Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2018-11698 Vulnerability in npm package node-sass CWE-125 CWE-125 Critical CVE-2018-11758 Vulnerability in maven package org.apache.cayenne:cayenne-server CWE-611 CWE-611 Critical CVE-2018-11764 Vulnerability in maven package org.apache.hadoop:hadoop-core CWE-306 CWE-306 Critical CVE-2018-11766 Vulnerability in maven package org.apache.hadoop:hadoop-yarn-server-nodemanager Critical CVE-2018-11776 Vulnerability in maven package org.apache.struts:struts2-core Critical CVE-2018-11777 Vulnerability in maven package org.apache.hive:hive-exec Critical CVE-2018-11778 Vulnerability in maven package org.apache.ranger:ranger CWE-787 CWE-787 Critical CVE-2018-11779 Vulnerability in maven package org.apache.storm:storm-kafka-client CWE-502 CWE-502 Critical CVE-2018-11786 Vulnerability in maven package org.apache.karaf.shell:org.apache.karaf.shell.core CWE-269 CWE-269 Critical CVE-2018-11787 Vulnerability in maven package org.apache.karaf.webconsole:org.apache.karaf.webconsole.features CWE-287 CWE-287 Critical CVE-2018-11788 Vulnerability in maven package org.apache.karaf.specs:org.apache.karaf.specs.java.xml CWE-611 CWE-611 Critical CVE-2018-11788 Vulnerability in maven package org.apache.karaf:org.apache.karaf.util CWE-611 CWE-611 Critical CVE-2018-12532 Vulnerability in maven package org.richfaces:richfaces-a4j CWE-917 CWE-917 Critical CVE-2018-12533 Vulnerability in maven package org.richfaces:richfaces-a4j CWE-917 CWE-917 Critical CVE-2018-12538 Vulnerability in maven package org.eclipse.jetty:jetty-server CWE-384 CWE-384 Critical CVE-2018-12540 Vulnerability in maven package io.vertx:vertx-web CWE-352 CWE-352 Critical CVE-2018-12542 Vulnerability in maven package io.vertx:vertx-web CWE-22 CWE-22 Critical CVE-2018-12544 Vulnerability in maven package io.vertx:vertx-web-api-contract CWE-611 CWE-611 Critical CVE-2018-12585 Vulnerability in maven package org.opcfoundation.ua:opc-ua-stack CWE-611 CWE-611 Critical CVE-2018-12972 Vulnerability in maven package net.opentsdb:opentsdb CWE-78 CWE-78 Critical CVE-2018-13797 Vulnerability in maven package org.webjars.npm:macaddress CWE-78 CWE-78 Critical CVE-2018-13797 Vulnerability in npm package macaddress CWE-78 CWE-78 Critical CVE-2018-14637 Vulnerability in maven package org.keycloak:keycloak-services CWE-287 CWE-287 Critical CVE-2018-14718 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2018-14719 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2018-14720 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-611 CWE-611 Critical CVE-2018-14721 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-918 CWE-918 Critical CVE-2018-15494 Vulnerability in maven package org.webjars.bower:dojox CWE-116 CWE-116 Critical CVE-2018-15494 Vulnerability in maven package org.webjars.bowergithub.dojo:dojox CWE-116 CWE-116 Critical CVE-2018-15494 Vulnerability in maven package org.webjars.npm:dojox CWE-116 CWE-116 Critical CVE-2018-15494 Vulnerability in npm package dojox CWE-116 CWE-116 Critical CVE-2018-15531 Vulnerability in maven package net.bull.javamelody:javamelody-core CWE-611 CWE-611 Critical CVE-2018-15685 Vulnerability in maven package org.webjars.npm:electron CWE-1188 CWE-1188 Critical CVE-2018-15685 Vulnerability in npm package electron CWE-1188 CWE-1188 Critical CVE-2018-15758 Vulnerability in maven package org.springframework.security.oauth:spring-security-oauth2 Critical CVE-2018-15890 Vulnerability in maven package org.ethereum:ethereumj-core CWE-502 CWE-502 Critical CVE-2018-16115 Vulnerability in maven package com.typesafe.akka:akka-actor_2.11 CWE-338 CWE-338 Critical CVE-2018-16115 Vulnerability in maven package com.typesafe.akka:akka-actor_2.12 CWE-338 CWE-338 Critical CVE-2018-16202 Vulnerability in npm package cordova-plugin-ionic-webview CWE-22 CWE-22 Critical CVE-2018-16460 Vulnerability in npm package ps CWE-78 CWE-78 Critical CVE-2018-16461 Vulnerability in npm package libnmap CWE-78 CWE-78 Critical CVE-2018-16462 Vulnerability in npm package apex-publish-static-files CWE-78 CWE-78 Critical CVE-2018-16483 Vulnerability in npm package express-cart CWE-290 CWE-290 Critical CVE-2018-16486 Vulnerability in npm package defaults-deep CWE-74 CWE-74 Critical CVE-2018-16489 Vulnerability in maven package org.webjars.npm:just-extend CWE-74 CWE-74 Critical CVE-2018-16489 Vulnerability in npm package just-extend CWE-74 CWE-74 Critical CVE-2018-16491 Vulnerability in maven package org.webjars.npm:node.extend CWE-74 CWE-74 Critical CVE-2018-16491 Vulnerability in npm package node.extend CWE-74 CWE-74 Critical CVE-2018-16492 Vulnerability in maven package org.webjars.npm:extend CWE-74 CWE-74 Critical CVE-2018-16492 Vulnerability in npm package extend CWE-74 CWE-74 Critical CVE-2018-17196 Vulnerability in maven package org.apache.kafka:kafka-clients Critical CVE-2018-17198 Vulnerability in maven package org.apache.roller:roller-webapp CWE-918 CWE-918 Critical CVE-2018-17246 Vulnerability in npm package kibana CWE-829 CWE-829 Critical CVE-2018-18389 Vulnerability in maven package org.neo4j:neo4j-security-enterprise CWE-287 CWE-287 Critical CVE-2018-18531 Vulnerability in maven package com.github.penggle:kaptcha CWE-330 CWE-330 Critical CVE-2018-18628 Vulnerability in maven package ro.pippo:pippo-core CWE-502 CWE-502 Critical CVE-2018-18628 Vulnerability in maven package ro.pippo:pippo-session CWE-502 CWE-502 Critical CVE-2018-19360 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2018-19361 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2018-19362 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2018-19586 Vulnerability in maven package org.silverpeas.core:silverpeas-core-web CWE-22 CWE-22 Critical CVE-2018-19827 Vulnerability in maven package org.webjars.npm:node-sass CWE-416 CWE-416 Critical CVE-2018-19827 Vulnerability in npm package node-sass CWE-416 CWE-416 Critical CVE-2018-19907 Vulnerability in maven package org.craftercms:crafter-engine CWE-78 CWE-78 Critical CVE-2018-20059 Vulnerability in maven package ro.pippo:pippo-jaxb CWE-611 CWE-611 Critical CVE-2018-20222 Vulnerability in maven package org.airsonic.player:airsonic-main CWE-611 CWE-611 Critical CVE-2018-20318 Vulnerability in maven package com.github.binarywang:weixin-java-common CWE-611 CWE-611 Critical CVE-2018-20433 Vulnerability in maven package c3p0:c3p0 CWE-611 CWE-611 Critical CVE-2018-20433 Vulnerability in maven package com.mchange:c3p0 CWE-611 CWE-611 Critical CVE-2018-20595 Vulnerability in maven package org.hswebframework.web:hsweb-system-oauth2-client-web CWE-352 CWE-352 Critical CVE-2018-21234 Vulnerability in maven package org.jodd:jodd-json CWE-502 CWE-502 Critical CVE-2018-21268 Vulnerability in npm package traceroute CWE-74 CWE-74 Critical CVE-2018-25066 Vulnerability in npm package nodebatis CWE-89 CWE-89 Critical CVE-2018-25068 Vulnerability in maven package com.anrisoftware.globalpom:globalpomutils-fileresources CWE-668 CWE-668 Critical CVE-2018-25083 Vulnerability in npm package pullit CWE-78 CWE-78 Critical 1...5678...36 6 / 36
