Max CVSS | 7.5 | Min CVSS | 3.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2018-1274 | 5.0 |
Spring Data Commons, versions 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a property path parser vulnerability caused by unlimited resource allocation. An unauthenticated remote malicious user (or attacker) can issue reques
|
25-07-2022 - 18:15 | 18-04-2018 - 16:29 | |
CVE-2018-0737 | 4.3 |
The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. Fixe
|
20-07-2021 - 23:15 | 16-04-2018 - 18:29 | |
CVE-2018-8779 | 5.0 |
In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, the UNIXServer.open and UNIXSocket.open methods are not checked for null characters. It may be connected to an unintended socket.
|
21-07-2019 - 12:15 | 03-04-2018 - 22:29 | |
CVE-2018-6919 | 5.0 |
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28, due to insufficient initialization of memory copied to userland, small amounts of kernel memory may be disclosed to userland processes. Unprivileged us
|
24-05-2018 - 18:01 | 04-04-2018 - 14:29 | |
CVE-2014-6169 | 3.5 |
Cross-site scripting (XSS) vulnerability in IBM Forms Experience Builder 8.5.0 and 8.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 97777.
|
11-05-2018 - 14:03 | 12-04-2018 - 21:29 | |
CVE-2017-18098 | 4.3 |
The searchrequest-xml resource in Atlassian Jira before version 7.6.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through various fields.
|
09-05-2018 - 18:04 | 06-04-2018 - 13:29 | |
CVE-2017-18097 | 3.5 |
The Trello board importer resource in Atlassian Jira before version 7.6.1 allows remote attackers who can convince a Jira administrator to import their Trello board to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability
|
09-05-2018 - 18:04 | 06-04-2018 - 13:29 | |
CVE-2004-2299 | 7.5 |
Buffer overflow in Omnicron OmniHTTPd 3.0a and earlier allows remote attackers to execute arbitrary code via an HTTP GET request with a long Range header.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 |