CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 5 and 5.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
8051 CVE-2018-13820 798 2018-08-30 2018-10-19
5.0
None Remote Low Not required Partial None None
A hardcoded passphrase, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows attackers to access sensitive information.
8052 CVE-2018-13819 798 2018-08-30 2018-10-19
5.0
None Remote Low Not required Partial None None
A hardcoded secret key, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows attackers to access sensitive information.
8053 CVE-2018-13815 400 2018-12-13 2019-10-09
5.0
None Remote Low Not required None None Partial
A vulnerability has been identified in SIMATIC S7-1200 (All versions), SIMATIC S7-1500 (All Versions < V2.6). An attacker could exhaust the available connection pool of an affected device by opening a sufficient number of connections to the device. Successful exploitation requires an attacker to be able to send packets to port 102/tcp of the affected device. No user interaction and no user privileges are required to exploit the vulnerability. The vulnerability, if exploited, could cause a Denial-of-Service condition impacting the availability of the system. At the time of advisory publication no public exploitation of this vulnerability was known.
8054 CVE-2018-13813 601 2018-12-13 2019-10-09
5.8
None Remote Medium Not required Partial Partial None
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15 Update 4), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15 Update 4), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V15 Update 4), SIMATIC WinCC Runtime Advanced (All versions < V15 Update 4), SIMATIC WinCC Runtime Professional (All versions < V15 Update 4), SIMATIC WinCC (TIA Portal) (All versions < V15 Update 4), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) (All versions). The webserver of affected HMI devices may allow URL redirections to untrusted websites. An attacker must trick a valid user who is authenticated to the device into clicking on a malicious link to exploit the vulnerability. At the time of advisory publication no public exploitation of this security vulnerability was known.
8055 CVE-2018-13812 22 Dir. Trav. 2018-12-13 2019-10-09
5.0
None Remote Low Not required Partial None None
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15 Update 4), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15 Update 4), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V15 Update 4), SIMATIC WinCC Runtime Advanced (All versions < V15 Update 4), SIMATIC WinCC Runtime Professional (All versions < V15 Update 4), SIMATIC WinCC (TIA Portal) (All versions < V15 Update 4), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) (All versions). A directory traversal vulnerability could allow to download arbitrary files from the device. The security vulnerability could be exploited by an attacker with network access to the integrated web server. No user interaction and no authentication is required to exploit the vulnerability. The vulnerability impacts the confidentiality of the device. At the time of advisory publication no public exploitation of this security vulnerability was known.
8056 CVE-2018-13805 400 2018-10-10 2019-03-21
5.0
None Remote Low Not required None None Partial
A vulnerability has been identified in SIMATIC ET 200SP Open Controller (All versions >= V2.0 and < V2.1.6), SIMATIC S7-1500 Software Controller (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 incl. F (All versions >= V2.0 and < V2.5). An attacker can cause a denial-of-service condition on the network stack by sending a large number of specially crafted packets to the PLC. The PLC will lose its ability to communicate over the network. This vulnerability could be exploited by an attacker with network access to the affected systems. Successful exploitation requires no privileges and no user interaction. An attacker could use this vulnerability to compromise availability of the network connectivity. At the time of advisory publication no public exploitation of this vulnerability was known.
8057 CVE-2018-13795 20 2018-07-09 2018-09-05
5.0
None Remote Low Not required None None Partial
Gravity before 0.5.1 does not support a maximum recursion depth.
8058 CVE-2018-13789 287 2018-10-10 2019-10-03
5.0
None Remote Low Not required Partial None None
An issue was discovered in Descor Infocad FM before 3.1.0.0. An unauthenticated web service allows the retrieval of files on the web server and on reachable SMB servers.
8059 CVE-2018-13783 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for JiucaiToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8060 CVE-2018-13782 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for ENTER (ENTR) (Contract Name: EnterCoin), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8061 CVE-2018-13781 190 Overflow 2018-07-09 2019-11-25
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for MyYLC, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8062 CVE-2018-13780 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for ESH, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8063 CVE-2018-13779 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for YLCToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8064 CVE-2018-13778 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for CGCToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8065 CVE-2018-13777 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for RRToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8066 CVE-2018-13776 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for AppleToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8067 CVE-2018-13775 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for RCKT_Coin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8068 CVE-2018-13774 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for Bitstarti, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8069 CVE-2018-13773 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for Enterprise Token Ecosystem (ETE) (Contract Name: NetkillerToken), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8070 CVE-2018-13772 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for TheFlashToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8071 CVE-2018-13771 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for ExacoreContract, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8072 CVE-2018-13770 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for UltimateCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8073 CVE-2018-13769 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for JeansToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8074 CVE-2018-13768 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for ZToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8075 CVE-2018-13767 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for Cornerstone, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8076 CVE-2018-13766 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for Easticoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8077 CVE-2018-13765 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for LandCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8078 CVE-2018-13764 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for BiquToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8079 CVE-2018-13763 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for Ublasti, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8080 CVE-2018-13762 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for Yumerium, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8081 CVE-2018-13761 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for NetkillerAdvancedTokenAirDrop, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8082 CVE-2018-13760 190 Overflow 2018-07-09 2019-11-26
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for MoneyChainNet (MCN), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8083 CVE-2018-13759 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for BIGCAdvancedToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8084 CVE-2018-13758 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for LoliCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8085 CVE-2018-13757 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for Coinquer, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8086 CVE-2018-13756 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for CherryCoinFoundation, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8087 CVE-2018-13755 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for OTAKUToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8088 CVE-2018-13754 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for CryptosisToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8089 CVE-2018-13753 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for DeWeiSecurityServiceToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8090 CVE-2018-13752 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for Thread, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8091 CVE-2018-13751 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for JustWallet, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8092 CVE-2018-13750 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for RichiumToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8093 CVE-2018-13749 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for FinalToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8094 CVE-2018-13748 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for CarToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8095 CVE-2018-13747 190 Overflow 2018-07-09 2018-07-17
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for VanMinhCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8096 CVE-2018-13746 190 Overflow 2018-07-09 2018-07-18
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for kBit, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8097 CVE-2018-13745 190 Overflow 2018-07-09 2018-07-18
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for STCToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8098 CVE-2018-13744 190 Overflow 2018-07-09 2018-07-18
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for Crowdnext (CNX), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8099 CVE-2018-13743 190 Overflow 2018-07-09 2019-10-10
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for SuperEnergy (SEC), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
8100 CVE-2018-13742 190 Overflow 2018-07-09 2018-07-18
5.0
None Remote Low Not required None Partial None
The mintToken function of a smart contract implementation for tickets (TKT), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
Total number of vulnerabilities : 22711   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 (This Page)163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 430 431 432 433 434 435 436 437 438 439 440 441 442 443 444 445 446 447 448 449 450 451 452 453 454 455
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.