Lucene search
K

5573 matches found

Cvelist
Cvelist
added 2018/05/17 3:0 p.m.37 views

CVE-2018-10484

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8AI score0.02773EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/05/17 3:0 p.m.29 views

CVE-2018-9935

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.2.25013. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8AI score0.02773EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/05/17 3:0 p.m.23 views

CVE-2018-9938

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8AI score0.03226EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/05/17 3:0 p.m.22 views

CVE-2018-10477

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.9AI score0.02773EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2018/04/30 4:21 p.m.7 views

OpenJDK: unrestricted deserialization of data from JCEKS key stores (Security, 8189997)

Vulnerability in the Java SE, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162, 10 and JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Java...

7.7CVSS7.3AI score0.0074EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/04/23 5:15 p.m.5 views

OpenJDK: incorrect handling of Reference clones can lead to sandbox bypass (Hotspot, 8192025)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Hotspot. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

8.3CVSS7.4AI score0.03746EPSS
Exploits0References4
OSV
OSV
added 2018/04/19 2:29 a.m.3 views

CVE-2018-2854

Vulnerability in the Oracle Financial Services Basel Regulatory Capital Basic component of Oracle Financial Services Applications subcomponent: Portfolio, Attribution. The supported version that is affected is 8.0.x. Easily exploitable vulnerability allows unauthenticated attacker with network...

6.1CVSS7.3AI score0.01488EPSS
Exploits0References3
OSV
OSV
added 2018/04/19 2:29 a.m.4 views

CVE-2018-2808

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Kernel. The supported version that is affected is 11.3. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris. Successf...

5CVSS7.3AI score0.00467EPSS
Exploits0References3
OSV
OSV
added 2018/04/19 2:29 a.m.5 views

CVE-2018-2770

Vulnerability in the Oracle Adaptive Access Manager component of Oracle Fusion Middleware subcomponent: OAAM Admin. The supported version that is affected is 11.1.2.3.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Adaptive Acce...

7.6CVSS7.3AI score0.01402EPSS
Exploits0References3
OSV
OSV
added 2018/04/19 2:29 a.m.5 views

CVE-2018-1167

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Spotify Music Player 1.0.69.336. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

8.8CVSS6.2AI score0.04822EPSS
Exploits0References1
OSV
OSV
added 2018/04/18 12:0 a.m.5 views

UBUNTU-CVE-2018-2825

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Libraries. The supported version that is affected is Java SE: 10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require...

8.3CVSS6.7AI score0.04146EPSS
Exploits0References4
OSV
OSV
added 2018/03/13 3:29 p.m.4 views

CVE-2018-1000082

Ajenti version version 2 contains a Cross ite Request Forgery CSRF vulnerability in the command execution panel of the tool used to manage the server. that can result in Code execution on the server . This attack appear to be exploitable via Being a CSRF, victim interaction is needed, when the...

8.8CVSS5.9AI score
Exploits0References1
Prion
Prion
added 2018/03/02 1:29 a.m.17 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Amazon Music Player 6.1.5.1213. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

6.8CVSS8.8AI score0.02555EPSS
Exploits0References2Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2018/03/02 12:0 a.m.19 views

Delta Industrial Automation DOPSoft DPA File BeforeExecMacro Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation DOPSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

6.8CVSS4.2AI score0.01732EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/01/18 9:55 p.m.9 views

JDK: unspecified vulnerability fixed in 8u161 and 9.0.4 (Deployment)

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Deployment. Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful...

8.3CVSS7.4AI score0.03328EPSS
Exploits0References5
OSV
OSV
added 2018/01/18 2:29 a.m.5 views

CVE-2018-2659

Vulnerability in the JD Edwards EnterpriseOne Tools component of Oracle JD Edwards Products subcomponent: Web Runtime SEC. The supported version that is affected is 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

6.1CVSS7.3AI score
Exploits0References2
OSV
OSV
added 2018/01/18 2:29 a.m.4 views

CVE-2018-2658

Vulnerability in the JD Edwards EnterpriseOne Tools component of Oracle JD Edwards Products subcomponent: Web Runtime SEC. The supported version that is affected is 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

6.1CVSS5.8AI score0.00824EPSS
Exploits0References2
OSV
OSV
added 2018/01/18 2:29 a.m.2 views

CVE-2018-2642

Vulnerability in the Oracle Argus Safety component of Oracle Health Sciences Applications subcomponent: File Upload. Supported versions that are affected are 7.x and 8.0.x. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Argus...

6.5CVSS5.8AI score0.00607EPSS
Exploits0References2
OSV
OSV
added 2018/01/18 2:29 a.m.4 views

CVE-2018-2626

Vulnerability in the Oracle Financial Services Balance Sheet Planning component of Oracle Financial Services Applications subcomponent: User Interface. The supported version that is affected is 8.0.x. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

6.1CVSS5.8AI score0.01104EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2018/01/18 2:0 a.m.4 views

CVE-2018-2659

Vulnerability in the JD Edwards EnterpriseOne Tools component of Oracle JD Edwards Products subcomponent: Web Runtime SEC. The supported version that is affected is 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

5.5AI score0.00824EPSS
Exploits0References2
Rows per page
Query Builder