Skip to main content
CVE-2018-18445 HIGH PATCH This Week

In the Linux kernel 4.14.x, 4.15.x, 4.16.x, 4.17.x, and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Information Disclosure Buffer Overflow Linux Linux Kernel Ubuntu Linux +6
NVD GitHub
CVSS 3.1
7.8
EPSS
0.5%
CVE-2018-15976 HIGH PATCH This Week

Adobe Technical Communications Suite versions 1.0.5.1 and below have an insecure library loading (dll hijacking) vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Privilege Escalation Adobe Technical Communications Suite
NVD
CVSS 3.0
7.8
EPSS
5.4%
CVE-2018-15974 HIGH PATCH This Week

Adobe Framemaker versions 1.0.5.1 and below have an insecure library loading (dll hijacking) vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Privilege Escalation Adobe Framemaker
NVD
CVSS 3.0
7.8
EPSS
4.6%
CVE-2018-17911 HIGH This Week

LAquis SCADA Versions 4.1.0.3870 and prior has several stack-based buffer overflow vulnerabilities, which may allow remote code execution. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Buffer Overflow Stack Overflow Laquis Scada
NVD
CVSS 3.1
7.8
EPSS
3.2%
CVE-2018-17901 HIGH This Week

LAquis SCADA Versions 4.1.0.3870 and prior, when processing project files the application fails to sanitize user input prior to performing write operations on a stack object, which may allow an. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow Laquis Scada
NVD
CVSS 3.0
7.8
EPSS
1.6%
CVE-2018-0456 HIGH This Week

A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco NX-OS Software could allow an authenticated, remote attacker to cause the SNMP application of an. Rated high severity (CVSS 7.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Nx Os
NVD
CVSS 3.0
7.7
EPSS
3.2%
CVE-2018-3208 HIGH PATCH This Week

Vulnerability in the Hyperion Data Relationship Management component of Oracle Hyperion (subcomponent: Access and Security). Rated high severity (CVSS 7.7), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Hyperion Data Relationship Management
NVD
CVSS 3.0
7.7
EPSS
2.0%
CVE-2018-3160 HIGH PATCH This Week

Vulnerability in the Oracle Hospitality Cruise Shipboard Property Management System component of Oracle Hospitality Applications (subcomponent: OHC Admin, OHC Management). Rated high severity (CVSS 7.7), this vulnerability is low attack complexity.

Oracle Information Disclosure Hospitality Cruise Shipboard Property Management System
NVD
CVSS 3.0
7.7
EPSS
0.5%
CVE-2018-3155 HIGH PATCH This Week

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Rated high severity (CVSS 7.7), this vulnerability is remotely exploitable, low attack complexity.

Oracle Denial Of Service MySQL Oncommand Insight Oncommand Unified Manager +4
NVD
CVSS 3.0
7.7
EPSS
3.7%
CVE-2018-3142 HIGH PATCH This Week

Vulnerability in the Hyperion Essbase Administration Services component of Oracle Hyperion (subcomponent: EAS Console). Rated high severity (CVSS 7.7), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Hyperion
NVD
CVSS 3.0
7.7
EPSS
2.0%
CVE-2018-3115 HIGH PATCH This Week

Vulnerability in the Oracle Retail Sales Audit component of Oracle Retail Applications (subcomponent: Operational Insights). Rated high severity (CVSS 7.7), this vulnerability is remotely exploitable.

Oracle Denial Of Service Authentication Bypass Retail Sales Audit
NVD
CVSS 3.0
7.7
EPSS
1.0%
CVE-2018-0443 HIGH This Week

A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol component of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Cisco Wireless Lan Controller Software
NVD
CVSS 3.1
7.5
EPSS
3.4%
CVE-2018-0442 HIGH This Week

A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol component of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Cisco Wireless Lan Controller Software
NVD
CVSS 3.1
7.5
EPSS
3.3%
CVE-2018-12821 HIGH PATCH This Week

Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Adobe Information Disclosure Buffer Overflow Digital Editions
NVD
CVSS 3.0
7.5
EPSS
4.0%
CVE-2018-12820 HIGH PATCH This Week

Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Adobe Information Disclosure Buffer Overflow Digital Editions
NVD
CVSS 3.0
7.5
EPSS
4.0%
CVE-2018-12819 HIGH PATCH This Week

Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Adobe Information Disclosure Buffer Overflow Digital Editions
NVD
CVSS 3.0
7.5
EPSS
4.0%
CVE-2018-12818 HIGH PATCH This Week

Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Adobe Information Disclosure Buffer Overflow Digital Editions
NVD
CVSS 3.0
7.5
EPSS
4.0%
CVE-2018-12816 HIGH PATCH This Week

Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Adobe Information Disclosure Buffer Overflow Digital Editions
NVD
CVSS 3.0
7.5
EPSS
4.0%
CVE-2018-18434 HIGH PATCH This Week

An issue was discovered in litemall 0.9.0. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Java Path Traversal Litemall
NVD GitHub
CVSS 3.0
7.5
EPSS
2.4%
CVE-2018-3246 HIGH PATCH This Week

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS - Web Services). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Banking Platform Business Process Management Suite Communications Converged Application Server +6
NVD
CVSS 3.0
7.5
EPSS
2.9%
CVE-2018-3152 HIGH PATCH This Week

Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Administration). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Glassfish Server
NVD
CVSS 3.0
7.5
EPSS
2.0%
CVE-2018-3151 HIGH PATCH This Week

Vulnerability in the Oracle iProcurement component of Oracle E-Business Suite (subcomponent: E-Content Manager Catalog). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Iprocurement
NVD
CVSS 3.0
7.5
EPSS
2.7%
CVE-2018-2889 HIGH PATCH This Week

Vulnerability in the MICROS Retail-J component of Oracle Retail Applications (subcomponent: Internal Operations). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Micros Retail J
NVD
CVSS 3.0
7.5
EPSS
2.1%
CVE-2018-0441 HIGH This Week

A vulnerability in the 802.11r Fast Transition feature set of Cisco IOS Access Points (APs) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on. Rated high severity (CVSS 7.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Cisco Denial Of Service Apple Access Points
NVD
CVSS 3.0
7.4
EPSS
0.9%
CVE-2018-3275 HIGH PATCH This Week

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: LibKMIP). Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required.

Oracle Authentication Bypass Solaris
NVD
CVSS 3.0
7.4
EPSS
2.4%
CVE-2018-3192 HIGH PATCH This Week

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Query). Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

Oracle Information Disclosure Peoplesoft Enterprise Peopletools
NVD
CVSS 3.0
7.2
EPSS
2.4%
CVE-2018-3179 HIGH PATCH This Week

Vulnerability in the Oracle Identity Manager component of Oracle Fusion Middleware (subcomponent: Advanced Console). Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Identity Manager
NVD
CVSS 3.0
7.2
EPSS
1.8%
CVE-2018-3165 HIGH PATCH This Week

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: SQR). Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

Oracle Information Disclosure Peoplesoft Enterprise Peopletools
NVD
CVSS 3.0
7.2
EPSS
2.4%
CVE-2018-3302 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3234 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3233 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3232 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3231 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3230 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3229 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3228 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3227 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3226 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3225 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3224 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3223 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3222 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3221 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3220 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Authentication Bypass Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.9%
CVE-2018-3219 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Denial Of Service Authentication Bypass Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.9%
CVE-2018-3218 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3217 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Outside In Technology
NVD
CVSS 3.0
7.1
EPSS
1.5%
CVE-2018-3168 HIGH PATCH This Week

Vulnerability in the Oracle Identity Analytics component of Oracle Fusion Middleware (subcomponent: Core Components). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Identity Analytics
NVD
CVSS 3.0
7.1
EPSS
1.2%
CVE-2018-3158 HIGH PATCH This Week

Vulnerability in the Oracle Hospitality Cruise Fleet Management component of Oracle Hospitality Applications (subcomponent: Emergency Response System). Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Hospitality Cruise Fleet Management
NVD
CVSS 3.0
7.1
EPSS
1.2%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy