Vulnerabilities > Canonical

DATE CVE VULNERABILITY TITLE RISK
2018-04-03 CVE-2018-8777 Resource Exhaustion vulnerability in multiple products
In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, an attacker can pass a large HTTP request with a crafted header to WEBrick server or a crafted body to WEBrick server/handler and cause a denial of service (memory consumption).
network
low complexity
ruby-lang debian canonical redhat CWE-400
7.5
7.5
2018-04-03 CVE-2018-6914 Path Traversal vulnerability in multiple products
Directory traversal vulnerability in the Dir.mktmpdir method in the tmpdir library in Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1 might allow attackers to create arbitrary directories or files via a ..
network
low complexity
ruby-lang canonical debian redhat CWE-22
7.5
7.5
2018-04-03 CVE-2018-4165 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple webkitgtk canonical CWE-119
8.8
8.8
2018-04-03 CVE-2018-4163 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple webkitgtk canonical CWE-119
8.8
8.8
2018-04-03 CVE-2018-4162 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple canonical webkitgtk CWE-119
8.8
8.8
2018-04-03 CVE-2018-4161 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple canonical CWE-119
8.8
8.8
2018-04-03 CVE-2018-4146 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple canonical webkitgtk CWE-119
6.5
6.5
2018-04-03 CVE-2018-4133 Cross-site Scripting vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple canonical webkitgtk CWE-79
6.1
6.1
2018-04-03 CVE-2018-4129 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple webkitgtk canonical CWE-119
8.8
8.8
2018-04-03 CVE-2018-4128 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple webkitgtk canonical CWE-119
8.8
8.8