Archive 01/03/2019

IDBaseTempVulnerability0dayTodayExpRemCTICVE
1494598.07.7Adobe Acrobat Reader type confusion$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2019-7131
1299397.57.2Adobe Acrobat Reader access control$25k-$100k$5k-$25kNot DefinedOfficial Fix0.03CVE-2018-16018
1299387.57.2Adobe Acrobat Reader use after free$25k-$100k$5k-$25kNot DefinedOfficial Fix0.08CVE-2018-16011
1286986.25.9Foxit Reader/PhantomPDF tiff Parser out-of-bounds read$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-5007
1286974.44.2Foxit Reader/PhantomPDF PDF Parser null pointer dereference$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-5006
1286964.44.2Foxit Reader/PhantomPDF Image Data memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-5005
1286959.18.7Zoho ManageEngine ADSelfService Plus server-side request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2019-3905
1286944.44.2Linux Kernel CAN Frame gw.c can_can_gw_rcv out-of-bounds write$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-3701
1286936.56.5Sqla_yaml_fixtures sqla_yaml_fixtures.load code injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-3575
1286925.25.2Technicolor MediaAccess TG789vac v2 HP Admin Web Interface cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2018-8827
1286916.86.8Webroot BrightCloud SDK Header bc_http_read_header memory corruption$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-4012
1286904.44.4Telegram Secret Chat Stored information disclosure$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-3986
1286898.58.2Zoho ManageEngine ADSelfService Plus Product License xml external entity reference$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2018-20664
1286884.44.4Reporting Addon Persistent cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-20663
1286875.45.4Poppler PDF File PDFDoc.cc setup input validation$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-20662
1286868.58.1EPON CPE-WiFi Privileges access control$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2018-20512
1286857.57.5Dolibarr card.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-19998
1286844.84.8Dolibarr card.php Stored cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-19995
1286837.57.5Dolibarr card.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-19994
1286825.75.7Dolibarr notice.php Reflected cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-19993
1286814.84.8Dolibarr type.php Stored cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2018-19992
1286808.57.7MiniShare memory corruption$0-$5k$0-$5kProof-of-ConceptWorkaround0.00CVE-2018-19862
1286798.57.7MiniShare memory corruption$0-$5k$0-$5kProof-of-ConceptWorkaround0.00CVE-2018-19861
1286787.87.2Rhymix CMS SVG server-side request forgery$0-$5k$0-$5kNot DefinedNot Defined0.08CVE-2018-19601
1286773.63.4Rhymix CMS SVG cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2018-19600
1286765.45.4DriverAgent Driver DrvAgent64.sys memory corruption$0-$5k$0-$5kNot DefinedNot Defined0.08CVE-2018-19523
1286758.58.5Plikli CMS join_group.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-19415
1286745.75.7Plikli CMS groups.php cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-19414
1286737.47.4Stripe API v1 Access Restriction tokens improper authentication$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2018-19249
1286725.25.2ABB Pluto Safety PLC Gateway Ethernet GATE-E2 Administrative Web Interface cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-18997
1286718.58.3ABB Pluto Safety PLC Gateway Ethernet GATE-E2 Telnet/Web missing authentication$0-$5k$0-$5kNot DefinedWorkaround0.00CVE-2018-18995
1286705.75.7Vivotek Network Camera syslog.html cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-18244
1286695.75.7Vivotek Network Camera event_script.js cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-18005
1286686.36.1Vivotek Network Camera mod_inetd.cgi access control$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-18004
1286678.07.7FreeBSD bootp input validation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-17161
1286665.45.2Red Hat Enterprise Linux Linux Kernel memcpy_fromiovecend out-of-bounds read$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-16885
1286657.57.2Linux Kernel KVM Hypervisor nested_get_vmcs12_pages use after free$5k-$25k$0-$5kNot DefinedOfficial Fix0.07CVE-2018-16882
1286648.58.2Ansible Tower Secure Channel path error$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2018-16879
1286636.46.1Ansible vvv+ Mode information disclosure$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2018-16876
1286626.66.4wolfSSL TLS Bleichenbacher cryptographic issues$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-16870

Do you know our Splunk app?

Download it now for free!