Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-06-27 CVE-2018-1457 Unspecified vulnerability in IBM Rational Doors
An undisclosed vulnerability in IBM Rational DOORS 9.5.1 through 9.6.1.10 application allows an attacker to gain DOORS administrator privileges.
network
low complexity
ibm
7.5
7.5
2018-06-27 CVE-2018-12918 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in PBC Project PBC
In libpbc.a in PBC through 2017-03-02, there is a Segmentation fault in _pbcB_register_fields in bootstrap.c.
network
low complexity
pbc-project CWE-119
7.5
7.5
2018-06-27 CVE-2018-12917 Out-of-bounds Read vulnerability in PBC Project PBC
In libpbc.a in PBC through 2017-03-02, there is a heap-based buffer over-read in _pbcM_ip_new in map.c.
network
low complexity
pbc-project CWE-125
7.5
7.5
2018-06-27 CVE-2018-12916 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in PBC Project PBC
In libpbc.a in PBC through 2017-03-02, there is a Segmentation fault in _pbcP_message_default in proto.c.
network
low complexity
pbc-project CWE-119
7.5
7.5
2018-06-27 CVE-2018-12915 Out-of-bounds Read vulnerability in PBC Project PBC
In libpbc.a in PBC through 2017-03-02, there is a buffer over-read in calc_hash in map.c.
network
low complexity
pbc-project CWE-125
7.5
7.5
2018-06-27 CVE-2018-12914 Unrestricted Upload of File with Dangerous Type vulnerability in Publiccms 4.0.20180210
A remote code execution issue was discovered in PublicCMS V4.0.20180210.
network
low complexity
publiccms CWE-434
7.5
7.5
2018-06-27 CVE-2018-12909 Path Traversal vulnerability in Webgrind Project Webgrind 1.5.0
Webgrind 1.5 relies on user input to display a file, which lets anyone view files from the local filesystem (that the webserver user has access to) via an index.php?op=fileviewer&file= URI.
network
low complexity
webgrind-project CWE-22
7.5
7.5
2018-06-27 CVE-2018-8025 Race Condition vulnerability in Apache Hbase
CVE-2018-8025 describes an issue in Apache HBase that affects the optional "Thrift 1" API server when running over HTTP.
network
high complexity
apache CWE-362
8.1
8.1
2018-06-26 CVE-2018-3841 NULL Pointer Dereference vulnerability in Pixar Renderman 21.6
A denial-of-service vulnerability exists in the Pixar Renderman IT Display Service 21.6 (0x69).
network
low complexity
pixar CWE-476
7.5
7.5
2018-06-26 CVE-2018-3840 NULL Pointer Dereference vulnerability in Pixar Renderman 21.6
A denial-of-service vulnerability exists in the Pixar Renderman IT Display Service 21.6 (0x67).
network
low complexity
pixar CWE-476
7.5
7.5