Skip to main content
CVE-2018-10898 HIGH PATCH This Week

A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Openstack Tripleo Heat Templates
NVD
CVSS 3.0
8.8
EPSS
0.9%
CVE-2018-10847 HIGH This Week

prosody before versions 0.10.2, 0.9.14 is vulnerable to an Authentication Bypass. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Prosody
NVD
CVSS 3.0
8.8
EPSS
1.7%
CVE-2018-9066 HIGH This Week

In Lenovo xClarity Administrator versions earlier than 2.1.0, an authenticated LXCA user can, under specific circumstances, inject additional parameters into a specific web API call which can result. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Lenovo Code Injection Xclarity Administrator
NVD
CVSS 3.0
8.8
EPSS
2.2%
CVE-2018-9064 HIGH This Week

In Lenovo xClarity Administrator versions earlier than 2.1.0, an authenticated LXCA user may abuse a web API debug call to retrieve the credentials for the System Manager user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Lenovo Information Disclosure Xclarity Administrator
NVD
CVSS 3.0
8.8
EPSS
1.0%
CVE-2018-9065 HIGH This Week

In Lenovo xClarity Administrator versions earlier than 2.1.0, an attacker that gains access to the underlying LXCA file system user may be able to retrieve a credential store containing the service. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. No vendor patch available.

Lenovo Information Disclosure Xclarity Administrator
NVD
CVSS 3.0
7.5
EPSS
0.5%
CVE-2018-10903 HIGH PATCH This Week

A flaw was found in python-cryptography versions between >=1.9.0 and <2.3. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Python Python Cryptography Openstack Ubuntu Linux
NVD GitHub
CVSS 3.0
7.5
EPSS
3.2%
CVE-2018-14743 HIGH This Week

An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Pbc
NVD GitHub
CVSS 3.0
7.5
EPSS
1.4%
CVE-2018-14742 HIGH This Week

An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Pbc
NVD GitHub
CVSS 3.0
7.5
EPSS
1.3%
CVE-2018-14741 HIGH This Week

An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Pbc
NVD GitHub
CVSS 3.0
7.5
EPSS
1.3%
CVE-2018-14740 HIGH This Week

An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Pbc
NVD GitHub
CVSS 3.0
7.5
EPSS
1.3%
CVE-2018-14739 HIGH This Week

An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Pbc
NVD GitHub
CVSS 3.0
7.5
EPSS
1.3%
CVE-2018-14738 HIGH This Week

An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Pbc
NVD GitHub
CVSS 3.0
7.5
EPSS
1.3%
CVE-2018-14737 HIGH This Week

An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Pbc
NVD GitHub
CVSS 3.0
7.5
EPSS
1.4%
CVE-2018-14736 HIGH This Week

An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Buffer Overflow Pbc
NVD GitHub
CVSS 3.0
7.5
EPSS
1.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy