Latest CVE Feed
-
7.5
HIGHCVE-2018-10663
An issue was discovered in multiple models of Axis IP Cameras. There is an Incorrect Size Calculation.... Read more
Affected Products : p1204_firmware a1001_firmware a8004-v_firmware a8105-e_firmware a9161_firmware a9188_firmware a9188-v_firmware c1004-e_firmware c2005_firmware c3003-e_firmware +770 more products- Published: Jun. 26, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-10662
An issue was discovered in multiple models of Axis IP Cameras. There is an Exposed Insecure Interface.... Read more
Affected Products : p1204_firmware a1001_firmware a8004-v_firmware a8105-e_firmware a9161_firmware a9188_firmware a9188-v_firmware c1004-e_firmware c2005_firmware c3003-e_firmware +770 more products- Published: Jun. 26, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-10661
An issue was discovered in multiple models of Axis IP Cameras. There is a bypass of access control.... Read more
Affected Products : p1204_firmware a1001_firmware a8004-v_firmware a8105-e_firmware a9161_firmware a9188_firmware a9188-v_firmware c1004-e_firmware c2005_firmware c3003-e_firmware +770 more products- Published: Jun. 26, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-10660
An issue was discovered in multiple models of Axis IP Cameras. There is Shell Command Injection.... Read more
Affected Products : p1204_firmware a1001_firmware a8004-v_firmware a8105-e_firmware a9161_firmware a9188_firmware a9188-v_firmware c1004-e_firmware c2005_firmware c3003-e_firmware +770 more products- Published: Jun. 26, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-10659
There was a Memory Corruption issue discovered in multiple models of Axis IP Cameras which allows remote attackers to cause a denial of service (crash) by sending a crafted command which will result in a code path that calls the UND undefined ARM instruct... Read more
Affected Products : p1204_firmware a1001_firmware a8004-v_firmware a8105-e_firmware a9161_firmware a9188_firmware a9188-v_firmware c1004-e_firmware c2005_firmware c3003-e_firmware +770 more products- Published: Jun. 26, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-10658
There was a Memory Corruption issue discovered in multiple models of Axis IP Cameras which causes a denial of service (crash). The crash arises from code inside libdbus-send.so shared object or similar.... Read more
Affected Products : p1204_firmware a1001_firmware a8004-v_firmware a8105-e_firmware a9161_firmware a9188_firmware a9188-v_firmware c1004-e_firmware c2005_firmware c3003-e_firmware +770 more products- Published: Jun. 26, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-10657
Matrix Synapse before 0.28.1 is prone to a denial of service flaw where malicious events injected with depth = 2^63 - 1 render rooms unusable, related to federation/federation_base.py and handlers/message.py, as exploited in the wild in April 2018.... Read more
Affected Products : synapse- Published: May. 02, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-10655
DLPnpAuditor.exe in DeviceLock Plug and Play Auditor (freeware) 5.72 has a Unicode Buffer Overflow (SEH).... Read more
Affected Products : plug_and_play_auditor- Published: May. 10, 2018
- Modified: Nov. 21, 2024
-
8.1
HIGHCVE-2018-10654
There is a Hazelcast Library Java Deserialization Vulnerability in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3.... Read more
Affected Products : xenmobile_server- Published: May. 23, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-10653
There is an XML External Entity (XXE) Processing Vulnerability in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3.... Read more
Affected Products : xenmobile_server- Published: May. 23, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-10652
There is a Sensitive Data Leakage issue in Citrix XenMobile Server 10.7 before RP3.... Read more
Affected Products : xenmobile_server- Published: May. 23, 2018
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2018-10651
There are Open Redirect Vulnerabilities in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3.... Read more
Affected Products : xenmobile_server- Published: May. 23, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-10650
There is an Insufficient Path Validation Vulnerability in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3.... Read more
Affected Products : xenmobile_server- Published: May. 23, 2018
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2018-10649
There is a Cross-Site Scripting Vulnerability in Citrix XenMobile Server 10.7 before RP3.... Read more
Affected Products : xenmobile_server- Published: May. 23, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-10648
There are Unauthenticated File Upload Vulnerabilities in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3.... Read more
Affected Products : xenmobile_server- Published: May. 23, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-10647
SaferVPN 4.2.5 for Windows suffers from a SYSTEM privilege escalation vulnerability in its "SaferVPN.Service" service. The "SaferVPN.Service" service executes "openvpn.exe" using OpenVPN config files located within the current user's %LOCALAPPDATA%\SaferV... Read more
Affected Products : safervpn- Published: May. 02, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-10646
CyberGhost 6.5.0.3180 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "CG6Service" service. This service establishes a NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed... Read more
Affected Products : cyberghost- Published: May. 02, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-10645
Golden Frog VyprVPN 2.12.1.8015 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "VyprVPN" service. This service establishes a NetNamedPipe endpoint that allows applications to connect and call publicly exposed methods. The... Read more
Affected Products : vyprvpn- Published: May. 02, 2018
- Modified: Nov. 21, 2024
-
7.2
HIGHCVE-2018-10642
Command injection vulnerability in Combodo iTop 2.4.1 allows remote authenticated administrators to execute arbitrary commands by changing the platform configuration, because web/env-production/itop-config/config.php contains a function called TestConfig(... Read more
Affected Products : itop- Published: May. 02, 2018
- Modified: Nov. 21, 2024
-
8.1
HIGHCVE-2018-10641
D-Link DIR-601 A1 1.02NA devices do not require the old password for a password change, which occurs in cleartext.... Read more
- Published: May. 04, 2018
- Modified: Nov. 21, 2024