Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-10 | CVE-2018-10975 | Improper Input Validation vulnerability in 2345.Cc Security Guard 3.7 In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 version) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCTL 0x00222104. | 7.8 |
| 2018-05-10 | CVE-2018-10974 | Improper Input Validation vulnerability in 2345.Cc Security Guard 3.7 In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 version) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCTL 0x00222100. | 7.8 |
| 2018-05-10 | CVE-2018-10972 | Out-of-bounds Write vulnerability in Flif Free Lossless Image Format 0.3 An issue was discovered in Free Lossless Image Format (FLIF) 0.3. | 7.8 |
| 2018-05-10 | CVE-2018-7941 | Improper Authentication vulnerability in Huawei products Huawei iBMC V200R002C60 have an authentication bypass vulnerability. | 8.8 |
| 2018-05-10 | CVE-2018-7933 | Path Traversal vulnerability in Huawei Hirouter-Cd20 Firmware and Ws5200 Firmware Huawei home gateway products HiRouter-CD20 and WS5200 with the versions before HiRouter-CD20-10 1.9.6 and the versions before WS5200-10 1.9.6 have a path traversal vulnerability. | 7.8 |
| 2018-05-10 | CVE-2018-10655 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Devicelock Plug and Play Auditor 5.72 DLPnpAuditor.exe in DeviceLock Plug and Play Auditor (freeware) 5.72 has a Unicode Buffer Overflow (SEH). | 7.8 |
| 2018-05-10 | CVE-2017-6293 | Out-of-bounds Write vulnerability in Google Android In Android before the 2018-05-05 security patch level, NVIDIA Tegra X1 TZ contains a vulnerability in Widevine TA where the software writes data past the end, or before the beginning, of the intended buffer, which may lead to escalation of Privileges. | 7.8 |
| 2018-05-10 | CVE-2017-6289 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In Android before the 2018-05-05 security patch level, NVIDIA Trusted Execution Environment (TEE) contains a memory corruption (due to unusual root cause) vulnerability, which if run within the speculative execution of the TEE, may lead to local escalation of privileges. | 7.8 |
| 2018-05-10 | CVE-2017-18266 | Injection vulnerability in multiple products The open_envvar function in xdg-open in xdg-utils before 1.1.3 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, as demonstrated by %s in this environment variable. | 8.8 |
| 2018-05-10 | CVE-2018-8061 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Hwinfo Amd64 Kernel Driver 8.98 HWiNFO AMD64 Kernel driver version 8.98 and lower allows an unprivileged user to send IOCTL 0x85FE2608 to the device driver with the HWiNFO32 symbolic device name, resulting in direct physical memory read or write. | 7.1 |