Skip to main content
CVE-2018-4148 CRITICAL POC Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow Apple Iphone Os
NVD
CVSS 3.0
9.8
EPSS
5.5%
CVE-2018-4091 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Apple Mac Os X
NVD
CVSS 3.0
10.0
EPSS
1.8%
CVE-2018-3641 CRITICAL Act Now

Escalation of privilege in all versions of the Intel Remote Keyboard allows a network attacker to inject keystrokes as a local user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Intel Privilege Escalation Remote Keyboard Mobile App
NVD
CVSS 3.0
9.8
EPSS
1.1%
CVE-2018-3599 CRITICAL Act Now

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while notifying a DCI client, a Use. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Use After Free Denial Of Service Linux Google Mozilla +3
NVD
CVSS 3.0
9.8
EPSS
0.5%
CVE-2018-3596 CRITICAL Act Now

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, legacy code vulnerable after. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Linux Google Mozilla Qualcomm +1
NVD
CVSS 3.0
9.8
EPSS
0.5%
CVE-2018-4164 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Xcode
NVD
CVSS 3.0
9.8
EPSS
2.5%
CVE-2018-4124 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Apple Iphone Os Mac Os X +2
NVD
CVSS 3.0
9.8
EPSS
6.7%
CVE-2018-4115 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Apple Iphone Os Mac Os X Tvos +1
NVD
CVSS 3.0
9.8
EPSS
2.3%
CVE-2018-4110 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Apple Iphone Os
NVD
CVSS 3.0
9.8
EPSS
3.9%
CVE-2018-4108 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection Apple Mac Os X
NVD
CVSS 3.0
9.8
EPSS
1.8%
CVE-2018-4105 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection Apple Mac Os X
NVD
CVSS 3.0
9.8
EPSS
1.8%
CVE-2018-8780 CRITICAL PATCH Act Now

In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, the Dir.open, Dir.new, Dir.entries and Dir.empty? methods do not check NULL characters. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Ruby Ubuntu Linux Debian Linux
NVD
CVSS 3.0
9.1
EPSS
10.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy