Skip to main content
CVE-2018-5763 MEDIUM This Month

An issue was discovered in OXID eShop Enterprise Edition before 5.3.7 and 6.x before 6.0.1. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Eshop
NVD
CVSS 3.0
5.9
EPSS
1.1%
CVE-2018-5378 MEDIUM This Month

The Quagga BGP daemon (bgpd) prior to version 1.2.3 does not properly bounds check the data sent with a NOTIFY to a peer, if an attribute length is invalid. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Quagga Debian Linux Ubuntu Linux
NVD
CVSS 3.0
5.9
EPSS
74.6%
CVE-2018-6591 MEDIUM PATCH This Month

Converse.js and Inverse.js through 3.3 allow remote attackers to obtain sensitive information because it is too difficult to determine whether safe publication of private data was configured or even. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Converse Js
NVD
CVSS 3.0
5.3
EPSS
1.1%
CVE-2018-5380 MEDIUM This Month

The Quagga BGP daemon (bgpd) prior to version 1.2.3 can overrun internal BGP code-to-string conversion tables used for debug by 1 pointer value, based on input. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Buffer Overflow Quagga Debian Linux Ubuntu Linux +1
NVD
CVSS 3.0
4.3
EPSS
15.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy