Skip to main content
CVE-2018-7641 HIGH POC This Week

An issue was discovered in CImg v.220. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Cimg
NVD GitHub
CVSS 3.0
7.8
EPSS
1.2%
CVE-2018-7640 HIGH POC This Week

An issue was discovered in CImg v.220. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Cimg
NVD GitHub
CVSS 3.0
7.8
EPSS
1.2%
CVE-2018-7639 HIGH POC This Week

An issue was discovered in CImg v.220. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Cimg
NVD GitHub
CVSS 3.0
7.8
EPSS
1.2%
CVE-2018-7638 HIGH POC This Week

An issue was discovered in CImg v.220. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Cimg
NVD GitHub
CVSS 3.0
7.8
EPSS
1.2%
CVE-2018-7637 HIGH POC This Week

An issue was discovered in CImg v.220. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Cimg
NVD GitHub
CVSS 3.0
7.8
EPSS
1.2%
CVE-2018-1058 HIGH This Week

A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure PostgreSQL Ubuntu Linux Cloudforms
NVD
CVSS 3.1
8.8
EPSS
14.1%
CVE-2018-1170 HIGH This Week

This vulnerability allows adjacent attackers to inject arbitrary Controller Area Network messages on vulnerable installations of Volkswagen Customer-Link App 1.30 and HTC Customer-Link Bridge. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Customer Link Bridge Customer Link
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2018-1169 HIGH This Week

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Amazon Music Player 6.1.5.1213. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Command Injection Amazon Music
NVD
CVSS 3.0
8.8
EPSS
2.6%
CVE-2018-7643 HIGH This Week

The display_debug_ranges function in dwarf.c in GNU Binutils 2.30 allows remote attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Integer Overflow Denial Of Service Binutils Enterprise Linux Desktop Enterprise Linux Server +1
NVD
CVSS 3.0
7.8
EPSS
2.4%
CVE-2018-7433 HIGH This Week

The iThemes Security plugin before 6.9.1 for WordPress does not properly perform data escaping for the logs page. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress Information Disclosure Security
NVD
CVSS 3.0
7.5
EPSS
1.4%
CVE-2018-6490 HIGH This Week

Denial of Service vulnerability in Micro Focus Operations Orchestration Software, version 10.x. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Operations Orchestration
NVD
CVSS 3.0
7.5
EPSS
2.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy