Vulnerabilities > High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-02	CVE-2018-11150	OS Command Injection vulnerability in Quest Disk Backup Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 8 of 46). network low complexity quest CWE-78	8.8
2018-06-02	CVE-2018-11149	OS Command Injection vulnerability in Quest Disk Backup Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 7 of 46). network low complexity quest CWE-78	8.8
2018-06-02	CVE-2018-11148	OS Command Injection vulnerability in Quest Disk Backup Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 6 of 46). network low complexity quest CWE-78	8.8
2018-06-02	CVE-2018-11147	OS Command Injection vulnerability in Quest Disk Backup Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 5 of 46). network low complexity quest CWE-78	8.8
2018-06-02	CVE-2018-11146	OS Command Injection vulnerability in Quest Disk Backup Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 4 of 46). network low complexity quest CWE-78	8.8
2018-06-02	CVE-2018-11145	OS Command Injection vulnerability in Quest Disk Backup Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 3 of 46). network low complexity quest CWE-78	8.8
2018-06-02	CVE-2018-11144	OS Command Injection vulnerability in Quest Disk Backup Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 2 of 46). network low complexity quest CWE-78	8.8
2018-06-01	CVE-2016-1000338	Improper Verification of Cryptographic Signature vulnerability in multiple products In Bouncy Castle JCE Provider version 1.55 and earlier the DSA does not fully validate ASN.1 encoding of signature on verification. network low complexity bouncycastle redhat canonical netapp CWE-347	7.5
2018-06-01	CVE-2018-3756	Improper Verification of Cryptographic Signature vulnerability in Hyperledger Iroha 1.0/1.0.0 Hyperledger Iroha versions v1.0_beta and v1.0.0_beta-1 are vulnerable to transaction and block signature verification bypass in the transaction and block validator allowing a single node to sign a transaction and/or block multiple times, each with a random nonce, and have other validating nodes accept them as separate valid signatures. network low complexity hyperledger CWE-347	7.5
2018-06-01	CVE-2018-11538	Cross-Site Request Forgery (CSRF) vulnerability in Searchblox 8.6.6 servlet/UserServlet in SearchBlox 8.6.6 has CSRF via the u_name, u_passwd1, u_passwd2, role, and X-XSRF-TOKEN POST parameters because of CSRF Token Bypass. network low complexity searchblox CWE-352	8.8

Vulnerabilities > High {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"High"}]}

Vulnerabilities > High