Skip to main content
CVE-2018-6481 CRITICAL POC THREAT Act Now

A buffer overflow vulnerability in the control protocol of Disk Savvy Enterprise v10.4.18 allows remote attackers to execute arbitrary code by sending a crafted packet to TCP port 9124. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow Disksavvy
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
19.7%
CVE-2018-7467 HIGH POC THREAT This Week

AxxonSoft Axxon Next has Directory Traversal via an initial /css//..%2f substring in a URI. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Next
NVD
CVSS 3.0
7.5
EPSS
10.4%
CVE-2018-4872 CRITICAL Act Now

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Adobe Acrobat Acrobat Dc Acrobat Reader +1
NVD
CVSS 3.0
10.0
EPSS
11.7%
CVE-2018-7548 CRITICAL PATCH Act Now

{(PA)...} on an empty array result. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Null Pointer Dereference Denial Of Service Zsh Ubuntu Linux
NVD
CVSS 3.0
9.8
EPSS
2.6%
CVE-2018-1372 CRITICAL Act Now

IBM Security Guardium Big Data Intelligence (SonarG) 3.1 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure IBM Brute Force Security Guardium Big Data Intelligence
NVD
CVSS 3.0
9.8
EPSS
2.2%
CVE-2018-4895 CRITICAL Act Now

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Adobe RCE Information Disclosure Memory Corruption +4
NVD
CVSS 3.0
9.8
EPSS
13.9%
CVE-2018-4879 CRITICAL Act Now

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Adobe RCE Information Disclosure Memory Corruption +4
NVD
CVSS 3.0
9.8
EPSS
29.1%
CVE-2018-7547 MEDIUM POC This Month

lyadmin 1.x has XSS via the config[WEB_SITE_TITLE] parameter to the /admin.php?s=/admin/config/groupsave.html URI. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Lyadmin
NVD GitHub
CVSS 3.1
4.8
EPSS
0.5%
CVE-2018-7541 HIGH This Week

An issue was discovered in Xen through 4.10.x allowing guest OS users to cause a denial of service (hypervisor crash) or gain privileges by triggering a grant-table transition from v2 to v1. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Xen Debian Linux
NVD
CVSS 3.0
8.8
EPSS
0.4%
CVE-2018-4916 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Adobe RCE Information Disclosure Memory Corruption +4
NVD
CVSS 3.0
8.8
EPSS
15.3%
CVE-2018-4915 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Adobe RCE Information Disclosure Memory Corruption +4
NVD
CVSS 3.0
8.8
EPSS
15.3%
CVE-2018-4913 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe RCE Use After Free Denial Of Service Memory Corruption +4
NVD
CVSS 3.0
8.8
EPSS
13.8%
CVE-2018-4911 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Adobe Denial Of Service Use After Free Acrobat +3
NVD
CVSS 3.0
8.8
EPSS
10.0%
CVE-2018-4910 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Adobe Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
8.8
EPSS
25.0%
CVE-2018-4904 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Adobe RCE Information Disclosure Memory Corruption +4
NVD
CVSS 3.0
8.8
EPSS
43.4%
CVE-2018-4902 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe RCE Use After Free Denial Of Service Memory Corruption +4
NVD
CVSS 3.0
8.8
EPSS
12.5%
CVE-2018-4901 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Adobe RCE Information Disclosure Memory Corruption +4
NVD
CVSS 3.0
8.8
EPSS
16.5%
CVE-2018-4898 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Adobe RCE Information Disclosure Memory Corruption +4
NVD
CVSS 3.0
8.8
EPSS
15.3%
CVE-2018-4892 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe RCE Use After Free Denial Of Service Memory Corruption +4
NVD
CVSS 3.0
8.8
EPSS
12.5%
CVE-2018-4890 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Adobe Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
8.8
EPSS
25.0%
CVE-2018-4888 HIGH This Week

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe RCE Use After Free Denial Of Service Memory Corruption +4
NVD
CVSS 3.0
8.8
EPSS
12.5%
CVE-2018-6535 HIGH This Week

An issue was discovered in Icinga 2.x through 2.8.1. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Icinga
NVD GitHub
CVSS 3.0
8.1
EPSS
1.4%
CVE-2018-6533 HIGH This Week

An issue was discovered in Icinga 2.x through 2.8.1. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Icinga
NVD GitHub
CVSS 3.0
7.8
EPSS
0.4%
CVE-2018-7549 HIGH PATCH This Week

In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Zsh Enterprise Linux Desktop Enterprise Linux Server Enterprise Linux Workstation +1
NVD
CVSS 3.0
7.5
EPSS
2.6%
CVE-2018-6532 HIGH This Week

An issue was discovered in Icinga 2.x through 2.8.1. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Icinga
NVD GitHub
CVSS 3.0
7.5
EPSS
1.4%
CVE-2018-7542 MEDIUM This Month

An issue was discovered in Xen 4.8.x through 4.10.x allowing x86 PVH guest OS users to cause a denial of service (NULL pointer dereference and hypervisor crash) by leveraging the mishandling of. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Xen Debian Linux
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2018-7540 MEDIUM This Month

An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS users to cause a denial of service (host OS CPU hang) via non-preemptable L3/L4 pagetable freeing. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Xen Debian Linux
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2018-6534 MEDIUM This Month

An issue was discovered in Icinga 2.x through 2.8.1. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Icinga
NVD GitHub
CVSS 3.0
6.5
EPSS
1.1%
CVE-2018-0489 MEDIUM PATCH This Month

Shibboleth XMLTooling-C before 1.6.4, as used in Shibboleth Service Provider before 2.6.1.4 on Windows and other products, mishandles digital signatures of user data, which allows remote attackers to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Microsoft Jwt Attack Information Disclosure Xmltooling C Debian Linux +1
NVD
CVSS 3.0
6.5
EPSS
2.1%
CVE-2018-4914 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.4%
CVE-2018-4912 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4909 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4908 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4907 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4906 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
21.6%
CVE-2018-4905 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.4%
CVE-2018-4903 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
22.4%
CVE-2018-4900 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4899 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4897 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4896 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4894 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4893 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4891 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4889 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4887 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4886 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
CVE-2018-4885 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.4%
CVE-2018-4884 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.4%
CVE-2018-4883 MEDIUM This Month

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Acrobat Dc +2
NVD
CVSS 3.0
6.5
EPSS
11.0%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy