Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In August 2018
CVE-2016-9572
A NULL pointer dereference flaw was found in the way openjpeg 2.1.2 decoded certain input images. Due to a logic error in the code responsible for decoding the input image, an application using openjpeg to process image data could crash when processing a crafted image.
CVSS Score
5.9
EPSS Score
0.018
Published
2018-08-01
CVE-2016-9579
A flaw was found in the way Ceph Object Gateway would process cross-origin HTTP requests if the CORS policy was set to allow origin on a bucket. A remote unauthenticated attacker could use this flaw to cause denial of service by sending a specially-crafted cross-origin HTTP request. Ceph branches 1.3.x and 2.x are affected.
CVSS Score
6.5
EPSS Score
0.183
Published
2018-08-01
CVE-2016-9580
An integer overflow vulnerability was found in tiftoimage function in openjpeg 2.1.2, resulting in heap buffer overflow.
CVSS Score
3.3
EPSS Score
0.004
Published
2018-08-01
CVE-2017-5692
Out-of-bounds read condition in older versions of some Intel Graphics Driver for Windows code branches allows local users to perform a denial of service attack.
CVSS Score
5.5
EPSS Score
0.0
Published
2018-08-01
CVE-2018-12466
openSUSE openbuildservice before 9.2.4 allowed authenticated users to delete packages on specific projects with project links.
CVSS Score
4.4
EPSS Score
0.002
Published
2018-08-01
CVE-2018-12467
Authorized users of the openbuildservice before 2.9.4 could delete packages by using a malicious request against projects having the OBS:InitializeDevelPackage attribute, a similar issue to CVE-2018-7689.
CVSS Score
6.0
EPSS Score
0.001
Published
2018-08-01
CVE-2018-3650
Insufficient Input Validation in Bleach module in INTEL Distribution for Python versions prior to IDP 2018 Update 2 allows unprivileged user to bypass URI sanitization via local vector.
CVSS Score
7.8
EPSS Score
0.001
Published
2018-08-01
CVE-2018-3662
Escalation of privilege in Intel Saffron MemoryBase before version 11.4 potentially allows an authorized user of the Saffron application to execute arbitrary code as root.
CVSS Score
8.0
EPSS Score
0.001
Published
2018-08-01
CVE-2018-3663
Escalation of privilege in Intel Saffron MemoryBase before 11.4 allows an authenticated user access to privileged information.
CVSS Score
5.7
EPSS Score
0.001
Published
2018-08-01
CVE-2018-3666
Driver module in Intel Smart Sound Technology before version 9.21.00.3541 potentially allows a local attacker to execute arbitrary code as administrator via a non-paged pool overflow.
CVSS Score
8.8
EPSS Score
0.0
Published
2018-08-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved