Skip to main content
CVE-2018-13102 HIGH This Week

AnyDesk before "12.06.2018 - 4.1.3" on Windows 7 SP1 has a DLL preloading vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Anydesk
NVD
CVSS 3.0
7.8
EPSS
1.1%
CVE-2018-13113 HIGH This Week

The transfer and transferFrom functions of a smart contract implementation for Easy Trading Token (ETT), an Ethereum token, have an integer overflow. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Integer Overflow Buffer Overflow Easy Trading Token
NVD GitHub
CVSS 3.1
7.5
EPSS
1.3%
CVE-2018-11051 HIGH This Week

RSA Certificate Manager Versions 6.9 build 560 through 6.9 build 564 contain a path traversal vulnerability in the RSA CMP Enroll Server and the RSA REST Enroll Server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Rsa Certificate Manager
NVD
CVSS 3.0
7.5
EPSS
2.6%
CVE-2018-7783 HIGH This Week

Schneider Electric SoMachine Basic prior to v1.6 SP1 suffers from an XML External Entity (XXE) vulnerability using the DTD parameter entities technique resulting in disclosure and retrieval of. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Schneider Electric XXE Somachine Basic
NVD
CVSS 3.0
7.5
EPSS
1.6%
CVE-2018-7779 HIGH This Week

In Schneider Electric Wiser for KNX V2.1.0 and prior, homeLYnk V2.0.1 and prior; and spaceLYnk V2.1.0 and prior, weak and unprotected FTP access could allow an attacker unauthorized access. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Schneider Electric Authentication Bypass Homelynk Firmware Spacelynk Firmware Wiser For Knx Firmware
NVD
CVSS 3.0
7.5
EPSS
1.4%
CVE-2018-10596 HIGH This Week

Medtronic 2090 CareLink Programmer uses a virtual private network connection to securely download updates. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure 2090 Carelink Programmer Firmware
NVD
CVSS 3.1
7.1
EPSS
1.3%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy