Skip to main content
CVE-2018-7492 MEDIUM POC PATCH This Month

A NULL pointer dereference was found in the net/rds/rdma.c __rds_rdma_map() function in the Linux kernel before 4.14.7 allowing local attackers to cause a system panic and a denial-of-service,. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available.

Null Pointer Dereference Denial Of Service Linux Linux Kernel Debian Linux +1
NVD GitHub
CVSS 3.0
5.5
EPSS
0.7%
CVE-2018-7479 MEDIUM POC This Month

YzmCMS 3.6 allows remote attackers to discover the full path via a direct request to application/install/templates/s1.php. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Yzmcms
NVD GitHub
CVSS 3.1
5.3
EPSS
2.0%
CVE-2018-0908 MEDIUM PATCH This Month

Microsoft Identity Manager 2016 SP1 allows an attacker to gain elevated privileges when it does not properly sanitize a specially crafted attribute value being displayed to a user on an affected MIM. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

Microsoft XSS Identity Manager
NVD
CVSS 3.0
6.1
EPSS
2.5%
CVE-2018-5762 MEDIUM This Month

The TLS implementation in the TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 58.1 before 58.160, 59.1 before 059.1a.17 (IC #17), and 60.0 before 60.044 might allow remote. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Oracle Information Disclosure Clearpath Mcp
NVD
CVSS 3.0
5.9
EPSS
1.0%
CVE-2018-7250 MEDIUM This Month

An issue was discovered in secdrv.sys as shipped in Microsoft Windows Vista, Windows 7, Windows 8, and Windows 8.1 before KB3086255, and as shipped in Macrovision SafeDisc. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Windows 7 Windows 8 Windows 8 1 +2
NVD GitHub
CVSS 3.0
5.5
EPSS
3.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy