Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-07-25 CVE-2018-14596 Resource Exhaustion vulnerability in Wancms 1.0/5.0
wancms 1.0 through 5.0 allows remote attackers to cause a denial of service (resource consumption) via a checkcode (aka verification code) URI in which the values of font_size, width, and height are large numbers.
network
low complexity
wancms CWE-400
7.5
7.5
2018-07-24 CVE-2018-10906 Improper Privilege Management vulnerability in multiple products
In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is vulnerable to a restriction bypass when SELinux is active.
local
low complexity
debian fuse-project redhat CWE-269
7.8
7.8
2018-07-24 CVE-2018-11060 Unspecified vulnerability in RSA Archer 6.1.0.0/6.4.0.0
RSA Archer, versions prior to 6.4.0.1, contain an authorization bypass vulnerability in the REST API.
network
low complexity
rsa
8.8
8.8
2018-07-24 CVE-2018-11047 Incorrect Authorization vulnerability in Pivotal Software Cloud Foundry UAA
Cloud Foundry UAA, versions 4.19 prior to 4.19.2 and 4.12 prior to 4.12.4 and 4.10 prior to 4.10.2 and 4.7 prior to 4.7.6 and 4.5 prior to 4.5.7, incorrectly authorizes requests to admin endpoints by accepting a valid refresh token in lieu of an access token.
network
low complexity
pivotal-software CWE-863
7.5
7.5
2018-07-24 CVE-2018-10632 Resource Exhaustion vulnerability in Moxa products
In Moxa NPort 5210, 5230, and 5232 versions 2.9 build 17030709 and prior, the amount of resources requested by a malicious actor are not restricted, allowing for a denial-of-service condition.
network
low complexity
moxa CWE-400
7.5
7.5
2018-07-24 CVE-2018-14590 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Axiosys Bento4 1.5.1624
An issue has been discovered in Bento4 1.5.1-624.
network
low complexity
axiosys CWE-119
7.5
7.5
2018-07-24 CVE-2018-14589 Out-of-bounds Read vulnerability in Axiosys Bento4 1.5.1624
An issue has been discovered in Bento4 1.5.1-624.
network
low complexity
axiosys CWE-125
8.8
8.8
2018-07-24 CVE-2018-14588 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.5.1624
An issue has been discovered in Bento4 1.5.1-624.
network
low complexity
axiosys CWE-476
7.5
7.5
2018-07-24 CVE-2018-14587 Out-of-bounds Read vulnerability in Axiosys Bento4 1.5.1624
An issue has been discovered in Bento4 1.5.1-624.
network
low complexity
axiosys CWE-125
8.8
8.8
2018-07-24 CVE-2018-14586 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Axiosys Bento4 1.5.1624
An issue has been discovered in Bento4 1.5.1-624.
network
low complexity
axiosys CWE-119
8.8
8.8