Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-07-13 CVE-2018-14045 Reachable Assertion vulnerability in Surina Soundtouch 2.0.0
The FIRFilter::evaluateFilterMulti function in FIRFilter.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.
network
low complexity
surina CWE-617
7.5
7.5
2018-07-13 CVE-2018-14044 Reachable Assertion vulnerability in Surina Soundtouch 2.0.0
The RateTransposer::setChannels function in RateTransposer.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.
network
low complexity
surina CWE-617
7.5
7.5
2018-07-13 CVE-2018-6969 Out-of-bounds Read vulnerability in VMWare Tools
VMware Tools (10.x and prior before 10.3.0) contains an out-of-bounds read vulnerability in HGFS.
local
high complexity
vmware CWE-125
7.0
7.0
2018-07-13 CVE-2018-14035 Out-of-bounds Read vulnerability in Hdfgroup Hdf5 1.8.20
An issue was discovered in the HDF HDF5 1.8.20 library.
network
low complexity
hdfgroup CWE-125
8.8
8.8
2018-07-13 CVE-2018-14034 Out-of-bounds Read vulnerability in Hdfgroup Hdf5 1.8.20
An issue was discovered in the HDF HDF5 1.8.20 library.
network
low complexity
hdfgroup CWE-125
8.8
8.8
2018-07-13 CVE-2018-14033 Out-of-bounds Read vulnerability in Hdfgroup Hdf5 1.8.20
An issue was discovered in the HDF HDF5 1.8.20 library.
network
low complexity
hdfgroup CWE-125
8.8
8.8
2018-07-13 CVE-2018-14031 Out-of-bounds Read vulnerability in Hdfgroup Hdf5 1.8.20
An issue was discovered in the HDF HDF5 1.8.20 library.
network
low complexity
hdfgroup CWE-125
8.8
8.8
2018-07-13 CVE-2018-14029 Cross-Site Request Forgery (CSRF) vulnerability in Creatiwity Witycms 0.6.2
CSRF vulnerability in admin/user/edit in Creatiwity wityCMS 0.6.2 allows an attacker to take over a user account, as demonstrated by modifying the account's email field.
network
low complexity
creatiwity CWE-352
8.8
8.8
2018-07-12 CVE-2018-14014 Cross-Site Request Forgery (CSRF) vulnerability in Super CMS Project Super CMS 20150505
In waimai Super Cms 20150505, there is a CSRF vulnerability that can add an admin account via admin.php?m=Member&a=adminadd.
network
low complexity
super-cms-project CWE-352
8.8
8.8
2018-07-12 CVE-2018-5529 Unspecified vulnerability in F5 Big-Ip Access Policy Manager and Big-Ip Edge
The svpn component of the F5 BIG-IP APM client prior to version 7.1.7 for Linux and Mac OS X runs as a privileged process and can allow an unprivileged user to assume super-user privileges on the local client host.
local
low complexity
f5
7.8
7.8