Skip to main content
CVE-2018-10185 HIGH POC This Week

An issue was discovered in TuziCMS v2.0.6. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Tuzicms
NVD GitHub
CVSS 3.0
8.8
EPSS
0.5%
CVE-2018-5430 HIGH POC KEV THREAT This Week

The Spring web flows of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Java Path Traversal Jasperreports Server Jaspersoft Jaspersoft Reporting And Analytics
NVD Exploit-DB
CVSS 3.1
8.8
EPSS
48.8%
CVE-2018-5429 HIGH This Week

A vulnerability in the report scripting component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM,. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Jasperreports Server Jasperreports Library Jaspersoft Jaspersoft Reporting And Analytics +1
NVD
CVSS 3.0
8.8
EPSS
1.6%
CVE-2018-10190 HIGH This Week

A vulnerability in London Trust Media Private Internet Access (PIA) VPN Client v77 for Windows could allow an unauthenticated, local attacker to run executable files with elevated privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Private Internet Access
NVD GitHub
CVSS 3.0
7.8
EPSS
0.3%
CVE-2018-8834 HIGH This Week

Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Heap Overflow Buffer Overflow Cx Flnet Cx One Cx Programmer +4
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2018-7530 HIGH This Week

Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Memory Corruption Information Disclosure Cx Flnet Cx One Cx Programmer +4
NVD
CVSS 3.0
7.8
EPSS
0.3%
CVE-2018-7514 HIGH This Week

Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Stack Overflow Cx Flnet Cx One Cx Programmer +4
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2018-6798 HIGH This Week

An issue was discovered in Perl 5.22 through 5.26. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Buffer Overflow Debian Linux Perl Ubuntu Linux +2
NVD
CVSS 3.0
7.5
EPSS
4.0%
CVE-2018-10189 HIGH PATCH This Week

An issue was discovered in Mautic 1.x and 2.x before 2.13.0. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Mautic
NVD GitHub
CVSS 3.0
7.5
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy