Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 8.8

    HIGH
    CVE-2018-11157

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 15 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11156

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 14 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11155

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 13 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11154

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 12 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11153

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 11 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11152

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 10 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 7.2

    HIGH
    CVE-2018-11151

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 9 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11150

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 8 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11149

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 7 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11148

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 6 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11147

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 5 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11146

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 4 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11145

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 3 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2018-11144

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 2 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2018-11143

    Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 1 of 46).... Read more

    Affected Products : disk_backup
    • Published: Jun. 02, 2018
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2018-11142

    The 'systemui/settings_network.php' and 'systemui/settings_patching.php' scripts in the Quest KACE System Management Appliance 8.0.318 are accessible only from localhost. This restriction can be bypassed by modifying the 'Host' and 'X_Forwarded_For' HTTP ... Read more

    • Published: May. 31, 2018
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2018-11141

    The 'IMAGES_JSON' and 'attachments_to_remove[]' parameters of the '/adminui/advisory.php' script in the Quest KACE System Management Virtual Appliance 8.0.318 can be abused to write and delete files respectively via Directory Traversal. Files can be at an... Read more

    • Published: May. 31, 2018
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2018-11140

    The 'reportID' parameter received by the '/common/run_report.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, an error-based type).... Read more

    • Published: May. 31, 2018
    • Modified: Nov. 21, 2024

  • 9.0

    HIGH
    CVE-2018-11139

    The '/common/ajax_email_connection_test.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by any authenticated user and can be abused to execute arbitrary commands on the system. This script is vulnerable to command injection... Read more

    • Published: May. 31, 2018
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2018-11137

    The 'checksum' parameter of the '/common/download_attachment.php' script in the Quest KACE System Management Appliance 8.0.318 can be abused to read arbitrary files with 'www' privileges via Directory Traversal. No administrator privileges are needed to e... Read more

    • Published: May. 31, 2018
    • Modified: Nov. 21, 2024
Showing 20 of 293680 Results