|
246381
|
8.8 |
HIGH
Network
|
foxitsoftware
|
foxit_reader
phantompdf
|
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the tar…
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2018-14243
|
2024-11-21 12:48 |
2018-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246382
|
8.8 |
HIGH
Network
|
foxitsoftware
|
foxit_reader
phantompdf
|
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the tar…
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2018-14242
|
2024-11-21 12:48 |
2018-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246383
|
8.8 |
HIGH
Network
|
foxitsoftware
|
foxit_reader
phantompdf
|
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the tar…
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2018-14241
|
2024-11-21 12:48 |
2018-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246384
|
7.5 |
HIGH
Network
|
lica
|
minicmts_e8k_firmware
|
LICA miniCMTS E8K(u/i/...) devices allow remote attackers to obtain sensitive information via a direct POST request for the inc/user.ini file, leading to discovery of a password hash.
|
CWE-200
Information Exposure
|
CVE-2018-14083
|
2024-11-21 12:48 |
2018-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246385
|
6.5 |
MEDIUM
Network
|
freedesktop
canonical
debian
redhat
|
poppler
ubuntu_linux
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
openshift_container_platform
ansible_tower
|
Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corr…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-13988
|
2024-11-21 12:48 |
2018-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246386
|
6.5 |
MEDIUM
Network
|
h2database
|
h2
|
An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function allows attackers to read sensitive files (outside of their permissions) via a symlink to a fake database…
|
CWE-59
Link Following
|
CVE-2018-14335
|
2024-11-21 12:48 |
2018-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246387
|
9.8 |
CRITICAL
Network
|
brynamics
|
online_trade
|
Brynamics "Online Trade - Online trading and cryptocurrency investment system" allows remote attackers to obtain sensitive information via a direct request for /dashboard/addplan, /dashboard/paywithc…
|
CWE-200
Information Exposure
|
CVE-2018-14328
|
2024-11-21 12:48 |
2018-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246388
|
7.5 |
HIGH
Network
|
tp-link
|
wr840n
|
TP-Link WR840N devices allow remote attackers to cause a denial of service (connectivity loss) via a series of packets with random MAC addresses.
|
CWE-20
Improper Input Validation
|
CVE-2018-14336
|
2024-11-21 12:48 |
2018-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246389
|
5.5 |
MEDIUM
Local
|
clementine-player
|
clementine
|
An issue was discovered in Clementine Music Player 1.3.1. Clementine.exe is vulnerable to a user mode write access violation due to a NULL pointer dereference in the Init call in the MoodbarPipeline:…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-14332
|
2024-11-21 12:48 |
2018-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246390
|
7.5 |
HIGH
Network
|
axmldec_project
|
axmldec
|
axmldec 1.2.0 has an out-of-bounds write in the jitana::axml_parser::parse_start_namespace function in lib/jitana/util/axml_parser.cpp.
|
CWE-787
Out-of-bounds Write
|
CVE-2018-14402
|
2024-11-21 12:48 |
2018-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
