Skip to main content
CVE-2018-10750 HIGH POC This Week

An issue was discovered on D-Link DSL-3782 EU 1.01 devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow D-Link Dsl 3782 Firmware
NVD GitHub
CVSS 3.0
8.8
EPSS
3.3%
CVE-2018-10749 HIGH POC This Week

An issue was discovered on D-Link DSL-3782 EU 1.01 devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow D-Link Dsl 3782 Firmware
NVD GitHub
CVSS 3.0
8.8
EPSS
2.7%
CVE-2018-10748 HIGH POC This Week

An issue was discovered on D-Link DSL-3782 EU 1.01 devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow D-Link Dsl 3782 Firmware
NVD GitHub
CVSS 3.0
8.8
EPSS
2.7%
CVE-2018-10747 HIGH POC This Week

An issue was discovered on D-Link DSL-3782 EU 1.01 devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow D-Link Dsl 3782 Firmware
NVD GitHub
CVSS 3.0
8.8
EPSS
2.7%
CVE-2018-10746 HIGH POC This Week

An issue was discovered on D-Link DSL-3782 EU 1.01 devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow D-Link Dsl 3782 Firmware
NVD GitHub
CVSS 3.0
8.8
EPSS
2.7%
CVE-2018-10641 HIGH POC This Week

D-Link DIR-601 A1 1.02NA devices do not require the old password for a password change, which occurs in cleartext. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Authentication Bypass D-Link Dir 601 Firmware
NVD GitHub
CVSS 3.0
8.1
EPSS
1.8%
CVE-2018-10722 HIGH POC This Week

In Cylance CylancePROTECT before 1470, an unprivileged local user can obtain SYSTEM privileges because users have Modify access to the %PROGRAMFILES%\Cylance\Desktop\log folder, the CyUpdate process. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Cylanceprotect
NVD
CVSS 3.0
7.8
EPSS
0.5%
CVE-2018-9154 HIGH POC This Week

There is a reachable abort in the function jpc_dec_process_sot in libjasper/jpc/jpc_dec.c of JasPer 2.0.14 that will lead to a remote denial of service attack by triggering an unexpected jas_alloc2. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Jasper
NVD
CVSS 3.0
7.5
EPSS
3.5%
CVE-2018-7509 HIGH This Week

WPLSoft in Delta Electronics versions 2.45.0 and prior writes data from a file outside the bounds of the intended buffer space, which could cause memory corruption or may allow remote code execution. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption RCE Buffer Overflow Wplsoft
NVD
CVSS 3.0
8.8
EPSS
2.6%
CVE-2018-7507 HIGH This Week

WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Heap Overflow RCE Buffer Overflow Wplsoft
NVD
CVSS 3.0
8.8
EPSS
2.8%
CVE-2018-7494 HIGH This Week

WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length stack buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Buffer Overflow Stack Overflow Wplsoft
NVD
CVSS 3.0
8.8
EPSS
2.8%
CVE-2018-8853 HIGH This Week

Philips Brilliance CT devices operate user functions from within a contained kiosk in a Microsoft Windows operating system. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Brilliance Firmware 64 Brilliance Ict Sp Firmware Brilliance Ict Firmware +1
NVD
CVSS 3.0
8.8
EPSS
0.4%
CVE-2018-8861 HIGH This Week

Vulnerabilities within the Philips Brilliance CT kiosk environment (Brilliance 64 version 2.6.2 and prior, Brilliance iCT versions 4.1.6 and prior, Brillance iCT SP versions 3.2.4 and prior, and. Rated high severity (CVSS 8.7), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Brilliance Firmware 64 Brilliance Ict Sp Firmware Brilliance Ict Firmware +1
NVD
CVSS 3.0
8.7
EPSS
0.4%
CVE-2018-8872 HIGH This Week

In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, system calls read directly from memory addresses within the control program area without any verification. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Schneider Electric Buffer Overflow Triconex Tricon Mp 3008 Firmware
NVD
CVSS 3.0
8.1
EPSS
2.3%
CVE-2018-9063 HIGH This Week

MapDrv (C:\Program Files\Lenovo\System Update\mapdrv.exe) In Lenovo System Update versions earlier than 5.07.0072 contains a local vulnerability where an attacker entering very large user ID or. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Lenovo RCE Buffer Overflow System Update
NVD
CVSS 3.0
7.8
EPSS
0.4%
CVE-2018-8857 HIGH This Week

Philips Brilliance CT software (Brilliance 64 version 2.6.2 and prior, Brilliance iCT versions 4.1.6 and prior, Brillance iCT SP versions 3.2.4 and prior, and Brilliance CT Big Bore 2.3.5 and prior). Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Brilliance Firmware 64 Brilliance Ict Sp Firmware Brilliance Ict Firmware Brilliance Ct Big Bore Firmware
NVD
CVSS 3.0
7.8
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy