|
253051
|
8.8 |
HIGH
Network
|
apache
|
karaf
|
In Apache Karaf prior to 4.2.0 release, if the sshd service in Karaf is left on so an administrator can manage the running instance, any user with rights to the Karaf console can pivot and read/write…
|
CWE-269
Improper Privilege Management
|
CVE-2018-11786
|
2024-11-21 12:44 |
2018-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253052
|
7.8 |
HIGH
Local
|
apache redhat debian canonical
|
spamassassin enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server debian_linux ubuntu_linux enterprise_linux_server_eus
|
Apache SpamAssassin 3.4.2 fixes a local user code injection in the meta rule syntax.
|
CWE-94
Code Injection
|
CVE-2018-11781
|
2024-11-21 12:44 |
2018-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253053
|
9.8 |
CRITICAL
Network
|
apache pdfinfo_project debian canonical
|
spamassassin pdfinfo debian_linux ubuntu_linux
|
A potential Remote Code Execution bug exists with the PDFInfo plugin in Apache SpamAssassin before 3.4.2.
|
CWE-94
Code Injection
|
CVE-2018-11780
|
2024-11-21 12:44 |
2018-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253054
|
7.5 |
HIGH
Network
|
opcfoundation debian
|
unified_architecture-.net-legacy unified_architecture-java unified_architecture_ansic unified_architecture_.net-standard debian_linux
|
Buffer overflow in OPC UA applications allows remote attackers to trigger a stack overflow with carefully structured requests.
|
CWE-787
Out-of-bounds Write
|
CVE-2018-12086
|
2024-11-21 12:44 |
2018-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253055
|
8.2 |
HIGH
Local
|
intel
|
nuc_kit_firmware compute_card_firmware compute_stick_firmware
|
Improper input validation in firmware for Intel NUC Kits may allow a privileged user to potentially execute arbitrary code resulting in information disclosure, escalation of privilege and/or denial o…
|
CWE-20
Improper Input Validation
|
CVE-2018-12176
|
2024-11-21 12:44 |
2018-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253056
|
7.8 |
HIGH
Local
|
intel
|
distribution_for_python
|
Default install directory permissions in Intel Distribution for Python (IDP) version 2018 may allow an unprivileged user to escalate privileges via local access.
|
CWE-276
Incorrect Default Permissions
|
CVE-2018-12175
|
2024-11-21 12:44 |
2018-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253057
|
9.8 |
CRITICAL
Network
|
intel
|
bmc_firmware
|
Privilege escalation in Intel Baseboard Management Controller (BMC) firmware before version 1.43.91f76955 may allow an unprivileged user to potentially execute arbitrary code or perform denial of ser…
|
NVD-CWE-noinfo
|
CVE-2018-12171
|
2024-11-21 12:44 |
2018-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253058
|
7.8 |
HIGH
Local
|
intel
|
computing_improvement_program
|
Privilege escalation in file permissions in Intel Computing Improvement Program before version 2.2.0.03942 may allow an authenticated user to potentially execute code as administrator via local acces…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-12168
|
2024-11-21 12:44 |
2018-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253059
|
4.8 |
MEDIUM
Local
|
intel
|
iot_developers_kit
|
A DLL injection vulnerability in the Intel IoT Developers Kit 4.0 installer may allow an authenticated user to potentially escalate privileges using file modification via local access.
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2018-12163
|
2024-11-21 12:44 |
2018-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253060
|
7.8 |
HIGH
Local
|
intel
|
openvino_toolkit
|
Directory permissions in the Intel OpenVINO Toolkit for Windows before version 2018.1.265 may allow an authenticated user to potentially execute code using default directory permissions via local acc…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-12162
|
2024-11-21 12:44 |
2018-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|