13538 matches found
ReSIProcate Heap Buffer Overflow (CVE-2018-12584)
A heap buffer overflow vulnerability exists in the ReSIProcate. A remote, unauthenticated attackers could exploit this vulnerability by sending specially crafted SIP packets to the target server. Successful exploitation would result in arbitrary code execution...
Red Hat 389 Directory Server Denial of Service (CVE-2018-10935)
A denial of service vulnerability exists in Nagios XI in the Lightweight Directory Access Protocol LDAP service. The vulnerability is due to improper processing of LDAP search queries. Successful exploitation of the vulnerability could cause the process to abnormally terminate...
PhpSpreadsheet XML External Entity Injection (CVE-2018-19277)
An XML external entity injection vulnerability exists in PhpSpreadsheet library. The vulnerability is due to a failure to properly handle external entity references in XML files. A successful exploitation of this vulnerability could result in the disclosure of file contents from the target system...
Formjacking Campaign Suspicious JavaScript
Some Web sites include heavily-obfuscated JavaScript code with hidden redirection. Hidden redirection can cause unintended browser behavior which can lead to downloading malicious files. Successful exploitation could allow attackers to execute arbitrary code on the target...
Rockwell Automation Allen Bradley Micrologix 1400 Series Access Control Information Disclosure (CVE-2017-14462)
An Information Disclosure vulnerability exists in Rockwell Automation Allen Bradley Micrologix 1400 Series. A remote, unauthenticated attacker can exploit the vulnerability by sending crafted packets to the target system causing access control and information disclosure...
Apple WebKit Memory Corruption (CVE-2018-4233)
A remote code execution vulnerability exists in Apple WebKit. The vulnerability is due to a memory corruption when handling of objects in javascript JIT. A remote attacker could exploit the vulnerability by enticing the target user to open a specially crafted js webpage. Successful exploitation...
Apache Superset 0.23 Remote Code Execution (CVE-2018-8021)
A remote code execution vulnerability exists in the Apache Superset web application. A remote attacker can exploit this vulnerability by sending a specially crafted request. Successful exploitation could lead to execute arbitrary code on the system...
Orange Livebox ADSL modem Information Disclosure (CVE-2018-20377)
An Information Disclosure vulnerability exists in Orange Livebox ADSL modems. A remote attacker may exploit this vulnerability by sending a specially crafted request. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Apache Traffic Server ESI Plugin Cookie Header Information Disclosure (CVE-2018-8040)
An information disclosure vulnerability exists in Apache Traffic Server. The vulnerability is due to improper restriction of access to the Cookie HTTP header within the ESI plugin. Successful exploitation of this vulnerability could lead to disclosure of sensitive information...
IBM Operational Decision Manager External Entity Injection (CVE-2018-1821)
An XML external entity XXE injection vulnerability exist in IBM Operational Decision. The vulnerability is due to a failure to properly handle external entity references in XML files. A remote attacker could exploit this vulnerability by enticing a target user into opening a crafted XML file with...
Rockwell Automation Allen-Bradley PowerMonitor 1000 Cross-Site Scripting (CVE-2018-19615)
A XSS injection vulnerability exists in Rockwell Automation Allen-Bradley PowerMonitor login page. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary commands on the affected system...
Zoom Desktop Application Unauthorized UDP Message (CVE-2018-15715)
Zoom clients are vulnerable to unauthorized message processing. A remote unauthenticated attacker can spoof messages in the target client. This allows the attacker to remove attendees from meetings, spoof messages from users, or hijack shared screens...
Cisco Webex Meetings Desktop App Update Service Command Injection (CVE-2018-15442)
A command injection vulnerability exists in Cisco Webex Meetings Desktop App. A remote authenticated attacker could exploit this vulnerability by invoking the update service command with a crafted argument. Successful exploitation results execution of arbitrary code in the security context of the...
HP Intelligent Management Insecure Deserialization (CVE-2017-12557)
A remote code execution vulnerability exists within HP Enterprise Intelligent Management Center. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installation...
Novidade Exploit Kit Landing Page
Novidade exploit kit is a web exploit kit that operates by delivering malicious payload to the victim's computer. Successful infection will allow the attacker to download additional malware to the target...
CentOS Web Panel Cross-Site Scripting (CVE-2018-18774)
A cross-site scripting vulnerability exists in CentOS Web Panel. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2018-8653)
A memory corruption vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Red Hat librelp Stack Buffer Overflow (CVE-2018-1000140)
A stack based buffer overflow exists in Red Hat librelp. This vulnerability is due to incorrect sanitisation of x509 certificates from a peer. Successful exploitation may result in remote code execution...
WordPress Snap Creek Duplicator Code Injection (CVE-2018-17207)
An exploitable remote code execution vulnerability exists in WordPress Duplicator server. A WordPress plugin Snap Creek Duplicator restores a backup, resulting in remote code execution. An attacker can send a single authenticated HTTP request to trigger this vulnerability...
Magellan SQLite SQL Injection
A SQL injection vulnerability exists in SQLite-based applications. Successful exploitation could allow attacker to disclose confidential information, modify or shut down the database or execute arbitrary code on affected servers...
Dell EMC Storage Manager EmConfigMigration Servlet Directory Traversal (CVE-2017-14384)
A directory traversal vulnerability exists in the Dell Storage Manager. The vulnerability is due to an input validation error in the EmConfigMigration Servlet...
Avahi avahi-daemon Denial Of Service (CVE-2018-1000845)
A Denial Of Service vulnerability exists in Avahi. Successful exploitation can cause a denial of service...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-16020)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8583)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8618)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8629)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB18-41: CVE-2018-16046)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB18-41: CVE-2018-19713)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-16035)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-16015)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Security bypass (APSB18-41: CVE-2018-16045)
A security bypass vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability would allow remote attackers to bypass security tests and protocols on the affected system...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-16019)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-19712)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2018-8643)
A memory corruption vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Heap Overflow (APSB18-41: CVE-2018-19716)
A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-15984)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-16034)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-16033)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Use After Free (APSB18-41: CVE-2018-15990)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-16032)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-16041)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-16030)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-19709)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Use After Free (APSB18-41: CVE-2018-16003)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Security bypass (APSB18-41: CVE-2018-16042)
A security bypass vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability would allow remote attackers to bypass security tests and protocols on the affected system...
Adobe Acrobat and Reader Use After Free (APSB18-41: CVE-2018-19698)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-19705)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Use After Free (APSB18-41: CVE-2018-19715)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Untrusted pointer dereference (APSB18-41: CVE-2018-19720)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Adobe Acrobat and Reader Out-of-bounds read (APSB18-41: CVE-2018-19703)
A out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...