Lista CVE - 2018 / Ottobre
Visualizzazione 1001 - 1100 di 1468 CVE per Ottobre 2018 (Pagina 11 di 15)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2018-0417 | 2018-10-17 | Cisco Wireless LAN Controller Software GUI Privilege Escalation Vulnerability |
| CVE-2018-0420 | 2018-10-17 | Cisco Wireless LAN Controller Software Directory Traversal Vulnerability |
| CVE-2018-0441 | 2018-10-17 | Cisco IOS Access Points Software 802.11r Fast Transition Denial of Service Vulnerability |
| CVE-2018-0442 | 2018-10-17 | Cisco Wireless LAN Controller Software Control and Provisioning of Wireless Access Points Protocol Information Disclosure Vulnerability |
| CVE-2018-0443 | 2018-10-17 | Cisco Wireless LAN Controller Software Control and Provisioning of Wireless Access Points Protocol Denial of Service Vulnerability |
| CVE-2018-15435 | 2018-10-17 | Cisco SocialMiner Cross-Site Scripting Vulnerability |
| CVE-2018-15438 | 2018-10-17 | Cisco Prime Collaboration Assurance Cross-Site Request Forgery Vulnerability |
| CVE-2018-18454 | 2018-10-18 | CCITTFaxStream::readRow() in Stream.cc in Xpdf 4.00 allows remote attackers to... |
| CVE-2018-18455 | 2018-10-18 | The GfxImageColorMap class in GfxState.cc in Xpdf 4.00 allows remote... |
| CVE-2018-18456 | 2018-10-18 | The function Object::isName() in Object.h (called from Gfx::opSetFillColorN) in Xpdf... |
| CVE-2018-18457 | 2018-10-18 | The function DCTStream::readScan in Stream.cc in Xpdf 4.00 allows remote... |
| CVE-2018-18458 | 2018-10-18 | The function DCTStream::decodeImage in Stream.cc in Xpdf 4.00 allows remote... |
| CVE-2018-18459 | 2018-10-18 | The function DCTStream::getBlock in Stream.cc in Xpdf 4.00 allows remote... |
| CVE-2018-18460 | 2018-10-18 | XSS exists in the wp-live-chat-support v8.0.15 plugin for WordPress via... |
| CVE-2018-18461 | 2018-10-18 | The Arigato Autoresponder and Newsletter (aka bft-autoresponder) v2.5.1.7 plugin for... |
| CVE-2016-9069 | 2018-10-18 | A use-after-free in nsINode::ReplaceOrInsertBefore during DOM operations resulting in potentially... |
| CVE-2018-12358 | 2018-10-18 | Service workers can use redirection to avoid the tainting of... |
| CVE-2018-12359 | 2018-10-18 | A buffer overflow can occur when rendering canvas content while... |
| CVE-2018-12360 | 2018-10-18 | A use-after-free vulnerability can occur when deleting an input element... |
| CVE-2018-12361 | 2018-10-18 | An integer overflow can occur in the SwizzleData code while... |
| CVE-2018-12362 | 2018-10-18 | An integer overflow can occur during graphics operations done by... |
| CVE-2018-12363 | 2018-10-18 | A use-after-free vulnerability can occur when script uses mutation events... |
| CVE-2018-12364 | 2018-10-18 | NPAPI plugins, such as Adobe Flash, can send non-simple cross-origin... |
| CVE-2018-12365 | 2018-10-18 | A compromised IPC child process can escape the content sandbox... |
| CVE-2018-12366 | 2018-10-18 | An invalid grid size during QCMS (color profile) transformations can... |
| CVE-2018-12367 | 2018-10-18 | In the previous mitigations for Spectre, the resolution or precision... |
| CVE-2018-12368 | 2018-10-18 | Windows 10 does not warn users before opening executable files... |
| CVE-2018-12369 | 2018-10-18 | WebExtensions bundled with embedded experiments were not correctly checked for... |
| CVE-2018-12370 | 2018-10-18 | In Reader View SameSite cookie protections are not checked on... |
| CVE-2018-12372 | 2018-10-18 | Decrypted S/MIME parts, when included in HTML crafted for an... |
| CVE-2018-12373 | 2018-10-18 | dDecrypted S/MIME parts hidden with CSS or the plaintext HTML... |
| CVE-2018-12374 | 2018-10-18 | Plaintext of decrypted emails can leak through by user submitting... |
| CVE-2018-12375 | 2018-10-18 | Memory safety bugs present in Firefox 61. Some of these... |
| CVE-2018-12376 | 2018-10-18 | Memory safety bugs present in Firefox 61 and Firefox ESR... |
| CVE-2018-12377 | 2018-10-18 | A use-after-free vulnerability can occur when refresh driver timers are... |
| CVE-2018-12378 | 2018-10-18 | A use-after-free vulnerability can occur when an IndexedDB index is... |
| CVE-2018-12379 | 2018-10-18 | When the Mozilla Updater opens a MAR format file which... |
| CVE-2018-12381 | 2018-10-18 | Manually dragging and dropping an Outlook email message into the... |
| CVE-2018-12382 | 2018-10-18 | The displayed addressbar URL can be spoofed on Firefox for... |
| CVE-2018-12383 | 2018-10-18 | If a user saved passwords before Firefox 58 and then... |
| CVE-2018-12385 | 2018-10-18 | A potentially exploitable crash in TransportSecurityInfo used for SSL can... |
| CVE-2018-12386 | 2018-10-18 | A vulnerability in register allocation in JavaScript can lead to... |
| CVE-2018-12387 | 2018-10-18 | A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with... |
| CVE-2018-5156 | 2018-10-18 | A vulnerability can occur when capturing a media stream when... |
| CVE-2018-5186 | 2018-10-18 | Memory safety bugs present in Firefox 60. Some of these... |
| CVE-2018-5187 | 2018-10-18 | Memory safety bugs present in Firefox 60 and Firefox ESR... |
| CVE-2018-5188 | 2018-10-18 | Memory safety bugs present in Firefox 60, Firefox ESR 60,... |
| CVE-2018-1822 | 2018-10-18 | IBM FlashSystem 900 product GUI allows a specially crafted attack... |
| CVE-2018-1518 | 2018-10-18 | IBM InfoSphere Information Server 11.7 is affected by a weak... |
| CVE-2018-18478 | 2018-10-18 | Persistent Cross-Site Scripting (XSS) issues in LibreNMS before 1.44 allow... |
| CVE-2018-18481 | 2018-10-18 | A heap-based buffer over-read exists in libopencad 0.2.0 in the... |
| CVE-2018-18480 | 2018-10-18 | A heap-based buffer over-read exists in libopencad 0.2.0 in the... |
| CVE-2018-18482 | 2018-10-18 | An issue was discovered in libpg_query 10-1.0.2. There is a... |
| CVE-2015-4630 | 2018-10-18 | Multiple cross-site request forgery (CSRF) vulnerabilities in Koha 3.14.x before... |
| CVE-2015-4631 | 2018-10-18 | Multiple cross-site scripting (XSS) vulnerabilities in Koha 3.14.x before 3.14.16,... |
| CVE-2015-4632 | 2018-10-18 | Multiple directory traversal vulnerabilities in Koha 3.14.x before 3.14.16, 3.16.x... |
| CVE-2015-4633 | 2018-10-18 | Multiple SQL injection vulnerabilities in Koha 3.14.x before 3.14.16, 3.16.x... |
| CVE-2018-18483 | 2018-10-18 | The get_count function in cplus-dem.c in GNU libiberty, as distributed... |
| CVE-2018-18484 | 2018-10-18 | An issue was discovered in cp-demangle.c in GNU libiberty, as... |
| CVE-2018-18486 | 2018-10-18 | An issue was discovered in PHPSHE 1.7. SQL injection exists... |
| CVE-2018-14807 | 2018-10-18 | A stack-based buffer overflow vulnerability in Opto 22 PAC Control... |
| CVE-2018-18485 | 2018-10-18 | An issue was discovered in PHPSHE 1.7. admin.php?mod=db&act=del allows remote... |
| CVE-2018-18487 | 2018-10-18 | In \lib\admin\action\dataaction.class.php in Gxlcms v2.0, the database backup filename generation... |
| CVE-2018-18488 | 2018-10-18 | In \lib\admin\action\dataaction.class.php in Gxlcms v2.0, SQL Injection exists via the... |
| CVE-2018-11079 | 2018-10-18 | Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains... |
| CVE-2018-11080 | 2018-10-18 | Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains... |
| CVE-2018-15756 | 2018-10-18 | DoS Attack via Range Requests |
