Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-03-02 | CVE-2018-7637 | Out-of-bounds Read vulnerability in Cimg .220 An issue was discovered in CImg v.220. | 7.8 |
| 2018-03-02 | CVE-2018-6490 | Improper Input Validation vulnerability in HP Operations Orchestration 10.0 Denial of Service vulnerability in Micro Focus Operations Orchestration Software, version 10.x. | 7.5 |
| 2018-03-02 | CVE-2018-1170 | This vulnerability allows adjacent attackers to inject arbitrary Controller Area Network messages on vulnerable installations of Volkswagen Customer-Link App 1.30 and HTC Customer-Link Bridge. | 8.8 |
| 2018-03-02 | CVE-2018-1169 | Improper Input Validation vulnerability in Amazon Music 6.1.5.1213 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Amazon Music Player 6.1.5.1213. | 8.8 |
| 2018-03-01 | CVE-2018-7634 | Cross-Site Request Forgery (CSRF) vulnerability in Enalean Tuleap 9.17 An issue was discovered in Enalean Tuleap 9.17. | 8.8 |
| 2018-03-01 | CVE-2017-6930 | Unspecified vulnerability in Drupal In Drupal versions 8.4.x versions before 8.4.5 when using node access controls with a multilingual site, Drupal marks the untranslated version of a node as the default fallback for access queries. | 8.1 |
| 2018-03-01 | CVE-2017-6926 | Information Exposure vulnerability in Drupal In Drupal versions 8.4.x versions before 8.4.5 users with permission to post comments are able to view content and comments they do not have access to, and are also able to add comments to this content. | 8.1 |
| 2018-03-01 | CVE-2018-7590 | Cross-Site Request Forgery (CSRF) vulnerability in Hoosk 1.7.0 CSRF exists in Hoosk 1.7.0 via /admin/users/new/add, resulting in account creation. | 8.8 |
| 2018-03-01 | CVE-2018-7589 | Double Free vulnerability in Cimg .220 An issue was discovered in CImg v.220. | 7.8 |
| 2018-03-01 | CVE-2018-7588 | Out-of-bounds Read vulnerability in Cimg .220 An issue was discovered in CImg v.220. | 7.8 |