Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-13 | CVE-2018-6951 | NULL Pointer Dereference vulnerability in multiple products An issue was discovered in GNU patch through 2.7.6. | 7.5 |
| 2018-02-13 | CVE-2018-6293 | Information Exposure vulnerability in Hyland Saperion web Client 7.5.2 Arbitrary File Read in Saperion Web Client version 7.5.2 83166. | 7.5 |
| 2018-02-12 | CVE-2017-9970 | Unrestricted Upload of File with Dangerous Type vulnerability in Schneider-Electric Struxureon Gateway 1.1.3 A remote code execution vulnerability exists in Schneider Electric's StruxureOn Gateway versions 1.1.3 and prior. | 7.2 |
| 2018-02-12 | CVE-2017-9967 | Unspecified vulnerability in Schneider-Electric Interactive Graphical Scada System 10.0/12.0/9.0 A security misconfiguration vulnerability exists in Schneider Electric's IGSS SCADA Software versions 12 and prior. | 7.8 |
| 2018-02-12 | CVE-2017-9963 | Cross-Site Request Forgery (CSRF) vulnerability in Schneider-Electric Powerscada Anywhere 1.0 A cross-site request forgery vulnerability exists on the Secure Gateway component of Schneider Electric's PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2 and Citect Anywhere version 1.0 for multiple state-changing requests. | 8.1 |
| 2018-02-12 | CVE-2017-17723 | Out-of-bounds Read vulnerability in Exiv2 0.26 In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::Image::byteSwap4 function in image.cpp. | 8.1 |
| 2018-02-12 | CVE-2018-1214 | Use of Hard-coded Credentials vulnerability in Dell EMC Supportassist Enterprise 1.1 Dell EMC SupportAssist Enterprise version 1.1 creates a local Windows user account named "OMEAdapterUser" with a default password as part of the installation process. | 7.0 |
| 2018-02-12 | CVE-2018-6927 | Integer Overflow or Wraparound vulnerability in multiple products The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value. | 7.8 |
| 2018-02-12 | CVE-2017-13247 | Missing Authorization vulnerability in Google Android In the Pixel 2 bootloader, there is a missing permission check which bypasses carrier bootloader lock. | 7.8 |
| 2018-02-12 | CVE-2017-13246 | Information Exposure vulnerability in Google Android A information disclosure vulnerability in the Upstream kernel network driver. | 7.5 |