| CVE-2018-15758 | 2018-10-18 | Privilege Escalation in spring-security-oauth2 |
| CVE-2018-15765 | 2018-10-18 | Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains... |
| CVE-2017-18348 | 2018-10-19 | Splunk Enterprise 6.6.x, when configured to run as root but... |
| CVE-2018-15312 | 2018-10-19 | On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, a reflected Cross-Site Scripting... |
| CVE-2018-15313 | 2018-10-19 | On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a... |
| CVE-2018-15314 | 2018-10-19 | On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a... |
| CVE-2018-15315 | 2018-10-19 | On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a reflected... |
| CVE-2018-15316 | 2018-10-19 | In F5 BIG-IP APM 13.0.0-13.1.1.1, APM Client 7.1.5-7.1.6, and/or Edge... |
| CVE-2018-4013 | 2018-10-19 | An exploitable code execution vulnerability exists in the HTTP packet-parsing... |
| CVE-2018-18390 | 2018-10-19 | User Enumeration in Moxa ThingsPro IIoT Gateway and Device Management... |
| CVE-2018-18391 | 2018-10-19 | User Privilege Escalation in Moxa ThingsPro IIoT Gateway and Device... |
| CVE-2018-18392 | 2018-10-19 | Privilege Escalation via Broken Access Control in Moxa ThingsPro IIoT... |
| CVE-2018-18393 | 2018-10-19 | Password Management Issue in Moxa ThingsPro IIoT Gateway and Device... |
| CVE-2018-18394 | 2018-10-19 | Sensitive Information Stored in Clear Text in Moxa ThingsPro IIoT... |
| CVE-2018-18395 | 2018-10-19 | Hidden Token Access in Moxa ThingsPro IIoT Gateway and Device... |
| CVE-2018-18396 | 2018-10-19 | Remote Code Execution in Moxa ThingsPro IIoT Gateway and Device... |
| CVE-2018-18520 | 2018-10-19 | An Invalid Memory Address Dereference exists in the function elf_end... |
| CVE-2018-18521 | 2018-10-19 | Divide-by-zero vulnerabilities in the function arlib_add_symbols() in arlib.c in elfutils... |
| CVE-2018-18527 | 2018-10-19 | OwnTicket 2018-05-23 allows SQL Injection via the showTicketId or editTicketStatusId... |
| CVE-2018-18380 | 2018-10-19 | A Session Fixation issue was discovered in Bigtree before 4.2.24.... |
| CVE-2018-18529 | 2018-10-19 | ThinkPHP 3.2.4 has SQL Injection via the count parameter because... |
| CVE-2018-18530 | 2018-10-19 | ThinkPHP 5.1.25 has SQL Injection via the count parameter because... |
| CVE-2018-18531 | 2018-10-19 | text/impl/DefaultTextCreator.java, text/impl/ChineseTextProducer.java, and text/impl/FiveLetterFirstNameTextCreator.java in kaptcha 2.3.2 use the Random... |
| CVE-2018-12666 | 2018-10-19 | SV3C L-SERIES HD CAMERA V2.3.4.2103-S50-NTD-B20170508B devices improperly identifies users only... |
| CVE-2018-12667 | 2018-10-19 | The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) is affected... |
| CVE-2018-12668 | 2018-10-19 | SV3C L-SERIES HD CAMERA V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B devices have a... |
| CVE-2018-12669 | 2018-10-19 | SV3C L-SERIES HD CAMERA V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B devices allow remote... |
| CVE-2018-12670 | 2018-10-19 | SV3C L-SERIES HD CAMERA V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B devices allow OS... |
| CVE-2018-12671 | 2018-10-19 | An attacker with remote access to the SV3C HD Camera... |
| CVE-2018-12672 | 2018-10-19 | The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B) does not perform proper... |
| CVE-2018-12673 | 2018-10-19 | An attacker with remote access to the SV3C HD Camera... |
| CVE-2018-12674 | 2018-10-19 | The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) stores the... |
| CVE-2018-12675 | 2018-10-19 | The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) does not... |