Vulnerabilities > Starwindsoftware > Starwind Virtual SAN

DATE CVE VULNERABILITY TITLE RISK
2018-10-10 CVE-2018-16737 Improper Authentication vulnerability in multiple products
tinc before 1.0.30 has a broken authentication protocol, without even a partial mitigation.
network
low complexity
tinc-vpn starwindsoftware CWE-287
5.3
5.3
2018-04-10 CVE-2018-3839 Out-of-bounds Write vulnerability in multiple products
An exploitable code execution vulnerability exists in the XCF image rendering functionality of Simple DirectMedia Layer SDL2_image-2.0.2.
network
low complexity
libsdl debian starwindsoftware CWE-787
8.8
8.8
2018-04-10 CVE-2018-3837 Out-of-bounds Read vulnerability in multiple products
An exploitable information disclosure vulnerability exists in the PCX image rendering functionality of Simple DirectMedia Layer SDL2_image-2.0.2.
local
low complexity
libsdl debian starwindsoftware CWE-125
5.5
5.5