Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-02-23 CVE-2018-7324 Infinite Loop vulnerability in multiple products
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-sccp.c had an infinite loop that was addressed by using a correct integer data type.
network
low complexity
wireshark debian CWE-835
7.5
2018-02-23 CVE-2018-7323 Excessive Iteration vulnerability in multiple products
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-wccp.c had a large loop that was addressed by ensuring that a calculated length was monotonically increasing.
network
low complexity
wireshark debian CWE-834
7.5
2018-02-23 CVE-2018-7322 Infinite Loop vulnerability in multiple products
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-dcm.c had an infinite loop that was addressed by checking for integer wraparound.
network
low complexity
wireshark debian CWE-835
7.5
2018-02-23 CVE-2018-7321 Excessive Iteration vulnerability in Wireshark
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thrift.c had a large loop that was addressed by not proceeding with dissection after encountering an unexpected type.
network
low complexity
wireshark CWE-834
7.5
2018-02-23 CVE-2018-7320 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash.
network
low complexity
wireshark debian
7.5
2018-02-23 CVE-2018-7441 Race Condition vulnerability in Leptonica
Leptonica through 1.75.3 uses hardcoded /tmp pathnames, which might allow local users to overwrite arbitrary files or have unspecified other impact by creating files in advance or winning a race condition, as demonstrated by /tmp/junk_split_image.ps in prog/splitimage2pdf.c.
local
high complexity
leptonica CWE-362
7.0
2018-02-23 CVE-2018-7439 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in FreeXL before 1.0.5.
network
low complexity
freexl-project debian CWE-125
8.8
2018-02-23 CVE-2018-7438 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in FreeXL before 1.0.5.
network
low complexity
freexl-project debian CWE-125
8.8
2018-02-23 CVE-2018-7437 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in FreeXL before 1.0.5.
network
low complexity
freexl-project debian CWE-125
8.8
2018-02-23 CVE-2018-7436 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in FreeXL before 1.0.5.
network
low complexity
freexl-project debian CWE-125
8.8