Skip to main content
CVE-2018-5261 HIGH POC This Week

An issue was discovered in Flexense DiskBoss 8.8.16 and earlier. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Diskboss
NVD GitHub
CVSS 3.0
8.1
EPSS
0.5%
CVE-2018-6543 HIGH POC This Week

In GNU Binutils 2.30, there's an integer overflow in the function load_specific_debug_section() in objdump.c, which results in `malloc()` with 0 size. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow Denial Of Service Binutils
NVD
CVSS 3.0
7.8
EPSS
2.3%
CVE-2018-6525 HIGH POC This Week

In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKFsAv.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Nprotect Avs
NVD GitHub
CVSS 3.0
7.8
EPSS
0.4%
CVE-2018-6524 HIGH POC This Week

In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKFsAv.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Nprotect Avs
NVD GitHub
CVSS 3.0
7.8
EPSS
0.4%
CVE-2018-6523 HIGH POC This Week

In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKFsAv.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Nprotect Avs
NVD GitHub
CVSS 3.0
7.8
EPSS
0.4%
CVE-2018-6522 HIGH POC This Week

In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKRgFtXp.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Nprotect Avs
NVD GitHub
CVSS 3.0
7.8
EPSS
0.4%
CVE-2018-6560 HIGH PATCH This Week

In dbus-proxy/flatpak-proxy.c in Flatpak before 0.8.9, and 0.9.x and 0.10.x before 0.10.3, crafted D-Bus messages to the host can be used to break out of the sandbox, because whitespace handling in. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity.

Information Disclosure Flatpak Enterprise Linux Desktop Enterprise Linux Server Enterprise Linux Server Aus +3
NVD GitHub
CVSS 3.0
8.8
EPSS
0.4%
CVE-2018-6318 HIGH This Week

In Sophos Tester Tool 3.2.0.7 Beta, the driver loads (in the context of the application used to test an exploit or ransomware) the DLL using a payload that runs from NTDLL.DLL (so, it's run in. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Sophos Information Disclosure Sophos Tester
NVD
CVSS 3.0
7.8
EPSS
1.1%
CVE-2018-6519 HIGH PATCH This Week

The SAML2 library before 1.10.4, 2.x before 2.3.5, and 3.x before 3.1.1 in SimpleSAMLphp has a Regular Expression Denial of Service vulnerability for fraction-of-seconds data in a timestamp. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Saml2 Debian Linux
NVD
CVSS 3.0
7.5
EPSS
1.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy