Vulnerabilities > High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-07-30	CVE-2018-14738	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in PBC Project PBC An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. network low complexity pbc-project CWE-119	7.5
2018-07-30	CVE-2018-14737	NULL Pointer Dereference vulnerability in PBC Project PBC An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. network low complexity pbc-project CWE-476	7.5
2018-07-30	CVE-2018-14736	Out-of-bounds Read vulnerability in PBC Project PBC An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. network low complexity pbc-project CWE-125	7.5
2018-07-29	CVE-2018-14734	Use After Free vulnerability in multiple products drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allows attackers to cause a denial of service (use-after-free). local low complexity linux canonical debian CWE-416	7.8
2018-07-28	CVE-2018-14682	Off-by-one Error vulnerability in multiple products An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. network low complexity cabextract cabextract-project debian canonical redhat CWE-193	8.8
2018-07-28	CVE-2018-14681	Out-of-bounds Write vulnerability in multiple products An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. network low complexity cabextract cabextract-project debian canonical redhat CWE-787	8.8
2018-07-28	CVE-2018-14678	Improper Initialization vulnerability in multiple products An issue was discovered in the Linux kernel through 4.17.11, as used in Xen through 4.11.x. local low complexity linux xen debian canonical CWE-665	7.8
2018-07-27	CVE-2016-9578	Improper Input Validation vulnerability in multiple products A vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. network low complexity spice-project redhat debian CWE-20	7.5
2018-07-27	CVE-2017-2663	Unspecified vulnerability in Redhat Subscription-Manager It was found that subscription-manager's DBus interface before 1.19.4 let unprivileged user access the com.redhat.RHSM1.Facts.GetFacts and com.redhat.RHSM1.Config.Set methods. local low complexity redhat	7.8
2018-07-27	CVE-2017-2652	Improper Authentication vulnerability in Jenkins Distributed Fork It was found that there were no permission checks performed in the Distributed Fork plugin before and including 1.5.0 for Jenkins that provides the dist-fork CLI command beyond the basic check for Overall/Read permission, allowing anyone with that permission to run arbitrary shell commands on all connected nodes. network low complexity jenkins CWE-287	8.8

Vulnerabilities > High {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"High"}]}

Vulnerabilities > High