|
248371
|
8.8 |
HIGH
Network
|
stb_vorbis_project
|
stb_vorbis
|
Sean Barrett stb_vorbis version 1.12 and earlier contains a Buffer Overflow vulnerability in All vorbis decoding paths. that can result in memory corruption, denial of service, comprised execution of…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-1000050
|
2024-11-21 12:39 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248372
|
7.5 |
HIGH
Network
|
nanopool
|
claymore_dual_miner
|
Nanopool Claymore Dual Miner version 7.3 and earlier contains a remote code execution vulnerability by abusing the miner API. The flaw can be exploited only if the software is executed with read/writ…
|
CWE-20
Improper Input Validation
|
CVE-2018-1000049
|
2024-11-21 12:39 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248373
|
8.8 |
HIGH
Network
|
nasa
|
rtretrievalframework
|
NASA RtRetrievalFramework version v1.0 contains a CWE-502 vulnerability in Data retrieval functionality of RtRetrieval framework that can result in remote code execution. This attack appear to be exp…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2018-1000048
|
2024-11-21 12:39 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248374
|
8.8 |
HIGH
Network
|
nasa
|
kodiak
|
NASA Kodiak version v1.0 contains a CWE-502 vulnerability in Kodiak library's data processing function that can result in remote code execution. This attack appear to be exploitable via Victim opens …
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2018-1000047
|
2024-11-21 12:39 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248375
|
7.8 |
HIGH
Local
|
nasa
|
pyblock
|
NASA Pyblock version v1.0 - v1.3 contains a CWE-502 vulnerability in Radar data parsing library that can result in remote code execution. This attack appear to be exploitable via Victim opening a spe…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2018-1000046
|
2024-11-21 12:39 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248376
|
7.8 |
HIGH
Local
|
nasa
|
singledop
|
NASA Singledop version v1.0 contains a CWE-502 vulnerability in NASA Singledop library (Weather data) that can result in remote code execution. This attack appear to be exploitable via Victim opening…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2018-1000045
|
2024-11-21 12:39 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248377
|
9.8 |
CRITICAL
Network
|
securityonion
|
squert
|
Security Onion Solutions Squert version 1.1.1 through 1.6.7 contains a SQL Injection vulnerability in .inc/callback.php that can result in execution of SQL commands. This attack appear to be exploita…
|
CWE-89
SQL Injection
|
CVE-2018-1000044
|
2024-11-21 12:39 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248378
|
9.8 |
CRITICAL
Network
|
securityonion
|
squert
|
Security Onion Solutions Squert version 1.0.1 through 1.6.7 contains a CWE-78: Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) vulnerability in .inc/callback.…
|
CWE-78
OS Command
|
CVE-2018-1000043
|
2024-11-21 12:39 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248379
|
9.8 |
CRITICAL
Network
|
securityonion
|
squert
|
Security Onion Solutions Squert version 1.3.0 through 1.6.7 contains a CWE-78: Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) vulnerability in .inc/callback.…
|
CWE-78
OS Command
|
CVE-2018-1000042
|
2024-11-21 12:39 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248380
|
8.8 |
HIGH
Network
|
gnome
debian
|
librsvg
debian_linux
|
GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in the victim's Windows username and NTLM …
|
NVD-CWE-noinfo
|
CVE-2018-1000041
|
2024-11-21 12:39 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
