Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-16 | CVE-2018-10859 | Information Exposure vulnerability in multiple products git-annex is vulnerable to an Information Exposure when decrypting files. | 7.5 |
| 2018-07-16 | CVE-2018-0385 | Improper Input Validation vulnerability in Cisco Secure Firewall Management Center A vulnerability in the detection engine parsing of Security Socket Layer (SSL) protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the Snort process unexpectedly restarting. | 7.5 |
| 2018-07-16 | CVE-2018-0383 | Protection Mechanism Failure vulnerability in Cisco Secure Firewall Management Center 6.2.2.1/6.2.3/6.3.0 A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass a file policy that is configured to block the transfer of files to an affected system via FTP. | 8.6 |
| 2018-07-16 | CVE-2018-0370 | Unspecified vulnerability in Cisco Secure Firewall Management Center 6.1.0.7/6.2.0.5/6.2.2.2 A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause one of the detection engine processes to run out of memory and thus slow down traffic processing. | 7.5 |
| 2018-07-16 | CVE-2018-0369 | Improper Input Validation vulnerability in Cisco Staros A vulnerability in the reassembly logic for fragmented IPv4 packets of Cisco StarOS running on virtual platforms could allow an unauthenticated, remote attacker to trigger a reload of the npusim process, resulting in a denial of service (DoS) condition. | 8.6 |
| 2018-07-16 | CVE-2018-0368 | Unspecified vulnerability in Cisco Application Policy Infrastructure Controller Enterprise Module 1.1Base A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an authenticated, local attacker to access sensitive information on an affected system. | 7.8 |
| 2018-07-16 | CVE-2018-0341 | OS Command Injection vulnerability in Cisco IP Phone Multiplatform Firmware 11.1(2) A vulnerability in the web-based UI of Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware before 11.2(1) could allow an authenticated, remote attacker to perform a command injection and execute commands with the privileges of the web server. | 8.8 |
| 2018-07-16 | CVE-2013-0522 | Information Exposure vulnerability in IBM Lotus Notes The Notes Client Single Logon feature in IBM Notes 8.0, 8.0.1, 8.0.2, 8.5, 8.5.1, 8.5.2, 8.5.3, and 9.0 on Windows allows local users to discover passwords via vectors involving an unspecified operating system communication mechanism for password transmission between Windows and Notes. | 7.0 |
| 2018-07-16 | CVE-2017-7468 | Improper Certificate Validation vulnerability in Haxx Libcurl In curl and libcurl 7.52.0 to and including 7.53.1, libcurl would attempt to resume a TLS session even if the client certificate had changed. | 7.5 |
| 2018-07-16 | CVE-2018-14089 | Improper Input Validation vulnerability in Virgo Zodiactoken Project Virgo Zodiactoken An issue was discovered in a smart contract implementation for Virgo_ZodiacToken, an Ethereum token. | 7.5 |