Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-08-29 | CVE-2018-1318 | Improper Input Validation vulnerability in multiple products Adding method ACLs in remap.config can cause a segfault when the user makes a carefully crafted request. | 7.5 |
| 2018-08-29 | CVE-2018-12827 | Out-of-bounds Read vulnerability in multiple products Adobe Flash Player 30.0.0.134 and earlier have an out-of-bounds read vulnerability. | 7.5 |
| 2018-08-29 | CVE-2018-12826 | Out-of-bounds Read vulnerability in multiple products Adobe Flash Player 30.0.0.134 and earlier have an out-of-bounds read vulnerability. | 7.5 |
| 2018-08-29 | CVE-2018-12799 | NULL Pointer Dereference vulnerability in Adobe Acrobat DC Adobe Acrobat and Reader versions 2018.011.20055 and earlier, 2017.011.30096 and earlier, and 2015.006.30434 and earlier have an untrusted pointer dereference vulnerability. | 8.8 |
| 2018-08-29 | CVE-2018-15881 | Unspecified vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.8.12. | 7.5 |
| 2018-08-29 | CVE-2018-15121 | Cross-Site Request Forgery (CSRF) vulnerability in Auth0 Aspnet and Aspnet-Owin An issue was discovered in Auth0 auth0-aspnet and auth0-aspnet-owin. | 8.8 |
| 2018-08-28 | CVE-2018-3916 | Out-of-bounds Write vulnerability in Samsung Sth-Eth-250 Firmware 0.20.17 An exploitable stack-based buffer overflow vulnerability exists in the retrieval of database fields in the video-core HTTP server of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. | 7.8 |
| 2018-08-28 | CVE-2017-15406 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Chrome A stack buffer overflow in V8 in Google Chrome prior to 62.0.3202.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. | 8.8 |
| 2018-08-28 | CVE-2017-15399 | Use After Free vulnerability in multiple products A use after free in V8 in Google Chrome prior to 62.0.3202.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2018-08-28 | CVE-2018-3908 | HTTP Request Smuggling vulnerability in Samsung Sth-Eth-250 Firmware 0.20.17 An exploitable vulnerability exists in the REST parser of video-core's HTTP server of the Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17. | 7.5 |