Skip to main content
CVE-2018-7510 CRITICAL Act Now

In the web application in BeaconMedaes TotalAlert Scroll Medical Air Systems running software versions prior to 4107600010.23, passwords are presented in plaintext in a file that is accessible. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Scroll Medical Air Systems Firmware
NVD
CVSS 3.0
9.8
EPSS
1.4%
CVE-2018-11808 CRITICAL Act Now

Incorrect Access Control in CustomFieldsFeedServlet in Zoho ManageEngine Applications Manager Version 13 before build 13740 allows an attacker to delete any file and read certain files on the server. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Zoho Information Disclosure Manageengine Applications Manager
NVD GitHub
CVSS 3.0
9.1
EPSS
6.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy