Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-01 | CVE-2018-9128 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Dvd-X-Player DVD X Player 5.5.3.9 DVD X Player Standard 5.5.3.9 has a Buffer Overflow via a crafted .plf file, a related issue to CVE-2007-3068. | 7.8 |
| 2018-03-31 | CVE-2018-8908 | Cross-Site Request Forgery (CSRF) vulnerability in Frog CMS Project Frog CMS 0.9.5 An issue was discovered in /admin/?/user/add in Frog CMS 0.9.5. | 8.8 |
| 2018-03-31 | CVE-2018-8893 | Cross-Site Request Forgery (CSRF) vulnerability in Zblogcn Z-Blogphp 1.5.1 Z-BlogPHP 1.5.1 Zero has CSRF in plugin_edit.php, resulting in the ability to execute arbitrary PHP code. | 8.8 |
| 2018-03-31 | CVE-2015-9258 | Cryptographic Issues vulnerability in Docker Notary In Docker Notary before 0.1, gotuf/signed/verify.go has a Signature Algorithm Not Matched to Key vulnerability. | 7.5 |
| 2018-03-31 | CVE-2017-18255 | Integer Overflow or Wraparound vulnerability in Linux Kernel The perf_cpu_time_max_percent_handler function in kernel/events/core.c in the Linux kernel before 4.11 allows local users to cause a denial of service (integer overflow) or possibly have unspecified other impact via a large value, as demonstrated by an incorrect sample-rate calculation. | 7.8 |
| 2018-03-30 | CVE-2018-7566 | Race Condition vulnerability in multiple products The Linux kernel 4.15 has a Buffer Overflow via an SNDRV_SEQ_IOCTL_SET_CLIENT_POOL ioctl write operation to /dev/snd/seq by a local user. | 7.8 |
| 2018-03-30 | CVE-2018-7171 | Path Traversal vulnerability in Lynxtechnology Twonky Server Directory traversal vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to share the contents of arbitrary directories via a .. | 7.5 |
| 2018-03-30 | CVE-2018-5708 | Insufficiently Protected Credentials vulnerability in Dlink Dir-601 Firmware 2.02Na An issue was discovered on D-Link DIR-601 B1 2.02NA devices. | 8.0 |
| 2018-03-30 | CVE-2018-1232 | Out-of-bounds Write vulnerability in RSA Authentication Agent for web 8.0/8.0.1 RSA Authentication Agent version 8.0.1 and earlier for Web for both IIS and Apache Web Server are impacted by a stack-based buffer overflow which may occur when handling certain malicious web cookies that have invalid formats. | 7.5 |
| 2018-03-30 | CVE-2017-9723 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android The touchscreen driver synaptics_dsx in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-05, the size of a stack-allocated buffer can be set to a value which exceeds the size of the stack. | 7.8 |