Skip to main content
CVE-2018-1229 MEDIUM This Month

Pivotal Spring Batch Admin, all versions, contains a stored XSS vulnerability in the file upload feature. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Java XSS File Upload Spring Batch Admin
NVD
CVSS 3.0
6.1
EPSS
0.8%
CVE-2018-1347 MEDIUM This Month

The administrative web interface in NetIQ iManager, versions prior to 3.1, are vulnerable to reflected cross site scripting. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Imanager
NVD
CVSS 3.0
6.1
EPSS
0.7%
CVE-2018-7525 MEDIUM This Month

In Omron CX-Supervisor Versions 3.30 and prior, processing a malformed packet by a certain executable may cause an untrusted pointer dereference vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Cx Supervisor
NVD
CVSS 3.0
5.3
EPSS
0.3%
CVE-2018-7523 MEDIUM This Month

In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a double free vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Cx Supervisor
NVD
CVSS 3.0
5.3
EPSS
0.3%
CVE-2018-7521 MEDIUM This Month

In Omron CX-Supervisor Versions 3.30 and prior, use after free vulnerabilities can be exploited when CX Supervisor parses a specially crafted project file. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Memory Corruption Denial Of Service Use After Free Cx Supervisor
NVD
CVSS 3.0
5.3
EPSS
0.3%
CVE-2018-7519 MEDIUM This Month

In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a heap-based buffer overflow. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Heap Overflow Buffer Overflow Cx Supervisor
NVD
CVSS 3.1
5.3
EPSS
0.4%
CVE-2018-7517 MEDIUM This Month

In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause an out of bounds vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow Cx Supervisor
NVD
CVSS 3.0
5.3
EPSS
0.3%
CVE-2018-7515 MEDIUM This Month

In Omron CX-Supervisor Versions 3.30 and prior, access of uninitialized pointer vulnerabilities can be exploited when CX Supervisor indirectly calls an initialized pointer when parsing malformed. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Cx Supervisor
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2018-7513 MEDIUM This Month

In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a stack-based buffer overflow. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Stack Overflow Cx Supervisor
NVD
CVSS 3.1
5.3
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy