CVEbaza.plCWE DictionaryCWE-18
Common Weakness Enumeration

CWE-18

CVE: 6
CVE vulnerabilities with CWE-18 (6)
9.8
CVSS
CRITICAL
CVE-2019-7263

Linear eMerge E3-Series devices have a Version Control Failure.

pub. 2019-07-02
7.5
CVSS
HIGH
CVE-2015-7262

QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, allows remote authenticated users to gain privileges by registering an executable file, and then waiting for this file to be run in a privileged context after a reboot.

pub. 2016-02-27
7.1
CVSS
HIGH
CVE-2015-2696

lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted IAKERB packet that is mishandled during a gss_inquire_context call.

pub. 2015-11-09
4.3
CVSS
MEDIUM
CVE-2015-0962

Barracuda Web Filter 7.x and 8.x before 8.1.0.005, when SSL Inspection is enabled, uses the same root Certification Authority certificate across different customers' installations, which makes it easier for remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging the certificate's trust relationship.

pub. 2015-05-25
3.7
CVSS
LOW
CVE-2016-7429

NTP before 4.2.8p9 changes the peer structure to the interface it receives the response from a source, which allows remote attackers to cause a denial of service (prevent communication with a source) by sending a response for a source to an interface the source does not use.

pub. 2017-01-13
3.6
CVSS
LOW
CVE-2014-8994

The check_diskio plugin 3.2.6 and earlier for Nagios and Icinga allows local users to write to arbitrary files via a symlink attack on a temporary file with a predictable name (tmp/check_diskio_status-*-*).

pub. 2014-11-28
Information
ID: CWE-18
Vulnerabilities: 6
MITRE CWE ↗
← CWE Dictionary