Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-07-19 CVE-2017-2673 Unspecified vulnerability in Redhat Openstack 10/9
An authorization-check flaw was discovered in federation configurations of the OpenStack Identity service (keystone).
network
low complexity
redhat
7.2
7.2
2018-07-19 CVE-2018-14402 Out-of-bounds Write vulnerability in Axmldec Project Axmldec 1.2.0
axmldec 1.2.0 has an out-of-bounds write in the jitana::axml_parser::parse_start_namespace function in lib/jitana/util/axml_parser.cpp.
network
low complexity
axmldec-project CWE-787
7.5
7.5
2018-07-19 CVE-2018-14401 Out-of-bounds Read vulnerability in Axml Parser Project Axml Parser 20180104
CopyData in AxmlParser.c in AXML Parser through 2018-01-04 has an out-of-bounds read.
network
low complexity
axml-parser-project CWE-125
7.5
7.5
2018-07-19 CVE-2018-14370 Out-of-bounds Read vulnerability in Wireshark
In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the IEEE 802.11 protocol dissector could crash.
network
low complexity
wireshark CWE-125
7.5
7.5
2018-07-19 CVE-2018-14369 Improper Input Validation vulnerability in multiple products
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the HTTP2 dissector could crash.
network
low complexity
wireshark debian CWE-20
7.5
7.5
2018-07-19 CVE-2018-14368 Infinite Loop vulnerability in multiple products
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the Bazaar protocol dissector could go into an infinite loop.
network
low complexity
wireshark debian CWE-835
7.5
7.5
2018-07-19 CVE-2018-14367 Unchecked Return Value vulnerability in Wireshark
In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the CoAP protocol dissector could crash.
network
low complexity
wireshark CWE-252
7.5
7.5
2018-07-19 CVE-2018-14344 Out-of-bounds Read vulnerability in Wireshark
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ISMP dissector could crash.
network
low complexity
wireshark CWE-125
7.5
7.5
2018-07-19 CVE-2018-14343 Integer Overflow or Wraparound vulnerability in multiple products
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ASN.1 BER dissector could crash.
network
low complexity
wireshark debian CWE-190
7.5
7.5
2018-07-19 CVE-2018-14342 Excessive Iteration vulnerability in multiple products
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector could go into a large loop.
network
low complexity
wireshark debian CWE-834
7.5
7.5