Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-03 | CVE-2018-13070 | Integer Overflow or Wraparound vulnerability in Encryptedtoken Project Encryptedtoken The mintToken function of a smart contract implementation for EncryptedToken (ECC), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | 7.5 |
| 2018-07-03 | CVE-2018-13069 | Integer Overflow or Wraparound vulnerability in Dychain Project Dychain The mintToken function of a smart contract implementation for DYchain (DYC), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | 7.5 |
| 2018-07-03 | CVE-2018-13068 | Integer Overflow or Wraparound vulnerability in Azuriontoken Project Azuriontoken The mintToken function of a smart contract implementation for AzurionToken (AZU), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | 7.5 |
| 2018-07-03 | CVE-2018-10856 | Incorrect Permission Assignment for Critical Resource vulnerability in Libpod Project Libpod It has been discovered that podman before version 0.6.1 does not drop capabilities when executing a container as a non-root user. | 8.8 |
| 2018-07-03 | CVE-2018-1080 | Unspecified vulnerability in Dogtagpki Dogtag PKI, through version 10.6.1, has a vulnerability in AAclAuthz.java that, under certain configurations, causes the application of ACL allow and deny rules to be reversed. | 8.1 |
| 2018-07-03 | CVE-2018-10596 | Information Exposure vulnerability in Medtronic 2090 Carelink Programmer Firmware Medtronic 2090 CareLink Programmer all versions The affected product uses a virtual private network connection to securely download updates. | 8.0 |
| 2018-07-02 | CVE-2018-13067 | Cross-Site Request Forgery (CSRF) vulnerability in Opencart /upload/catalog/controller/account/password.php in OpenCart through 3.0.2.0 has CSRF via the index.php?route=account/password URI to change a user's password. | 8.8 |
| 2018-07-02 | CVE-2018-13066 | Missing Release of Resource after Effective Lifetime vulnerability in Libming 0.4.8 There is a memory leak in util/parser.c in libming 0.4.8, which will lead to a denial of service via parseSWF_DEFINEBUTTON2, parseSWF_DEFINEFONT, parseSWF_DEFINEFONTINFO, parseSWF_DEFINELOSSLESS, parseSWF_DEFINESPRITE, parseSWF_DEFINETEXT, parseSWF_DOACTION, parseSWF_FILLSTYLEARRAY, parseSWF_FRAMELABEL, parseSWF_LINESTYLEARRAY, parseSWF_PLACEOBJECT2, or parseSWF_SHAPEWITHSTYLE. | 7.5 |
| 2018-07-02 | CVE-2018-1244 | Command Injection vulnerability in Dell Idrac7 Firmware, Idrac8 Firmware and Idrac9 Firmware Dell EMC iDRAC7/iDRAC8, versions prior to 2.60.60.60, and iDRAC9 versions prior to 3.21.21.21 contain a command injection vulnerability in the SNMP agent. | 8.8 |
| 2018-07-02 | CVE-2018-1243 | Improperly Implemented Security Check for Standard vulnerability in Dell products Dell EMC iDRAC6, versions prior to 2.91, iDRAC7/iDRAC8, versions prior to 2.60.60.60 and iDRAC9, versions prior to 3.21.21.21, contain a weak CGI session ID vulnerability. | 7.5 |