Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-25 | CVE-2018-1051 | Deserialization of Untrusted Data vulnerability in Redhat Resteasy 3.0.22/3.1.2 It was found that the fix for CVE-2016-9606 in versions 3.0.22 and 3.1.2 was incomplete and Yaml unmarshalling in Resteasy is still possible via `Yaml.load()` in YamlProvider. | 8.1 |
| 2018-01-25 | CVE-2017-15132 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products A flaw was found in dovecot 2.0 up to 2.2.33 and 2.3.0. | 7.5 |
| 2018-01-25 | CVE-2018-5954 | Resource Exhaustion vulnerability in PHPfreechat phpFreeChat 1.7 and earlier allows remote attackers to cause a denial of service by sending a large number of connect commands. | 7.5 |
| 2018-01-25 | CVE-2018-5748 | Resource Exhaustion vulnerability in multiple products qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of service (memory consumption) via a large QEMU reply. | 7.5 |
| 2018-01-25 | CVE-2017-15365 | sql/event_data_objects.cc in MariaDB before 10.1.30 and 10.2.x before 10.2.10 and Percona XtraDB Cluster before 5.6.37-26.21-3 and 5.7.x before 5.7.19-29.22-3 allows remote authenticated users with SQL access to bypass intended access restrictions and replicate data definition language (DDL) statements to cluster nodes by leveraging incorrect ordering of DDL replication and ACL checking. | 8.8 |
| 2018-01-25 | CVE-2017-1000414 | Divide By Zero vulnerability in Impulseadventure Jpegsnoop 1.7.5 ImpulseAdventure JPEGsnoop version 1.7.5 is vulnerable to a division by zero in the JFIF decode handling resulting denial of service. | 7.5 |
| 2018-01-25 | CVE-2018-4837 | Unspecified vulnerability in Siemens Telecontrol Server Basic 3.0 A vulnerability has been identified in TeleControl Server Basic < V3.1. | 7.5 |
| 2018-01-25 | CVE-2018-4836 | Unspecified vulnerability in Siemens Telecontrol Server Basic 3.0 A vulnerability has been identified in TeleControl Server Basic < V3.1. | 8.8 |
| 2018-01-25 | CVE-2018-6209 | Improper Input Validation vulnerability in Maxpcsecure Anti Virus 19.0.3.019 In Max Secure Anti Virus 19.0.3.019,, the driver file (MaxCryptMon.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x220019. | 7.8 |
| 2018-01-25 | CVE-2018-6208 | Improper Input Validation vulnerability in Maxpcsecure Anti Virus 19.0.3.019 In Max Secure Anti Virus 19.0.3.019,, the driver file (MaxProtector32.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x22000d. | 7.8 |