|
247381
|
9.8 |
CRITICAL
Network
|
winehq
|
wine
|
PlayEnhMetaFileRecord in enhmetafile.c in Wine 3.7 allows attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact because the attacker controls the pCre…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-12933
|
2024-11-21 12:46 |
2018-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247382
|
9.8 |
CRITICAL
Network
|
winehq
|
wine
|
PlayEnhMetaFileRecord in enhmetafile.c in Wine 3.7 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact by triggering a large pAlphaBle…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-12932
|
2024-11-21 12:46 |
2018-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247383
|
7.8 |
HIGH
Local
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
ntfs_attr_find in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a stack-based out-of-bounds write and cause a denial of service (kernel oops or panic) or possib…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-12931
|
2024-11-21 12:46 |
2018-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247384
|
7.8 |
HIGH
Local
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
ntfs_end_buffer_async_read in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a stack-based out-of-bounds write and cause a denial of service (kernel oops or pani…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-12930
|
2024-11-21 12:46 |
2018-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247385
|
5.5 |
MEDIUM
Local
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
ntfs_read_locked_inode in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a use-after-free read and possibly cause a denial of service (kernel oops or panic) via …
|
CWE-416
Use After Free
|
CVE-2018-12929
|
2024-11-21 12:46 |
2018-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247386
|
5.5 |
MEDIUM
Local
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
In the Linux kernel 4.15.0, a NULL pointer dereference was discovered in hfs_ext_read_extent in hfs.ko. This can occur during a mount of a crafted hfs filesystem.
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-12928
|
2024-11-21 12:46 |
2018-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247387
|
7.5 |
HIGH
Network
|
northernnep
|
northern_electric_\&_power_inverter_firmware
|
Northern Electric & Power (NEP) inverter devices allow remote attackers to obtain potentially sensitive information via a direct request for the nep/status/index/1 URI.
|
CWE-200
Information Exposure
|
CVE-2018-12927
|
2024-11-21 12:46 |
2018-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247388
|
7.5 |
HIGH
Network
|
pharoscontrols
|
pharos_firmware
|
Pharos Controls devices allow remote attackers to obtain potentially sensitive information via a direct request for the default/index.lsp or default/log.lsp URI.
|
CWE-200
Information Exposure
|
CVE-2018-12926
|
2024-11-21 12:46 |
2018-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247389
|
9.8 |
CRITICAL
Network
|
lantronix
|
mss_firmware
|
Baseon Lantronix MSS devices do not require a password for TELNET access.
|
CWE-521
Weak Password Requirements
|
CVE-2018-12925
|
2024-11-21 12:46 |
2018-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247390
|
9.8 |
CRITICAL
Network
|
eztcp
|
cie-h10_firmware
cie-h12_firmware
cie-h14_firmware
cse-m53n_firmware
cse-m32_firmware
cse-m24_firmware
cse-m73_firmware
cse-b63n2_firmware
|
Sollae Serial-Ethernet-Module and Remote-I/O-Device-Server devices have a default password of sollae for the TELNET service.
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2018-12924
|
2024-11-21 12:46 |
2018-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
