Skip to main content
CVE-2018-7687 HIGH This Week

The Micro Focus Client for OES before version 2 SP4 IR8a has a vulnerability that could allow a local attacker to elevate privileges via a buffer overflow in ncfsd.sys. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Client
NVD
CVSS 3.0
7.8
EPSS
0.4%
CVE-2018-8012 HIGH PATCH This Week

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authorization vulnerability could allow attackers to access resources or perform actions without proper authorization checks.

Authentication Bypass Apache Zookeeper Debian Linux Goldengate Stream Analytics
NVD
CVSS 3.1
7.5
EPSS
8.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy