Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-27 | CVE-2018-4898 | Out-of-bounds Write vulnerability in Adobe products An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. | 8.8 |
| 2018-02-27 | CVE-2018-4892 | Use After Free vulnerability in Adobe products An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. | 8.8 |
| 2018-02-27 | CVE-2018-4890 | Out-of-bounds Write vulnerability in Adobe products An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. | 8.8 |
| 2018-02-27 | CVE-2018-4888 | Use After Free vulnerability in Adobe products An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. | 8.8 |
| 2018-02-26 | CVE-2018-7490 | Path Traversal vulnerability in multiple products uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option, allowing directory traversal. | 7.5 |
| 2018-02-26 | CVE-2017-11635 | Information Exposure vulnerability in - Wireless IP Camera 360 An issue was discovered on Wireless IP Camera 360 devices. | 7.5 |
| 2018-02-26 | CVE-2017-11633 | Unspecified vulnerability in - Wireless IP Camera 360 An issue was discovered on Wireless IP Camera 360 devices. | 7.5 |
| 2018-02-26 | CVE-2018-7249 | Use After Free vulnerability in multiple products An issue was discovered in secdrv.sys as shipped in Microsoft Windows Vista, Windows 7, Windows 8, and Windows 8.1 before KB3086255, and as shipped in Macrovision SafeDisc. | 7.0 |
| 2018-02-26 | CVE-2018-7491 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Prestashop In PrestaShop through 1.7.2.5, a UI-Redressing/Clickjacking vulnerability was found that might lead to state-changing impact in the context of a user or an admin, because the generateHtaccess function in classes/Tools.php sets neither X-Frame-Options nor 'Content-Security-Policy "frame-ancestors' values. | 7.5 |
| 2018-02-26 | CVE-2018-7448 | OS Command Injection vulnerability in Cmsmadesimple CMS Made Simple 2.1.6 Remote code execution vulnerability in /cmsms-2.1.6-install.php/index.php in CMS Made Simple version 2.1.6 allows remote attackers to inject arbitrary PHP code via the "timezone" parameter in step 4 of a fresh installation procedure. | 7.5 |