|
248111
|
6.5 |
MEDIUM
Network
|
libesedb_project
|
libesedb
|
The libesedb_catalog_definition_read function in libesedb_catalog_definition.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. …
|
CWE-125
Out-of-bounds Read
|
CVE-2018-15160
|
2024-11-21 12:50 |
2018-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248112
|
6.5 |
MEDIUM
Network
|
libesedb_project
|
libesedb
|
The libesedb_page_read_tags function in libesedb_page.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has di…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-15159
|
2024-11-21 12:50 |
2018-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248113
|
6.5 |
MEDIUM
Network
|
libesedb_project
|
libesedb
|
The libesedb_page_read_values function in libesedb_page.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has …
|
CWE-125
Out-of-bounds Read
|
CVE-2018-15158
|
2024-11-21 12:50 |
2018-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248114
|
6.5 |
MEDIUM
Network
|
libfsclfs_project
|
libfsclfs
|
The libfsclfs_block_read function in libfsclfs_block.c in libfsclfs before 2018-07-25 allows remote attackers to cause a heap-based buffer over-read via a crafted clfs file. NOTE: the vendor has disp…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-15157
|
2024-11-21 12:50 |
2018-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248115
|
8.8 |
HIGH
Network
|
docker
|
docker
|
HandleRequestAsync in Docker for Windows before 18.06.0-ce-rc3-win68 (edge) and before 18.06.0-ce-win72 (stable) deserialized requests over the \\.\pipe\dockerBackend named pipe without verifying the…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2018-15514
|
2024-11-21 12:50 |
2018-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248116
|
4.7 |
MEDIUM
Local
|
trendmicro
|
officescan_xg
|
A Named Pipe Request Processing Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro OfficeScan XG (12.0) could allow a local attacker to disclose sensitive information on vulnerabl…
|
CWE-200
Information Exposure
|
CVE-2018-15364
|
2024-11-21 12:50 |
2018-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248117
|
7.8 |
HIGH
Local
|
trendmicro
|
antivirus_\+_security
internet_security
maximum_security
premium_security
|
An Out-of-Bounds Read Privilege Escalation vulnerability in Trend Micro Security 2018 (Consumer) products could allow a local attacker to escalate privileges on vulnerable installations. An attacker …
|
CWE-125
Out-of-bounds Read
|
CVE-2018-15363
|
2024-11-21 12:50 |
2018-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248118
|
8.8 |
HIGH
Network
|
mystrom
|
wifi_switch_firmware
wifi_button_plus_firmware
wifi_button_firmware
wifi_switch_eu_firmware
wifi_bulb_firmware
wifi_led_strip_firmware
|
An issue was discovered in myStrom WiFi Switch V1 before 2.66, WiFi Switch V2 before 3.80, WiFi Switch EU before 3.80, WiFi Bulb before 2.58, WiFi LED Strip before 3.80, WiFi Button before 2.73, and …
|
NVD-CWE-noinfo
|
CVE-2018-15480
|
2024-11-21 12:50 |
2018-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248119
|
9.8 |
CRITICAL
Network
|
mystrom
|
wifi_switch_firmware
|
myStrom WiFi Switch V1 devices before 2.66 did not sanitize a parameter received from the cloud that was used in an OS command. Malicious servers were able to run operating system commands on the dev…
|
CWE-78
OS Command
|
CVE-2018-15477
|
2024-11-21 12:50 |
2018-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248120
|
7.5 |
HIGH
Network
|
epson
|
wf-2750_firmware
|
EPSON WF-2750 printers with firmware JP02I2 do not properly validate files before running updates, which allows remote attackers to cause a printer malfunction or send malicious data to the printer.
|
CWE-346
Origin Validation Error
|
CVE-2018-14903
|
2024-11-21 12:50 |
2018-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
