Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-08-17 CVE-2018-10873 Improper Input Validation vulnerability in multiple products
A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked sufficient bounds checks.
network
low complexity
spice-project debian canonical redhat CWE-20
8.8
8.8
2018-08-16 CVE-2018-15122 Improper Input Validation vulnerability in Telerik Justassembly and Justdecompile
An issue found in Progress Telerik JustAssembly through 2018.1.323.2 and JustDecompile through 2018.2.605.0 makes it possible to execute code by decompiling a compiled .NET object (such as DLL or EXE) with an embedded resource file by clicking on the resource.
local
low complexity
telerik CWE-20
7.8
7.8
2018-08-16 CVE-2018-13446 Improper Authentication vulnerability in Linecorp Line 8.8.1
An issue was discovered in the LINE jp.naver.line application 8.8.1 for Android.
local
high complexity
linecorp CWE-287
7.0
7.0
2018-08-16 CVE-2018-13435 Improper Authentication vulnerability in Linecorp Line 8.8.0
An issue was discovered in the LINE jp.naver.line application 8.8.0 for iOS.
local
high complexity
linecorp CWE-287
7.0
7.0
2018-08-16 CVE-2018-12256 Unrestricted Upload of File with Dangerous Type vulnerability in Litecart
admin/vqmods.app/vqmods.inc.php in LiteCart before 2.1.3 allows remote authenticated attackers to upload a malicious file (resulting in remote code execution) by using the text/xml or application/xml Content-Type in a public_html/admin/?app=vqmods&doc=vqmods request.
network
low complexity
litecart CWE-434
8.8
8.8
2018-08-15 CVE-2017-13108 Use of Hard-coded Credentials vulnerability in Psafe Dfndr Security 5.0.9
DFNDR Security Antivirus, Anti-hacking & Cleaner, 5.0.9, 2017-11-01, Android application uses a hard-coded key for encryption.
network
low complexity
psafe CWE-798
7.5
7.5
2018-08-15 CVE-2017-13107 Use of Hard-coded Credentials vulnerability in Liveme 3.7.20
Live.me - live stream video chat, 3.7.20, 2017-11-06, Android application uses a hard-coded key for encryption.
network
low complexity
liveme CWE-798
7.5
7.5
2018-08-15 CVE-2017-13106 Use of Hard-coded Credentials vulnerability in Cmcm CM Launcher 3D 5.0.3
Cheetahmobile CM Launcher 3D - Theme, wallpaper, Secure, Efficient, 5.0.3, 2017-09-19, Android application uses a hard-coded key for encryption.
network
low complexity
cmcm CWE-798
7.5
7.5
2018-08-15 CVE-2017-13104 Use of Hard-coded Credentials vulnerability in Uber Ubereats 1.108.10001
Uber Technologies, Inc.
network
low complexity
uber CWE-798
7.5
7.5
2018-08-15 CVE-2017-13102 Use of Hard-coded Credentials vulnerability in Gameloft Asphalt Xtreme 1.6.0
Gameloft Asphalt Xtreme: Offroad Rally Racing, 1.6.0, 2017-08-13, iOS application uses a hard-coded key for encryption.
network
low complexity
gameloft CWE-798
7.5
7.5