Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-10-09 | CVE-2018-18194 | Out-of-bounds Read vulnerability in Linuxsampler Libgig 4.1.0 An issue was discovered in libgig 4.1.0. | 8.8 |
| 2018-10-09 | CVE-2018-18193 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linuxsampler Libgig 4.1.0 An issue was discovered in libgig 4.1.0. | 8.8 |
| 2018-10-09 | CVE-2018-18191 | Cross-Site Request Forgery (CSRF) vulnerability in Finecms 5.4 Cross-site request forgery (CSRF) vulnerability in /admin.php?c=member&m=edit&uid=1 in dayrui FineCms 5.4 allows remote attackers to change the administrator's password. | 8.8 |
| 2018-10-09 | CVE-2018-18086 | Unrestricted Upload of File with Dangerous Type vulnerability in Phome Empirecms 7.5 EmpireCMS v7.5 has an arbitrary file upload vulnerability in the LoadInMod function in e/class/moddofun.php, exploitable by logged-in users. | 8.8 |
| 2018-10-09 | CVE-2018-18074 | Insufficiently Protected Credentials vulnerability in multiple products The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which makes it easier for remote attackers to discover credentials by sniffing the network. | 7.5 |
| 2018-10-09 | CVE-2018-14080 | Improper Authentication vulnerability in D-Link products An issue was discovered on D-Link DIR-809 A1 through 1.09, A2 through 1.11, and Guest Zone through 1.09 devices. | 7.5 |
| 2018-10-09 | CVE-2018-2475 | Unspecified vulnerability in Gardener Following the Gardener architecture, the Kubernetes apiserver of a Gardener managed shoot cluster resides in the corresponding seed cluster. | 8.5 |
| 2018-10-09 | CVE-2018-2471 | Unspecified vulnerability in SAP Businessobjects Business Intelligence Platform 4.10/4.20 Under certain conditions SAP BusinessObjects Business Intelligence Platform 4.10 and 4.20 allows an attacker to access information which would otherwise be restricted. | 7.5 |
| 2018-10-09 | CVE-2018-2469 | Unspecified vulnerability in SAP Adaptive Server Enterprise 15.7/16.0 Under certain conditions SAP Adaptive Server Enterprise (ASE), versions 15.7 and 16.0, allows an attacker to access information which would otherwise be restricted. | 7.5 |
| 2018-10-09 | CVE-2018-2468 | Unspecified vulnerability in SAP Adaptive Server Enterprise 15.7/16.0 Under certain conditions the backup server in SAP Adaptive Server Enterprise (ASE), versions 15.7 and 16.0, allows an attacker to access information which would otherwise be restricted. | 7.5 |