Skip to main content
CVE-2018-5770 CRITICAL POC Act Now

An issue was discovered on Tenda AC15 devices. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Tenda Ac15 Firmware
NVD
CVSS 3.0
9.8
EPSS
2.8%
CVE-2018-8828 CRITICAL PATCH Act Now

A Buffer Overflow issue was discovered in Kamailio before 4.4.7, 5.0.x before 5.0.6, and 5.1.x before 5.1.2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Buffer Overflow Kamailio Debian Linux
NVD GitHub
CVSS 3.0
9.8
EPSS
31.3%
CVE-2018-5768 CRITICAL Act Now

A remote, unauthenticated attacker can gain remote code execution on the the Tenda AC15 router with a specially crafted password parameter for the COOKIE header. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass RCE Tenda Ac15 Firmware
NVD
CVSS 3.0
9.8
EPSS
3.6%
CVE-2018-8088 CRITICAL PATCH Act Now

org.slf4j.ext.EventData in the slf4j-ext module in QOS.CH SLF4J before 1.8.0-beta2 allows remote attackers to bypass intended access restrictions via crafted data. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Slf4J Jboss Enterprise Application Platform Virtualization Virtualization Host +9
NVD GitHub
CVSS 3.1
9.8
EPSS
15.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy