| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-14633 | 8.3 |
A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer over
|
14-02-2023 - 21:13 | 25-09-2018 - 00:29 | |
| CVE-2018-9062 | 7.2 |
In some Lenovo ThinkPad products, one BIOS region is not properly included in the checks, allowing injection of arbitrary code.
|
15-10-2019 - 18:03 | 19-07-2018 - 19:29 | |
| CVE-2018-15427 | 10.0 |
A vulnerability in Cisco Video Surveillance Manager (VSM) Software running on certain Cisco Connected Safety and Security Unified Computing System (UCS) platforms could allow an unauthenticated, remote attacker to log in to an affected system by usin
|
09-10-2019 - 23:35 | 05-10-2018 - 14:29 | |
| CVE-2018-14327 | 9.3 |
The installer for the Alcatel OSPREY3_MINI Modem component on EE EE40VB 4G mobile broadband modems with firmware before EE40_00_02.00_45 sets weak permissions (Everyone:Full Control) for the "Web Connecton\EE40" and "Web Connecton\EE40\BackgroundServ
|
03-10-2019 - 00:03 | 26-09-2018 - 22:29 | |
| CVE-2018-17281 | 5.0 |
There is a stack consumption vulnerability in the res_http_websocket.so module of Asterisk through 13.23.0, 14.7.x through 14.7.7, and 15.x through 15.6.0 and Certified Asterisk through 13.21-cert2. It allows an attacker to crash Asterisk via a speci
|
03-10-2019 - 00:03 | 24-09-2018 - 22:29 | |
| CVE-2018-4330 | 9.3 |
In iOS before 11.4, a memory corruption issue exists and was addressed with improved memory handling.
|
23-01-2019 - 18:52 | 11-01-2019 - 18:29 | |
| CVE-2018-12169 | 4.6 |
Platform sample code firmware in 4th Generation Intel Core Processor, 5th Generation Intel Core Processor, 6th Generation Intel Core Processor, 7th Generation Intel Core Processor and 8th Generation Intel Core Processor contains a logic error which m
|
20-12-2018 - 13:59 | 21-09-2018 - 20:29 | |
| CVE-2018-12385 | 4.4 |
A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination with another vulnerability allowing an attacker to w
|
06-12-2018 - 19:03 | 18-10-2018 - 13:29 | |
| CVE-2018-16793 | 5.0 |
Rollup 18 for Microsoft Exchange Server 2010 SP3 and previous versions has an SSRF vulnerability via the username parameter in /owa/auth/logon.aspx in the OWA (Outlook Web Access) login page.
|
20-11-2018 - 21:06 | 21-09-2018 - 16:29 | |
| CVE-2004-0554 | 2.1 |
Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions, as originally demonstrated usi
|
11-10-2017 - 01:29 | 06-08-2004 - 04:00 |