Skip to main content
CVE-2018-19071 HIGH POC This Week

An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure I5 Application Firmware I5 System Firmware C2 Application Firmware C2 System Firmware
NVD
CVSS 3.0
7.8
EPSS
0.4%
CVE-2018-19093 HIGH POC This Week

An issue has been found in libIEC61850 v1.3. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Heap Overflow Buffer Overflow Libiec61850
NVD GitHub
CVSS 3.1
7.5
EPSS
1.7%
CVE-2018-19079 HIGH POC This Week

An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass I5 Application Firmware I5 System Firmware C2 Application Firmware C2 System Firmware
NVD
CVSS 3.0
7.5
EPSS
1.5%
CVE-2018-19077 HIGH POC This Week

An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Denial Of Service Buffer Overflow I5 Application Firmware I5 System Firmware +2
NVD
CVSS 3.0
7.5
EPSS
2.2%
CVE-2018-19074 HIGH POC This Week

An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure I5 Application Firmware I5 System Firmware C2 Application Firmware C2 System Firmware
NVD
CVSS 3.0
7.5
EPSS
1.3%
CVE-2018-19066 HIGH POC This Week

An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass I5 Application Firmware I5 System Firmware C2 Application Firmware C2 System Firmware
NVD
CVSS 3.0
7.5
EPSS
1.6%
CVE-2018-19065 HIGH POC This Week

An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass I5 Application Firmware I5 System Firmware C2 Application Firmware C2 System Firmware
NVD
CVSS 3.0
7.5
EPSS
1.6%
CVE-2018-19052 HIGH POC PATCH THREAT This Week

An issue was discovered in mod_alias_physical_handler in mod_alias.c in lighttpd before 1.4.50. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Lighttpd Backports Sle Leap Suse Linux Enterprise Server +1
NVD GitHub
CVSS 3.1
7.5
EPSS
14.1%
CVE-2018-19073 HIGH POC This Week

An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection I5 Application Firmware I5 System Firmware C2 Application Firmware C2 System Firmware
NVD
CVSS 3.0
7.2
EPSS
1.9%
CVE-2018-19070 HIGH POC This Week

An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection I5 Application Firmware I5 System Firmware C2 Application Firmware C2 System Firmware
NVD
CVSS 3.0
7.2
EPSS
4.4%
CVE-2018-19053 HIGH POC This Week

PbootCMS 1.2.2 allows remote attackers to execute arbitrary PHP code by specifying a .php filename in a "SET GLOBAL general_log_file" statement, followed by a SELECT statement containing this PHP. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection RCE PHP Pbootcms
NVD GitHub
CVSS 3.0
7.2
EPSS
1.4%
CVE-2018-18590 HIGH This Week

A potential remote code execution and information disclosure vulnerability exists in Micro Focus Operations Bridge containerized suite versions 2017.11, 2018.02, 2018.05, 2018.08. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Information Disclosure Operations Bridge
NVD
CVSS 3.0
8.8
EPSS
1.0%
CVE-2018-16844 HIGH This Week

nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Nginx Debian Linux Ubuntu Linux Xcode
NVD
CVSS 3.1
7.5
EPSS
12.4%
CVE-2018-16843 HIGH This Week

nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Nginx Debian Linux Ubuntu Linux Leap +1
NVD
CVSS 3.1
7.5
EPSS
47.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy