Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-26 | CVE-2018-4860 | OS Command Injection vulnerability in Siemens Scalance M875 Firmware A vulnerability has been identified in SCALANCE M875 (All versions). | 7.2 |
| 2018-06-26 | CVE-2018-4859 | OS Command Injection vulnerability in Siemens Scalance M875 Firmware A vulnerability has been identified in SCALANCE M875 (All versions). | 7.2 |
| 2018-06-26 | CVE-2018-4845 | Improper Privilege Management vulnerability in Siemens products A vulnerability has been identified in RAPIDLab 1200 systems / RAPIDPoint 400 systems / RAPIDPoint 500 systems (All versions_without_ use of Siemens Healthineers Informatics products), RAPIDLab 1200 Series (All versions < V3.3 _with_ Siemens Healthineers Informatics products), RAPIDPoint 500 systems (All versions >= V3.0 _with_ Siemens Healthineers Informatics products), RAPIDPoint 500 systems (V2.4.X_with_ Siemens Healthineers Informatics products), RAPIDPoint 500 systems (All versions =< V2.3 _with_ Siemens Healthineers Informatics products), RAPIDPoint 400 systems (All versions _with_ Siemens Healthineers Informatics products). | 8.8 |
| 2018-06-26 | CVE-2018-11449 | Unspecified vulnerability in Siemens Scalance M875 Firmware A vulnerability has been identified in SCALANCE M875 (All versions). | 7.8 |
| 2018-06-26 | CVE-2018-11447 | Cross-Site Request Forgery (CSRF) vulnerability in Siemens Scalance M875 Firmware A vulnerability has been identified in SCALANCE M875 (All versions). | 8.8 |
| 2018-06-26 | CVE-2018-10664 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Axis products An issue was discovered in the httpd process in multiple models of Axis IP Cameras. | 7.5 |
| 2018-06-26 | CVE-2018-10663 | Information Exposure vulnerability in Axis products An issue was discovered in multiple models of Axis IP Cameras. | 7.5 |
| 2018-06-26 | CVE-2018-10659 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Axis products There was a Memory Corruption issue discovered in multiple models of Axis IP Cameras which allows remote attackers to cause a denial of service (crash) by sending a crafted command which will result in a code path that calls the UND undefined ARM instruction. | 7.5 |
| 2018-06-26 | CVE-2018-10658 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Axis products There was a Memory Corruption issue discovered in multiple models of Axis IP Cameras which causes a denial of service (crash). | 7.5 |
| 2018-06-26 | CVE-2018-1000610 | Insufficiently Protected Credentials vulnerability in Jenkins Configuration AS Code A exposure of sensitive information vulnerability exists in Jenkins Configuration as Code Plugin 0.7-alpha and earlier in DataBoundConfigurator.java, Attribute.java, BaseConfigurator.java, ExtensionConfigurator.java that allows attackers with access to Jenkins log files to obtain the passwords configured using Configuration as Code Plugin. | 8.8 |