Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-08-01 CVE-2018-10896 Unspecified vulnerability in Canonical Cloud-Init
The default cloud-init configuration, in cloud-init 0.6.2 and newer, included "ssh_deletekeys: 0", disabling cloud-init's deletion of ssh host keys.
local
low complexity
canonical
7.1
2018-08-01 CVE-2016-9583 Out-of-bounds Read vulnerability in multiple products
An out-of-bounds heap read vulnerability was found in the jpc_pi_nextpcrl() function of jasper before 2.0.6 when processing crafted input.
local
low complexity
redhat jasper-project oracle CWE-125
7.8
2018-08-01 CVE-2016-8609 Improper Authentication vulnerability in Redhat Keycloak
It was found that the keycloak before 2.3.0 did not implement authentication flow correctly.
network
low complexity
redhat CWE-287
8.1
2018-08-01 CVE-2016-9580 Unspecified vulnerability in Uclouvain Openjpeg 2.1.2
An integer overflow vulnerability was found in tiftoimage function in openjpeg 2.1.2, resulting in heap buffer overflow.
network
low complexity
uclouvain
8.8
2018-08-01 CVE-2016-9579 Unspecified vulnerability in Redhat products
A flaw was found in the way Ceph Object Gateway would process cross-origin HTTP requests if the CORS policy was set to allow origin on a bucket.
network
low complexity
redhat
7.5
2018-08-01 CVE-2016-8654 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size.
local
low complexity
jasper-project redhat debian CWE-119
7.8
2018-08-01 CVE-2018-3923 Out-of-bounds Write vulnerability in Pl32 Photoline 20.54
A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.54.
local
low complexity
pl32 CWE-787
7.8
2018-08-01 CVE-2018-3922 Out-of-bounds Write vulnerability in Pl32 Photoline 20.54
A memory corruption vulnerability exists in the ANI-parsing functionality of Computerinsel Photoline 20.54.
local
low complexity
pl32 CWE-787
7.8
2018-08-01 CVE-2018-3921 Out-of-bounds Write vulnerability in Pl32 Photoline 20.54
A memory corruption vulnerability exists in the PSD-parsing functionality of Computerinsel Photoline 20.54.
local
low complexity
pl32 CWE-787
7.8
2018-08-01 CVE-2018-3672 Unspecified vulnerability in Intel Smart Sound Technology
Driver module in Intel Smart Sound Technology before version 9.21.00.3541 potentially allows a local attacker to execute arbitrary code as administrator via a system calls.
local
low complexity
intel
8.8