|
247881
|
9.8 |
CRITICAL
Network
|
gigabyte
|
oc_guru_ii gigabyte_app_center aorus_graphics_engine xtreme_gaming_engine
|
The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 exposes functionality to read and writ…
|
NVD-CWE-noinfo
|
CVE-2018-19323
|
2024-11-21 12:57 |
2018-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247882
|
7.8 |
HIGH
Local
|
gigabyte
|
oc_guru_ii app_center aorus_graphics_engine xtreme_gaming_engine
|
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to r…
|
CWE-749
Exposed Dangerous Method or Function
|
CVE-2018-19322
|
2024-11-21 12:57 |
2018-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247883
|
7.8 |
HIGH
Local
|
gigabyte
|
oc_guru_ii aorus_graphics_engine app_center xtreme_gaming_engine
|
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to r…
|
NVD-CWE-noinfo
|
CVE-2018-19321
|
2024-11-21 12:57 |
2018-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247884
|
7.8 |
HIGH
Local
|
gigabyte
|
oc_guru_ii aorus_graphics_engine app_center xtreme_gaming_engine
|
The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 exposes ring0 memcpy-like functionalit…
|
NVD-CWE-noinfo
|
CVE-2018-19320
|
2024-11-21 12:57 |
2018-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247885
|
8.8 |
HIGH
Network
|
trendnet
|
tew-632brp_firmware tew-673gru_firmware
|
Buffer overflow in apply.cgi on TRENDnet TEW-632BRP 1.010B32 and TEW-673GRU devices allows attackers to hijack the control flow to any attacker-specified location by crafting a POST request payload (…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-19242
|
2024-11-21 12:57 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247886
|
7.5 |
HIGH
Network
|
trendnet
|
tv-ip110wn_firmware tv-ip121wn_firmware
|
Buffer overflow in video.cgi on TRENDnet TV-IP110WN V1.2.2 build 68, V1.2.2.65, and V1.2.2 build 64 and TV-IP121WN V1.2.2 build 28 devices allows attackers to hijack the control flow to any attacker-…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-19241
|
2024-11-21 12:57 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247887
|
9.8 |
CRITICAL
Network
|
trendnet
|
tv-ip110wn_firmware tv-ip121wn_firmware
|
Buffer overflow in network.cgi on TRENDnet TV-IP110WN V1.2.2 build 68, V1.2.2.65, and V1.2.2 build 64 and TV-IP121WN V1.2.2 build 28 devices allows attackers to hijack the control flow to any attacke…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-19240
|
2024-11-21 12:57 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247888
|
7.2 |
HIGH
Network
|
trendnet
|
tew-673gru_firmware
|
TRENDnet TEW-673GRU v1.00b40 devices have an OS command injection vulnerability in the start_arpping function of the timer binary, which allows remote attackers to execute arbitrary commands via thre…
|
CWE-78
OS Command
|
CVE-2018-19239
|
2024-11-21 12:57 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247889
|
7.8 |
HIGH
Local
|
artifex debian redhat
|
ghostscript debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_aus
|
In Artifex Ghostscript through 9.25, the setpattern operator did not properly validate certain types. A specially crafted PostScript document could exploit this to crash Ghostscript or, possibly, exe…
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2018-19134
|
2024-11-21 12:57 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247890
|
7.8 |
HIGH
Local
|
hornerautomation
|
cscape
|
Cscape, Version 9.80.75.3 SP3 and prior. An improper input validation vulnerability has been identified that may be exploited by processing specially crafted POC files lacking user input validation. …
|
CWE-20
Improper Input Validation
|
CVE-2018-19005
|
2024-11-21 12:57 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|