Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-07-17 CVE-2018-0706 Unspecified vulnerability in Qnap Q'Center
Exposure of Private Information in QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to access sensitive information.
network
low complexity
qnap
8.8
2018-07-16 CVE-2018-10857 Information Exposure vulnerability in multiple products
git-annex is vulnerable to a private data exposure and exfiltration attack.
network
low complexity
git-annex-project debian CWE-200
7.5
2018-07-16 CVE-2018-1046 Out-of-bounds Write vulnerability in Powerdns Pdns
pdns before version 4.1.2 is vulnerable to a buffer overflow in dnsreplay.
local
low complexity
powerdns CWE-787
7.8
2018-07-16 CVE-2018-14326 Integer Overflow or Wraparound vulnerability in Techsmith Mp4V2 2.0.0
In MP4v2 2.0.0, there is an integer overflow (with resultant memory corruption) when resizing MP4Array for the ftyp atom in mp4array.h.
network
low complexity
techsmith CWE-190
8.8
2018-07-16 CVE-2018-14325 Integer Underflow (Wrap or Wraparound) vulnerability in Techsmith Mp4V2 2.0.0
In MP4v2 2.0.0, there is an integer underflow (with resultant memory corruption) when parsing MP4Atom in mp4atom.cpp.
network
low complexity
techsmith CWE-191
8.8
2018-07-16 CVE-2018-10859 Information Exposure vulnerability in multiple products
git-annex is vulnerable to an Information Exposure when decrypting files.
network
low complexity
git-annex-project debian CWE-200
7.5
2018-07-16 CVE-2018-0385 Improper Input Validation vulnerability in Cisco Secure Firewall Management Center
A vulnerability in the detection engine parsing of Security Socket Layer (SSL) protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the Snort process unexpectedly restarting.
network
low complexity
cisco CWE-20
7.5
2018-07-16 CVE-2018-0383 Protection Mechanism Failure vulnerability in Cisco Secure Firewall Management Center 6.2.2.1/6.2.3/6.3.0
A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass a file policy that is configured to block the transfer of files to an affected system via FTP.
network
low complexity
cisco CWE-693
8.6
2018-07-16 CVE-2018-0370 Unspecified vulnerability in Cisco Secure Firewall Management Center 6.1.0.7/6.2.0.5/6.2.2.2
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause one of the detection engine processes to run out of memory and thus slow down traffic processing.
network
low complexity
cisco
7.5
2018-07-16 CVE-2018-0369 Improper Input Validation vulnerability in Cisco Staros
A vulnerability in the reassembly logic for fragmented IPv4 packets of Cisco StarOS running on virtual platforms could allow an unauthenticated, remote attacker to trigger a reload of the npusim process, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-20
8.6