Total
4026 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-12268 | 1 Acccheck Project | 1 Acccheck.pl | 2024-08-05 | N/A |
| acccheck.pl in acccheck 0.2.1 allows Command Injection via shell metacharacters in a username or password file, as demonstrated by injection into an smbclient command line. | ||||
| CVE-2018-11805 | 3 Apache, Debian, Redhat | 3 Spamassassin, Debian Linux, Enterprise Linux | 2024-08-05 | 6.7 Medium |
| In Apache SpamAssassin before 3.4.3, nefarious CF files can be configured to run system commands without any output or errors. With this, exploits can be injected in a number of scenarios. In addition to upgrading to SA 3.4.3, we recommend that users should only use update channels or 3rd party .cf files from trusted places. | ||||
| CVE-2018-11616 | 1 Tencent | 1 Foxmail | 2024-08-05 | N/A |
| This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Tencent Foxmail 7.2.9.115. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of URI handlers. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code under the context of the current process. Was ZDI-CAN-5543. | ||||
| CVE-2018-11510 | 1 Asustor | 1 Adm | 2024-08-05 | N/A |
| The ASUSTOR ADM 3.1.0.RFQ3 NAS portal suffers from an unauthenticated remote code execution vulnerability in the portal/apis/aggrecate_js.cgi file by embedding OS commands in the 'script' parameter. | ||||
| CVE-2018-11166 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 24 of 46). | ||||
| CVE-2018-11229 | 1 Crestron | 8 Crestron Toolbox Protocol Firmware, Dmc-str, Tsw-1060 and 5 more | 2024-08-05 | N/A |
| Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via command injection in Crestron Toolbox Protocol (CTP). | ||||
| CVE-2018-11176 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 34 of 46). | ||||
| CVE-2018-11175 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 33 of 46). | ||||
| CVE-2018-11181 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 39 of 46). | ||||
| CVE-2018-11180 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 38 of 46). | ||||
| CVE-2018-11174 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 32 of 46). | ||||
| CVE-2018-11173 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 31 of 46). | ||||
| CVE-2018-11165 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 23 of 46). | ||||
| CVE-2018-11170 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 28 of 46). | ||||
| CVE-2018-11167 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 25 of 46). | ||||
| CVE-2018-11163 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 21 of 46). | ||||
| CVE-2018-11162 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 20 of 46). | ||||
| CVE-2018-11185 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 43 of 46). | ||||
| CVE-2018-11164 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 22 of 46). | ||||
| CVE-2018-11186 | 1 Quest | 1 Disk Backup | 2024-08-05 | N/A |
| Quest DR Series Disk Backup software version before 4.0.3.1 allows command injection (issue 44 of 46). | ||||