exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 18 824

CVE-2018-1004

почти 8 лет назад

Windows VBScript Engine Remote Code Execution Vulnerability

CVSS3: 5

EPSS: Средний

CVE-2018-1003

почти 8 лет назад

Microsoft JET Database Engine Remote Code Execution Vulnerability

CVSS3: 7.1

EPSS: Средний

CVE-2018-1001

почти 8 лет назад

Scripting Engine Memory Corruption Vulnerability

CVSS3: 6.4

EPSS: Средний

CVE-2018-1000

почти 8 лет назад

Scripting Engine Memory Corruption Vulnerability

CVSS3: 6.4

EPSS: Средний

CVE-2018-1000500

больше 5 лет назад

CVSS3: 8.1

EPSS: Низкий

CVE-2018-1000217

5 месяцев назад

Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability

CVSS3: 9.8

EPSS: Низкий

CVE-2018-1000216

5 месяцев назад

Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker must be able to force victim to print JSON data, depending on how cJSON library is used this could be either local or over a network. This vulnerability appears to have been fixed in 1.7.3.

CVSS3: 8.8

EPSS: Низкий

CVE-2018-1000215

5 месяцев назад

Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service

CVSS3: 7.5

EPSS: Низкий

CVE-2018-1000182

больше 5 лет назад

CVSS3: 6.4

EPSS: Низкий

CVE-2018-1000168

больше 4 лет назад

nghttp2 version >= 1.10.0 and nghttp2 <= v1.31.0 contains an Improper Input Validation CWE-20 vulnerability in ALTSVC frame handling that can result in segmentation fault leading to denial of service. This attack appears to be exploitable via network client. This vulnerability appears to have been fixed in >= 1.31.1.

CVSS3: 7.5

EPSS: Низкий

CVE-2018-1000156

больше 5 лет назад

CVSS3: 7.8

EPSS: Средний

CVE-2018-1000110

больше 5 лет назад

CVSS3: 5.3

EPSS: Средний

CVE-2018-1000097

около 4 лет назад

CVSS3: 7.8

EPSS: Низкий

CVE-2018-1000035

больше 5 лет назад

CVSS3: 7.8

EPSS: Средний

CVE-2018-1000026

больше 5 лет назад

Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmware assertion takes card off-line. This attack appear to be exploitable via An attacker on a must pass a very large, specially crafted packet to the bnx2x card. This can be done from an untrusted guest VM..

CVSS3: 7.7

EPSS: Низкий

CVE-2018-0998

почти 8 лет назад

Microsoft Edge PDF Information Disclosure Vulnerability

CVSS3: 4.3

EPSS: Средний

CVE-2018-0997

почти 8 лет назад

Internet Explorer Memory Corruption Vulnerability

CVSS3: 7.5

EPSS: Средний

CVE-2018-0996

почти 8 лет назад

Scripting Engine Memory Corruption Vulnerability

CVSS3: 6.4

EPSS: Средний

CVE-2018-0995

почти 8 лет назад

Chakra Scripting Engine Memory Corruption Vulnerability

CVSS3: 4.2

EPSS: Средний

CVE-2018-0994

почти 8 лет назад

Chakra Scripting Engine Memory Corruption Vulnerability

CVSS3: 4.2

EPSS: Средний

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2018-1004 Windows VBScript Engine Remote Code Execution Vulnerability	CVSS3: 5	34% Средний	почти 8 лет назад
CVE-2018-1003 Microsoft JET Database Engine Remote Code Execution Vulnerability	CVSS3: 7.1	29% Средний	почти 8 лет назад
CVE-2018-1001 Scripting Engine Memory Corruption Vulnerability	CVSS3: 6.4	30% Средний	почти 8 лет назад
CVE-2018-1000 Scripting Engine Memory Corruption Vulnerability	CVSS3: 6.4	32% Средний	почти 8 лет назад
CVE-2018-1000500	CVSS3: 8.1	1% Низкий	больше 5 лет назад
CVE-2018-1000217 Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability	CVSS3: 9.8	0% Низкий	5 месяцев назад
CVE-2018-1000216 Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker must be able to force victim to print JSON data, depending on how cJSON library is used this could be either local or over a network. This vulnerability appears to have been fixed in 1.7.3.	CVSS3: 8.8	0% Низкий	5 месяцев назад
CVE-2018-1000215 Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service	CVSS3: 7.5	0% Низкий	5 месяцев назад
CVE-2018-1000182	CVSS3: 6.4	0% Низкий	больше 5 лет назад
CVE-2018-1000168 nghttp2 version >= 1.10.0 and nghttp2 <= v1.31.0 contains an Improper Input Validation CWE-20 vulnerability in ALTSVC frame handling that can result in segmentation fault leading to denial of service. This attack appears to be exploitable via network client. This vulnerability appears to have been fixed in >= 1.31.1.	CVSS3: 7.5	4% Низкий	больше 4 лет назад
CVE-2018-1000156	CVSS3: 7.8	37% Средний	больше 5 лет назад
CVE-2018-1000110	CVSS3: 5.3	13% Средний	больше 5 лет назад
CVE-2018-1000097	CVSS3: 7.8	4% Низкий	около 4 лет назад
CVE-2018-1000035	CVSS3: 7.8	65% Средний	больше 5 лет назад
CVE-2018-1000026 Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmware assertion takes card off-line. This attack appear to be exploitable via An attacker on a must pass a very large, specially crafted packet to the bnx2x card. This can be done from an untrusted guest VM..	CVSS3: 7.7	1% Низкий	больше 5 лет назад
CVE-2018-0998 Microsoft Edge PDF Information Disclosure Vulnerability	CVSS3: 4.3	13% Средний	почти 8 лет назад
CVE-2018-0997 Internet Explorer Memory Corruption Vulnerability	CVSS3: 7.5	24% Средний	почти 8 лет назад
CVE-2018-0996 Scripting Engine Memory Corruption Vulnerability	CVSS3: 6.4	30% Средний	почти 8 лет назад
CVE-2018-0995 Chakra Scripting Engine Memory Corruption Vulnerability	CVSS3: 4.2	23% Средний	почти 8 лет назад
CVE-2018-0994 Chakra Scripting Engine Memory Corruption Vulnerability	CVSS3: 4.2	23% Средний	почти 8 лет назад

Уязвимостей на страницу