Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

6.5

MEDIUM

CVE-2018-11477

An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The data packets that are sent between the iOS or Android application and the OBD dongle are not encrypted. The combination of this vulnerability with the lack of wireless network protecti...

Affected Products : icar_2_wi-fi_obd2_firmware icar_2_wi-fi_obd2
Published: May. 30, 2018

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2018-11476

An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The dongle opens an unprotected wireless LAN that cannot be configured with encryption or a password. This enables anyone within the range of the WLAN to connect to the network without aut...

Affected Products : icar_2_wi-fi_obd2_firmware icar_2_wi-fi_obd2
Published: May. 30, 2018

Modified: Nov. 21, 2024
8.0

HIGH

CVE-2018-11475

Monstra CMS 3.0.4 has a Session Management Issue in the Users tab. A password change at users/1/edit does not invalidate a session that is open in a different browser....

Affected Products : monstra
Published: May. 25, 2018

Modified: Nov. 21, 2024
8.0

HIGH

CVE-2018-11474

Monstra CMS 3.0.4 has a Session Management Issue in the Administrations Tab. A password change at admin/index.php?id=users&action=edit&user_id=1 does not invalidate a session that is open in a different browser....

Affected Products : monstra
Published: May. 25, 2018

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2018-11473

Monstra CMS 3.0.4 has XSS in the registration Form (i.e., the login parameter to users/registration)....

Affected Products : monstra
Published: May. 25, 2018

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2018-11472

Monstra CMS 3.0.4 has Reflected XSS during Login (i.e., the login parameter to admin/index.php)....

Affected Products : monstra
Published: May. 25, 2018

Modified: Nov. 21, 2024
5.4

MEDIUM

CVE-2018-11471

Cockpit 0.5.5 has XSS via a collection, form, or region....

Affected Products : cockpit
Published: May. 25, 2018

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2018-11470

iScripts eSwap v2.4 has SQL injection via the "search.php" 'Told' parameter in the User Panel....

Affected Products : eswap
Published: May. 25, 2018

Modified: Nov. 21, 2024
5.9

MEDIUM

CVE-2018-11469

Incorrect caching of responses to requests including an Authorization header in HAProxy 1.8.0 through 1.8.9 (if cache enabled) allows attackers to achieve information disclosure via an unauthenticated remote request, related to the proto_http.c check_requ...

Affected Products : ubuntu_linux haproxy
Published: May. 25, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-11468

The __mkd_trim_line function in mkdio.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as demonstrated by mkd2html....

Affected Products : debian_linux discount
Published: May. 25, 2018

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2018-11466

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11465

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
4.3

MEDIUM

CVE-2018-11464

A vulnerability has been identified in SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3). The integrated VNC server on port 5900/tcp of the affected pr...

Affected Products : sinumerik_828d_firmware sinumerik_840d_sl_firmware sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d sinumerik_840d_sl
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11463

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2018-11462

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
6.6

MEDIUM

CVE-2018-11461

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11460

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11459

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2018-11458

A vulnerability has been identified in SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3). The integrated VNC server on port 5900/tcp of the affected pr...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2018-11457

A vulnerability has been identified in SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3). The integrated web server on port 4842/tcp of the affected pr...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024

Showing 20 of 294328 Results

Browse by Apps

Latest CVE Feed

6.5

8.8

8.0

8.0

6.1

6.1

5.4

8.8

5.9

5.5

9.8

7.8

4.3

7.8

9.8

6.6

7.8

7.8

9.3

9.3

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable