canonical

4,251 tracked vulnerabilities.

CVE-2018-6198 MEDIUM
Tats W3m < 0.5.3 - Symlink Following
Jan 25, 2018
CVSS 4.7
EPSS 0.00
CVE-2018-6197 HIGH
Tats W3m < 0.5.3 - NULL Pointer Dereference
Jan 25, 2018
CVSS 7.5
EPSS 0.04
CVE-2018-6196 HIGH
Tats W3m < 0.5.3 - Infinite Loop
Jan 25, 2018
CVSS 7.5
EPSS 0.03
CVE-2018-1000007 CRITICAL
libcurl 7.1-7.57.0 - Authentication Data Leak via Redirect Header Handling
Jan 24, 2018
CVSS 9.8
EPSS 0.08
CVE-2018-1000005 CRITICAL
libcurl 7.49.0-7.57.0 - Out-of-bounds Read in HTTP/2 Trailer Handling
Jan 24, 2018
CVSS 9.1
EPSS 0.05
CVE-2018-5683 MEDIUM
Qemu < 2.11.1 - Denial of Service via vga_draw_text Memory Address Validation
Jan 23, 2018
CVSS 6.0
EPSS 0.01
CVE-2018-5950 MEDIUM
Mailman < 2.1.26 - Cross-Site Scripting via User-Options URL
Jan 23, 2018
CVSS 6.1
EPSS 0.05
CVE-2018-5785 MEDIUM
OpenJPEG 2.3.0 - Denial of Service via Integer Overflow in opj_j2k_setup_encoder
Jan 19, 2018
CVSS 6.5
EPSS 0.02
CVE-2018-5784 MEDIUM
libtiff - Denial of Service via Crafted TIFF File
Jan 19, 2018
CVSS 6.5
EPSS 0.03
CVE-2018-2678 MEDIUM
Oracle JDK and JRE - Unauthenticated Partial Denial of Service via JNDI
Jan 18, 2018
CVSS 4.3
EPSS 0.05
CVE-2018-2677 MEDIUM
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 4.3
EPSS 0.05
CVE-2018-2668 MEDIUM
Oracle MySQL Server < 5.5.58 - Authenticated Denial of Service in Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.04
CVE-2018-2665 MEDIUM
Oracle MySQL Server < 5.5.58, 5.6.38, 5.7.20 - Denial of Service in Server Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.04
CVE-2018-2663 MEDIUM
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 4.3
EPSS 0.05
CVE-2018-2641 MEDIUM
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 6.1
EPSS 0.05
CVE-2018-2640 MEDIUM
MySQL Server < 5.5.58, 5.6.38, 5.7.20 - Authenticated Denial of Service in Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.04
CVE-2018-2637 HIGH
Oracle JDK and JRE - Unauthenticated Data Manipulation and Access via JMX
Jan 18, 2018
CVSS 7.4
EPSS 0.05
CVE-2018-2634 MEDIUM
Oracle JDK 7u161, 8u152, 9.0.1 and Java SE Embedded 8u151 - Unauthenticated Data Access via JGSS
Jan 18, 2018
CVSS 6.8
EPSS 0.05
CVE-2018-2633 HIGH
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 8.3
EPSS 0.06
CVE-2018-2629 MEDIUM
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 5.3
EPSS 0.05
CVE-2018-2622 MEDIUM
MySQL Server < 5.5.58, 5.6.38, 5.7.20 - Authenticated Denial of Service in DDL Subcomponent
Jan 18, 2018
CVSS 6.5
EPSS 0.04
CVE-2018-2618 MEDIUM
Oracle Java SE <9.0.1 - Unauthenticated RCE
Jan 18, 2018
CVSS 5.9
EPSS 0.05
CVE-2018-2612 MEDIUM
MySQL <5.6.38 & <5.7.20 - Privilege Escalation
Jan 18, 2018
CVSS 6.5
EPSS 0.04
CVE-2018-2603 MEDIUM
Oracle JDK 6u171, 7u161, 8u152, 9.0.1; Java SE Embedded 8u151; JRockit R28.3.16 - Partial DoS via Multiple Protocols
Jan 18, 2018
CVSS 5.3
EPSS 0.07
CVE-2018-2602 MEDIUM
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 4.5
EPSS 0.01