Focus Universal CMDB Foundation Software, version numbers 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 4.10, 4.11. This vulnerability could be remotely exploited to allow disclosure of information.

  • CVE-2015-9254CriFeb 20, 2018
    risk 0.64cvss 9.8epss 0.01

    Datto ALTO and SIRIS devices have a default VNC password.

  • CVE-2015-2081CriFeb 20, 2018
    risk 0.64cvss 9.8epss 0.03

    Datto ALTO and SIRIS devices allow Remote Code Execution via unauthenticated requests to PHP scripts.

  • CVE-2018-7259CriFeb 20, 2018
    risk 0.64cvss 9.8epss 0.01

    The FSX / P3Dv4 installer 2.0.1.231 for Flight Sim Labs A320-X sends a user's Google account credentials to http://installLog.flightsimlabs.com/LogHandler3.ashx if a pirated serial number has been entered, which allows remote attackers to obtain sensitive information, e.g., by…

  • CVE-2018-7251CriFeb 19, 2018
    risk 0.73cvss 9.8epss 0.72

    An issue was discovered in config/error.php in Anchor 0.12.3. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error (such as "Too many connections") has occurred.

  • CVE-2017-7376CriFeb 19, 2018
    risk 0.66cvss 9.8epss 0.24

    Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects.

  • CVE-2017-7375CriFeb 19, 2018
    risk 0.64cvss 9.8epss 0.03

    A flaw in libxml2 allows remote XML entity inclusion with default parser flags (i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD attributes). Depending on the context, this may expose a higher-risk attack…

  • CVE-2017-17101CriFeb 19, 2018
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Apexis APM-H803-MPC software, as used with many different models of IP Camera. An unprotected CGI method inside the web application permits an unauthenticated user to bypass the login screen and access the webcam contents including: live video stream,…

  • CVE-2016-9568CriFeb 19, 2018
    risk 0.64cvss 9.8epss 0.02

    A security design issue can allow an unprivileged user to interact with the Carbon Black Sensor and perform unauthorized actions.

  • CVE-2018-7247CriFeb 19, 2018
    risk 0.00cvss 9.8epss 0.02

    An issue was discovered in pixHtmlViewer in prog/htmlviewer.c in Leptonica before 1.75.3. Unsanitized input (rootname) can overflow a buffer, leading potentially to arbitrary code execution or possibly unspecified other impact.

  • CVE-2018-5475CriFeb 19, 2018
    risk 0.64cvss 9.8epss 0.04

    A Stack-based Buffer Overflow issue was discovered in GE D60 Line Distance Relay devices running firmware Version 7.11 and prior. Multiple stack-based buffer overflow vulnerabilities have been identified, which may allow remote code execution.

  • CVE-2018-5473CriFeb 19, 2018
    risk 0.64cvss 9.8epss 0.06

    An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in GE D60 Line Distance Relay devices running firmware Version 7.11 and prior. The SSH functions of the device are vulnerable to buffer overflow conditions that may allow a remote…

  • CVE-2018-5439CriFeb 19, 2018
    risk 0.64cvss 9.8epss 0.04

    A Command Injection issue was discovered in Nortek Linear eMerge E3 series Versions V0.32-07e and prior. A remote attacker may be able to execute arbitrary code on a target machine with elevated privileges.