Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-08-01 CVE-2018-3921 Out-of-bounds Write vulnerability in Pl32 Photoline 20.54
A memory corruption vulnerability exists in the PSD-parsing functionality of Computerinsel Photoline 20.54.
local
low complexity
pl32 CWE-787
7.8
2018-08-01 CVE-2018-3672 Unspecified vulnerability in Intel Smart Sound Technology
Driver module in Intel Smart Sound Technology before version 9.21.00.3541 potentially allows a local attacker to execute arbitrary code as administrator via a system calls.
local
low complexity
intel
8.8
2018-08-01 CVE-2018-3670 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Intel Smart Sound Technology
Driver module in Intel Smart Sound Technology before version 9.21.00.3541 potentially allows a local attacker to execute arbitrary code as administrator via a buffer overflow.
local
low complexity
intel CWE-119
8.8
2018-08-01 CVE-2018-3666 Unspecified vulnerability in Intel Smart Sound Technology
Driver module in Intel Smart Sound Technology before version 9.21.00.3541 potentially allows a local attacker to execute arbitrary code as administrator via a non-paged pool overflow.
local
low complexity
intel
8.8
2018-08-01 CVE-2018-3662 Unspecified vulnerability in Intel Saffron Memorybase
Escalation of privilege in Intel Saffron MemoryBase before version 11.4 potentially allows an authorized user of the Saffron application to execute arbitrary code as root.
low complexity
intel
8.0
2018-08-01 CVE-2018-3650 Improper Input Validation vulnerability in Intel Distribution for Python 2017/2018
Insufficient Input Validation in Bleach module in INTEL Distribution for Python versions prior to IDP 2018 Update 2 allows unprivileged user to bypass URI sanitization via local vector.
local
low complexity
intel CWE-20
7.8
2018-08-01 CVE-2016-9581 Unspecified vulnerability in Uclouvain Openjpeg 2.1.2
An infinite loop vulnerability in tiftoimage that results in heap buffer overflow in convert_32s_C1P1 was found in openjpeg 2.1.2.
network
low complexity
uclouvain
8.8
2018-08-01 CVE-2016-8648 Unspecified vulnerability in Redhat Jboss A-Mq and Jboss Fuse
It was found that the Karaf container used by Red Hat JBoss Fuse 6.x, and Red Hat JBoss A-MQ 6.x, deserializes objects passed to MBeans via JMX operations.
network
low complexity
redhat
7.2
2018-08-01 CVE-2016-8641 Unspecified vulnerability in Nagios
A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely changing the ownership afterwards.
local
low complexity
nagios
7.8
2018-08-01 CVE-2018-1999040 Information Exposure vulnerability in Jenkins Kubernetes
An exposure of sensitive information vulnerability exists in Jenkins Kubernetes Plugin 1.10.1 and earlier in KubernetesCloud.java that allows attackers to capture credentials with a known credentials ID stored in Jenkins.
network
low complexity
jenkins CWE-200
8.8