Skip to main content
CVE-2018-4240 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Apple Iphone Os Mac Os X Tvos +1
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
7.0%
CVE-2018-9182 MEDIUM POC This Month

Twonky Server before 8.5.1 has XSS via a modified "language" parameter in the Language section. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Twonky Server
NVD GitHub
CVSS 3.0
6.1
EPSS
1.4%
CVE-2018-9177 MEDIUM POC This Month

Twonky Server before 8.5.1 has XSS via a folder name on the Shared Folders screen. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Twonky Server
NVD GitHub
CVSS 3.0
6.1
EPSS
0.7%
CVE-2018-12047 MEDIUM POC This Month

xfind/search in Ximdex 4.0 has XSS via the filter[n][value] parameters for non-negative values of n, as demonstrated by n equal to 0 through 12. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Ximdex
NVD GitHub
CVSS 3.0
6.1
EPSS
0.9%
CVE-2018-11409 MEDIUM POC THREAT This Month

Splunk through 7.0.1 allows information disclosure by appending __raw/services/server/info/server-info?output_mode=json to a query, as demonstrated by discovering a license key. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Splunk Information Disclosure
NVD GitHub Exploit-DB
CVSS 3.0
5.3
EPSS
98.4%
CVE-2018-1281 MEDIUM PATCH This Month

The clustered setup of Apache MXNet allows users to specify which IP address and port the scheduler will listen on via the DMLC_PS_ROOT_URI and DMLC_PS_ROOT_PORT env variables. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Apache Information Disclosure Mxnet
NVD GitHub
CVSS 3.0
6.5
EPSS
1.9%
CVE-2018-4250 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Apple Iphone Os
NVD
CVSS 3.0
6.5
EPSS
1.4%
CVE-2018-4247 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Apple Safari Iphone Os
NVD
CVSS 3.0
6.5
EPSS
1.5%
CVE-2018-4205 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Safari
NVD
CVSS 3.0
6.5
EPSS
1.7%
CVE-2018-4188 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Apple Apple Tv Safari +3
NVD
CVSS 3.0
6.5
EPSS
2.6%
CVE-2018-4187 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Iphone Os Mac Os X
NVD
CVSS 3.0
6.5
EPSS
2.5%
CVE-2018-10505 MEDIUM PATCH This Month

A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within the. Rated medium severity (CVSS 6.3). This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Privilege Escalation Trend Micro Buffer Overflow Officescan
NVD
CVSS 3.0
6.3
EPSS
0.4%
CVE-2018-10359 MEDIUM PATCH This Month

A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within the. Rated medium severity (CVSS 6.3). This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Privilege Escalation Trend Micro Buffer Overflow Officescan
NVD
CVSS 3.0
6.3
EPSS
0.4%
CVE-2018-10358 MEDIUM PATCH This Month

A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within the. Rated medium severity (CVSS 6.3). This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Privilege Escalation Trend Micro Buffer Overflow Officescan
NVD
CVSS 3.0
6.3
EPSS
0.4%
CVE-2018-4202 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Apple Iphone Os Mac Os X
NVD
CVSS 3.0
5.9
EPSS
1.5%
CVE-2018-4253 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Amd Denial Of Service Information Disclosure Apple +1
NVD
CVSS 3.0
5.5
EPSS
0.9%
CVE-2018-4251 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Mac Os X
NVD
CVSS 3.0
5.5
EPSS
1.1%
CVE-2018-4235 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Code Injection Apple Apple Tv Iphone Os Mac Os X +1
NVD
CVSS 3.0
5.5
EPSS
0.5%
CVE-2018-4226 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Apple Iphone Os Mac Os X +3
NVD
CVSS 3.0
5.5
EPSS
0.5%
CVE-2018-4225 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Microsoft Apple Iphone Os Mac Os X +3
NVD
CVSS 3.0
5.5
EPSS
0.5%
CVE-2018-4224 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Apple Apple Tv Iphone Os +4
NVD
CVSS 3.0
5.5
EPSS
0.5%
CVE-2018-4223 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Apple Apple Tv Iphone Os Mac Os X +1
NVD
CVSS 3.0
5.5
EPSS
0.4%
CVE-2018-4198 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Apple Apple Tv Iphone Os Mac Os X +1
NVD
CVSS 3.0
5.5
EPSS
1.4%
CVE-2018-4171 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Mac Os X
NVD
CVSS 3.0
5.5
EPSS
1.0%
CVE-2018-4159 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Mac Os X
NVD
CVSS 3.0
5.5
EPSS
0.9%
CVE-2018-4141 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Intel Information Disclosure Apple Mac Os X
NVD
CVSS 3.0
5.5
EPSS
0.9%
CVE-2018-12066 MEDIUM PATCH This Month

BIRD Internet Routing Daemon before 1.6.4 allows local users to cause a denial of service (stack consumption and daemon crash) via BGP mask expressions in birdc. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. This Uncontrolled Resource Consumption vulnerability could allow attackers to cause denial of service by exhausting system resources.

Denial Of Service Bird
NVD
CVSS 3.0
5.5
EPSS
0.4%
CVE-2018-10506 MEDIUM PATCH This Month

A out-of-bounds read information disclosure vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to disclose sensitive information on vulnerable installations due to a. Rated medium severity (CVSS 4.7).

Trend Micro Information Disclosure Buffer Overflow Officescan
NVD
CVSS 3.0
4.7
EPSS
1.1%
CVE-2018-4252 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Iphone Os
NVD
CVSS 3.0
4.6
EPSS
0.3%
CVE-2018-4244 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Iphone Os
NVD
CVSS 3.0
4.6
EPSS
0.3%
CVE-2018-4239 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Iphone Os
NVD
CVSS 3.0
4.6
EPSS
0.3%
CVE-2018-4232 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Apple Safari Iphone Os +4
NVD
CVSS 3.0
4.3
EPSS
2.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy