Skip to main content
CVE-2018-4162 HIGH POC THREAT Act Now

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +8
NVD GitHub
CVSS 3.0
8.8
EPSS
38.6%
CVE-2018-4148 CRITICAL POC Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow Apple Iphone Os
NVD
CVSS 3.0
9.8
EPSS
5.5%
CVE-2018-8941 HIGH POC This Week

Diagnostics functionality on D-Link DSL-3782 devices with firmware EU v. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow D-Link Dsl 3782 Firmware
NVD GitHub
CVSS 3.0
8.8
EPSS
6.9%
CVE-2018-1098 HIGH POC PATCH This Week

A cross-site request forgery flaw was found in etcd 3.3.1 and earlier. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Etcd Fedora
NVD GitHub
CVSS 3.0
8.8
EPSS
1.3%
CVE-2018-4121 HIGH POC THREAT This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +6
NVD GitHub Exploit-DB
CVSS 3.0
8.8
EPSS
13.2%
CVE-2018-4089 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service RCE Buffer Overflow Apple Apple Tv +3
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
6.5%
CVE-2018-4139 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service RCE Buffer Overflow Apple Mac Os X
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
4.4%
CVE-2018-4095 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service RCE Buffer Overflow Apple Apple Tv +2
NVD
CVSS 3.0
7.8
EPSS
1.8%
CVE-2018-4087 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service RCE Buffer Overflow Apple Apple Tv +2
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
7.1%
CVE-2018-4083 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service RCE Buffer Overflow Apple Mac Os X
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
3.8%
CVE-2018-0492 HIGH POC This Week

Johnathan Nightingale beep through 1.3.4, if setuid, has a race condition that allows local privilege escalation. Rated high severity (CVSS 7.0). Public exploit code available and no vendor patch available.

Race Condition Privilege Escalation Beep Debian Linux
NVD Exploit-DB
CVSS 3.0
7.0
EPSS
1.7%
CVE-2018-4091 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Apple Mac Os X
NVD
CVSS 3.0
10.0
EPSS
1.8%
CVE-2018-3641 CRITICAL Act Now

Escalation of privilege in all versions of the Intel Remote Keyboard allows a network attacker to inject keystrokes as a local user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Intel Privilege Escalation Remote Keyboard Mobile App
NVD
CVSS 3.0
9.8
EPSS
1.1%
CVE-2018-3599 CRITICAL Act Now

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while notifying a DCI client, a Use. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Use After Free Denial Of Service Linux Google Mozilla +3
NVD
CVSS 3.0
9.8
EPSS
0.5%
CVE-2018-3596 CRITICAL Act Now

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, legacy code vulnerable after. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Linux Google Mozilla Qualcomm +1
NVD
CVSS 3.0
9.8
EPSS
0.5%
CVE-2018-4164 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Xcode
NVD
CVSS 3.0
9.8
EPSS
2.5%
CVE-2018-4124 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Apple Iphone Os Mac Os X +2
NVD
CVSS 3.0
9.8
EPSS
6.7%
CVE-2018-4115 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Apple Iphone Os Mac Os X Tvos +1
NVD
CVSS 3.0
9.8
EPSS
2.3%
CVE-2018-4110 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Apple Iphone Os
NVD
CVSS 3.0
9.8
EPSS
3.9%
CVE-2018-4108 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection Apple Mac Os X
NVD
CVSS 3.0
9.8
EPSS
1.8%
CVE-2018-4105 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection Apple Mac Os X
NVD
CVSS 3.0
9.8
EPSS
1.8%
CVE-2018-1099 MEDIUM POC PATCH This Month

DNS rebinding vulnerability found in etcd 3.3.1 and earlier. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available.

Information Disclosure Etcd Fedora
NVD GitHub
CVSS 3.0
5.5
EPSS
0.5%
CVE-2018-4090 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Apple Apple Tv Iphone Os Mac Os X +1
NVD Exploit-DB
CVSS 3.0
5.5
EPSS
3.8%
CVE-2018-8780 CRITICAL PATCH Act Now

In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, the Dir.open, Dir.new, Dir.entries and Dir.empty? methods do not check NULL characters. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Ruby Ubuntu Linux Debian Linux
NVD
CVSS 3.0
9.1
EPSS
10.1%
CVE-2018-4165 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +7
NVD
CVSS 3.0
8.8
EPSS
1.9%
CVE-2018-4163 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +8
NVD
CVSS 3.0
8.8
EPSS
2.1%
CVE-2018-4161 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +7
NVD
CVSS 3.0
8.8
EPSS
1.9%
CVE-2018-4149 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Iphone Os
NVD
CVSS 3.0
8.8
EPSS
1.6%
CVE-2018-4134 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Iphone Os
NVD
CVSS 3.0
8.8
EPSS
1.6%
CVE-2018-4130 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +5
NVD
CVSS 3.0
8.8
EPSS
1.9%
CVE-2018-4129 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +8
NVD
CVSS 3.0
8.8
EPSS
2.1%
CVE-2018-4128 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +7
NVD
CVSS 3.0
8.8
EPSS
1.9%
CVE-2018-4127 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +7
NVD
CVSS 3.0
8.8
EPSS
1.9%
CVE-2018-4125 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +8
NVD
CVSS 3.0
8.8
EPSS
2.1%
CVE-2018-4122 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +8
NVD
CVSS 3.0
8.8
EPSS
2.1%
CVE-2018-4120 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +7
NVD
CVSS 3.0
8.8
EPSS
1.9%
CVE-2018-4119 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +7
NVD
CVSS 3.0
8.8
EPSS
1.9%
CVE-2018-4118 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +7
NVD
CVSS 3.0
8.8
EPSS
1.9%
CVE-2018-4114 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +8
NVD
CVSS 3.0
8.8
EPSS
2.1%
CVE-2018-4106 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection Apple Mac Os X
NVD
CVSS 3.0
8.8
EPSS
1.7%
CVE-2018-4101 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +7
NVD
CVSS 3.0
8.8
EPSS
1.9%
CVE-2018-4096 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +8
NVD
CVSS 3.0
8.8
EPSS
1.8%
CVE-2018-4088 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Microsoft RCE Denial Of Service Apple +8
NVD
CVSS 3.0
8.8
EPSS
1.8%
CVE-2018-4085 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service RCE Buffer Overflow Apple Apple Tv +3
NVD
CVSS 3.0
8.8
EPSS
1.5%
CVE-2018-3645 HIGH This Week

Escalation of privilege in all versions of the Intel Remote Keyboard allows a local attacker to inject keystrokes into another remote keyboard session. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Privilege Escalation Remote Keyboard Mobile App
NVD
CVSS 3.0
7.8
EPSS
0.3%
CVE-2018-3638 HIGH This Week

Escalation of privilege in all versions of the Intel Remote Keyboard allows an authorized local attacker to execute arbitrary code as a privileged user. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Privilege Escalation RCE Remote Keyboard Mobile App
NVD
CVSS 3.0
7.8
EPSS
0.4%
CVE-2018-5828 HIGH This Week

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in function. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Linux Google Mozilla Qualcomm +1
NVD
CVSS 3.0
7.8
EPSS
0.2%
CVE-2018-5825 HIGH This Week

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in the kernel IPA driver, a Use. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Use After Free Denial Of Service Linux Google Mozilla +3
NVD
CVSS 3.0
7.8
EPSS
0.2%
CVE-2018-5824 HIGH This Week

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while processing. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Linux Google Mozilla Qualcomm +1
NVD
CVSS 3.0
7.8
EPSS
0.2%
CVE-2018-5823 HIGH This Week

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, improper buffer length validation in. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Linux Google Mozilla Qualcomm +1
NVD
CVSS 3.0
7.8
EPSS
0.2%
Page 1 of 3 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy