Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

7.8

HIGH

CVE-2018-11072

Dell Digital Delivery versions prior to 3.5.1 contain a DLL Injection Vulnerability. A local authenticated malicious user with advance knowledge of the application workflow could potentially load and execute a malicious DLL with administrator privileges....

Affected Products : digital_delivery
Published: Oct. 02, 2018

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2018-11071

Dell EMC Isilon OneFS versions 7.1.1.x, 7.2.1.x, 8.0.0.x, 8.0.1.x, 8.1.0.x and 8.1.x prior to 8.1.2 and Dell EMC IsilonSD Edge versions 8.0.0.x, 8.0.1.x, 8.1.0.x and 8.1.x prior to 8.1.2 contain a remote process crash vulnerability. An unauthenticated rem...

Affected Products : isilon_onefs isilonsd_edge
Published: Sep. 18, 2018

Modified: Nov. 21, 2024
5.9

MEDIUM

CVE-2018-11070

RSA BSAFE Crypto-J versions prior to 6.2.4 and RSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during PKCS #1 unpadding operations, also known as a Bleichenbacher attack. A remote attacker may be able to recover a RSA...

Affected Products : bsafe_crypto-j rsa_bsafe_ssl-j
Published: Sep. 11, 2018

Modified: Nov. 21, 2024
5.9

MEDIUM

CVE-2018-11069

RSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during RSA decryption, also known as a Bleichenbacher attack on RSA decryption. A remote attacker may be able to recover a RSA key....

Affected Products : bsafe_ssl-j rsa_bsafe_ssl-j
Published: Sep. 11, 2018

Modified: Nov. 21, 2024
4.6

MEDIUM

CVE-2018-11068

RSA BSAFE SSL-J versions prior to 6.2.4 contain a Heap Inspection vulnerability that could allow an attacker with physical access to the system to recover sensitive key material....

Affected Products : bsafe_ssl-j rsa_bsafe_ssl-j
Published: Sep. 11, 2018

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2018-11067

Dell EMC Avamar Client Manager in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0, 7.4.1, 7.5.0, 7.5.1, 18.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 and 2.2 contain an open redirection vulnerability. A ...

Affected Products : emc_integrated_data_protection_appliance vsphere_data_protection emc_avamar
Published: Nov. 26, 2018

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2018-11066

Dell EMC Avamar Client Manager in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0, 7.4.1, 7.5.0, 7.5.1, 18.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 and 2.2 contain a Remote Code Execution vulnerability...

Affected Products : emc_integrated_data_protection_appliance vsphere_data_protection emc_avamar
Published: Nov. 26, 2018

Modified: Nov. 21, 2024
4.3

MEDIUM

CVE-2018-11065

The WorkPoint component, which is embedded in all RSA Archer, versions 6.1.x, 6.2.x, 6.3.x prior to 6.3.0.7 and 6.4.x prior to 6.4.0.1, contains a SQL injection vulnerability. A malicious user could potentially exploit this vulnerability to execute SQL co...

Affected Products : archer
Published: Aug. 24, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11064

Dell EMC Unity OE versions 4.3.0.x and 4.3.1.x and UnityVSA OE versions 4.3.0.x and 4.3.1.x contains an Incorrect File Permissions vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability to alter multiple library...

Affected Products : emc_unity_operating_environment emc_unityvsa_operating_environment emc_unity_firmware emc_unityvsa
Published: Oct. 05, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11063

Dell WMS versions 1.1 and prior are impacted by multiple unquoted service path vulnerabilities. Affected software installs multiple services incorrectly by specifying the paths to the service executables without quotes. This could potentially allow a low-...

Affected Products : wyse_management_suite
Published: Aug. 10, 2018

Modified: Nov. 21, 2024
9.0

HIGH

CVE-2018-11062

Integrated Data Protection Appliance versions 2.0, 2.1, and 2.2 contain undocumented accounts named 'support' and 'admin' that are protected with default passwords. These accounts have limited privileges and can access certain system files only. A malicio...

Affected Products : emc_integrated_data_protection_appliance
Published: Nov. 02, 2018

Modified: Nov. 21, 2024
9.1

CRITICAL

CVE-2018-11061

RSA NetWitness Platform versions prior to 11.1.0.2 and RSA Security Analytics versions prior to 10.6.6 are vulnerable to a server-side template injection vulnerability due to insecure configuration of the template engine used in the product. A remote auth...

Affected Products : rsa_netwitness rsa_security_analytics
Published: Aug. 24, 2018

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2018-11060

RSA Archer, versions prior to 6.4.0.1, contain an authorization bypass vulnerability in the REST API. A remote authenticated malicious Archer user could potentially exploit this vulnerability to elevate their privileges....

Affected Products : archer
Published: Jul. 24, 2018

Modified: Nov. 21, 2024
8.2

HIGH

CVE-2018-11059

RSA Archer, versions prior to 6.4.0.1, contain a stored cross-site scripting vulnerability. A remote authenticated malicious Archer user could potentially exploit this vulnerability to store malicious HTML or JavaScript code in a trusted application data ...

Affected Products : archer
Published: Jul. 24, 2018

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2018-11058

RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6 (in 4.1.x), and RSA BSAFE Crypto-C Micro Edition, version prior to 4.0.5.3 (in 4.0.x) contain a Buffer Over-Read vulnerability when parsing ASN.1 data. A remote attacker...

Affected Products : security_service bsafe application_testing_suite communications_analytics communications_ip_service_activator core_rdbms enterprise_manager_ops_center goldengate_application_adapters jd_edwards_enterpriseone_tools real_user_experience_insight +3 more products
Published: Sep. 14, 2018

Modified: Nov. 21, 2024
5.9

MEDIUM

CVE-2018-11057

RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6.1 (in 4.1.x) contains a Covert Timing Channel vulnerability during RSA decryption, also known as a Bleichenbacher attack on RSA decryption. A remote attacker may be able...

Affected Products : security_service bsafe application_testing_suite communications_analytics communications_ip_service_activator core_rdbms enterprise_manager_ops_center goldengate_application_adapters jd_edwards_enterpriseone_tools real_user_experience_insight +3 more products
Published: Aug. 31, 2018

Modified: Nov. 21, 2024
6.5

MEDIUM

CVE-2018-11056

RSA BSAFE Micro Edition Suite, prior to 4.1.6.1 (in 4.1.x), and RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.3 (in 4.0.x) contain an Uncontrolled Resource Consumption ('Resource Exhaustion') vulnerability when parsing ASN.1 data. A remote atta...

Affected Products : security_service bsafe application_testing_suite communications_analytics communications_ip_service_activator core_rdbms enterprise_manager_ops_center goldengate_application_adapters jd_edwards_enterpriseone_tools real_user_experience_insight +3 more products
Published: Aug. 31, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-11055

RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6.1 (in 4.1.x), contains an Improper Clearing of Heap Memory Before Release ('Heap Inspection') vulnerability. Decoded PKCS #12 data in heap memory is not zeroized by MES ...

Affected Products : security_service bsafe application_testing_suite communications_analytics communications_ip_service_activator core_rdbms enterprise_manager_ops_center goldengate_application_adapters jd_edwards_enterpriseone_tools real_user_experience_insight +3 more products
Published: Aug. 31, 2018

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2018-11054

RSA BSAFE Micro Edition Suite, version 4.1.6, contains an integer overflow vulnerability. A remote attacker could use maliciously constructed ASN.1 data to potentially cause a Denial Of Service....

Affected Products : security_service bsafe application_testing_suite communications_analytics communications_ip_service_activator core_rdbms enterprise_manager_ops_center goldengate_application_adapters jd_edwards_enterpriseone_tools real_user_experience_insight +3 more products
Published: Aug. 31, 2018

Modified: Nov. 21, 2024
6.6

MEDIUM

CVE-2018-11053

Dell EMC iDRAC Service Module for all supported Linux and XenServer versions v3.0.1, v3.0.2, v3.1.0, v3.2.0, when started, changes the default file permission of the hosts file of the host operating system (/etc/hosts) to world writable. A malicious low p...

Affected Products : enterprise_linux suse_linux_enterprise_server xenserver emc_idrac_service_module
Published: Jun. 26, 2018

Modified: Nov. 21, 2024

Showing 20 of 294313 Results

Browse by Apps

Latest CVE Feed

7.8

7.5

5.9

5.9

4.6

6.1

10.0

4.3

7.8

7.8

9.0

9.1

8.8

8.2

9.8

5.9

6.5

5.5

7.5

6.6

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable