Lista CVE - 2018 / Ottobre
Visualizzazione 1101 - 1200 di 1468 CVE per Ottobre 2018 (Pagina 12 di 15)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2018-18026 | 2018-10-19 | IMFCameraProtect.sys in IObit Malware Fighter 6.2 (and possibly lower versions)... |
| CVE-2018-18223 | 2018-10-19 | Open Design Alliance Drawings SDK 2019Update1 has a vulnerability during... |
| CVE-2018-18224 | 2018-10-19 | A vulnerability exists in the file reading procedure in Open... |
| CVE-2018-18284 | 2018-10-19 | Artifex Ghostscript 9.25 and earlier allows attackers to bypass a... |
| CVE-2018-18398 | 2018-10-19 | Xfce Thunar 1.6.15, when Xfce 4.12 is used, mishandles the... |
| CVE-2018-18416 | 2018-10-19 | LANGO Codeigniter Multilingual Script 1.0 has XSS in the input... |
| CVE-2018-18417 | 2018-10-19 | In the 3.1 version of Ekushey Project Manager CRM, Stored... |
| CVE-2018-18419 | 2018-10-19 | Stored XSS has been discovered in the upload section of... |
| CVE-2018-18420 | 2018-10-19 | Cross-Site Request Forgery (CSRF) vulnerability was discovered in the 8.3... |
| CVE-2018-18428 | 2018-10-19 | TP-Link TL-SC3130 1.6.18P12_121101 devices allow unauthenticated RTSP stream access, as... |
| CVE-2018-18438 | 2018-10-19 | Qemu has integer overflows because IOReadHandler and its associated functions... |
| CVE-2018-18540 | 2018-10-20 | TeaKKi 2.7 allows XSS via a crafted onerror attribute for... |
| CVE-2018-18541 | 2018-10-20 | In Teeworlds before 0.6.5, connection packets could be forged. There... |
| CVE-2018-18544 | 2018-10-21 | There is a memory leak in the function WriteMSLImage of... |
| CVE-2018-18545 | 2018-10-21 | Fiyo CMS 2.0.7 has XSS via the dapur\apps\app_user\edit_user.php name parameter. |
| CVE-2018-18546 | 2018-10-21 | ThinkPHP 3.2.4 has SQL Injection via the order parameter because... |
| CVE-2018-18550 | 2018-10-21 | ServersCheck Monitoring Software before 14.3.4 allows SQL Injection by an... |
| CVE-2018-18553 | 2018-10-22 | Leanote 2.6.1 has XSS via the Blog Basic Setting title... |
| CVE-2018-1850 | 2018-10-22 | IBM Security Access Manager Appliance 9.0.3.1, 9.0.4.0 and 9.0.5.0 could... |
| CVE-2018-18557 | 2018-10-22 | LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7,... |
| CVE-2018-18559 | 2018-10-22 | In the Linux kernel through 4.19, a use-after-free can occur... |
| CVE-2018-12246 | 2018-10-22 | Symantec Web Isolation (WI) 1.11 prior to 1.11.21 is susceptible... |
| CVE-2018-15703 | 2018-10-22 | Advantech WebAccess 8.3.2 and below is vulnerable to multiple reflected... |
| CVE-2018-15704 | 2018-10-22 | Advantech WebAccess 8.3.2 and below is vulnerable to a stack... |
| CVE-2018-13114 | 2018-10-22 | Missing authentication and improper input validation in KERUI Wifi Endoscope... |
| CVE-2018-13115 | 2018-10-22 | Lack of an authentication mechanism in KERUI Wifi Endoscope Camera... |
| CVE-2018-18578 | 2018-10-22 | DedeCMS 5.7 SP2 allows XSS via the plus/qrcode.php type parameter. |
| CVE-2018-18579 | 2018-10-22 | Reflected XSS exists in DedeCMS 5.7 SP2 via the /member/pm.php... |
| CVE-2018-18581 | 2018-10-22 | An issue has been found in LuPng through 2017-03-10. It... |
| CVE-2018-18582 | 2018-10-22 | An issue has been found in LuPng through 2017-03-10. It... |
| CVE-2018-18583 | 2018-10-22 | An issue has been found in LuPng through 2017-03-10. It... |
| CVE-2018-18584 | 2018-10-23 | In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8,... |
| CVE-2018-18585 | 2018-10-23 | chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts a filename... |
| CVE-2018-18586 | 2018-10-23 | chmextract.c in the chmextract sample program, as distributed with libmspack... |
| CVE-2018-18587 | 2018-10-23 | BigProf AppGini 5.70 stores the passwords in the database using... |
| CVE-2017-18170 | 2018-10-23 | Improper input validation in Bluetooth Controller function can lead to... |
| CVE-2017-18171 | 2018-10-23 | Improper input validation for GATT data packet received in Bluetooth... |
| CVE-2017-18172 | 2018-10-23 | In a device, with screen size 1440x2560, the check of... |
| CVE-2017-18277 | 2018-10-23 | When dynamic memory allocation fails, currently the process sleeps for... |
| CVE-2017-18282 | 2018-10-23 | Non-secure SW can cause SDCC to generate secure bus accesses,... |
| CVE-2017-18283 | 2018-10-23 | Possible memory corruption when Read Val Blob Req is received... |
| CVE-2017-18292 | 2018-10-23 | Secure app running in non secure space can restart TZ... |
| CVE-2017-18293 | 2018-10-23 | When a particular GPIO is protected by blocking access to... |
| CVE-2017-18294 | 2018-10-23 | While reading file class type from ELF header, a buffer... |
| CVE-2017-18295 | 2018-10-23 | Possible buffer overflow if input is not null terminated in... |
| CVE-2017-18296 | 2018-10-23 | Access control on applications is not applied while accessing SafeSwitch... |
| CVE-2017-18297 | 2018-10-23 | Double memory free while closing TEE SE API Session management... |
| CVE-2017-18298 | 2018-10-23 | Lack of Input Validation in SDMX API can lead to... |
| CVE-2017-18299 | 2018-10-23 | Improper translation table consolidation logic leads to resource exhaustion and... |
| CVE-2017-18300 | 2018-10-23 | Secure display content could be accessed by third party trusted... |
| CVE-2017-18303 | 2018-10-23 | While processing the sensors registry configuration file, if inputs are... |
| CVE-2017-18304 | 2018-10-23 | Insufficient memory allocation in boot due to incorrect size being... |
| CVE-2017-18305 | 2018-10-23 | XBL sec mem dump system call allows complete control of... |
| CVE-2017-18312 | 2018-10-23 | While accessing SafeSwitch services, third party can manipulate a given... |
| CVE-2017-18313 | 2018-10-23 | Under certain mode of operations, HLOS may be able get... |
| CVE-2018-15366 | 2018-10-23 | A UrlfWTPPagePtr KERedirect Use-After-Free Privilege Escalation vulnerability in Trend Micro... |
| CVE-2018-15367 | 2018-10-23 | A ctl_set KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in... |
| CVE-2018-18327 | 2018-10-23 | A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend... |
| CVE-2018-18328 | 2018-10-23 | A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend... |
| CVE-2018-18329 | 2018-10-23 | A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend... |
| CVE-2018-7911 | 2018-10-23 | Some Huawei smart phones ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00),... |
| CVE-2018-13400 | 2018-10-23 | Several administrative resources in Atlassian Jira before version 7.6.9, from... |
| CVE-2018-13401 | 2018-10-23 | The XsrfErrorAction resource in Atlassian Jira before version 7.6.9, from... |
| CVE-2018-13402 | 2018-10-23 | Many resources in Atlassian Jira before version 7.6.9, from version... |
| CVE-2018-16837 | 2018-10-23 | Ansible "User" module leaks any data which is passed on... |
| CVE-2018-18603 | 2018-10-23 | 360 Total Security 3.5.0.1033 allows a Sandbox Escape via an... |
| CVE-2018-18599 | 2018-10-23 | Stegdetect through 2018-05-26 has an out-of-bounds write in f5_compress in... |
| CVE-2018-18605 | 2018-10-23 | A heap-based buffer over-read issue was discovered in the function... |
| CVE-2018-18606 | 2018-10-23 | An issue was discovered in the merge_strings function in merge.c... |
| CVE-2018-18607 | 2018-10-23 | An issue was discovered in elf_link_input_bfd in elflink.c in the... |
| CVE-2018-8569 | 2018-10-23 | A remote code execution vulnerability exists in the Yammer desktop... |
| CVE-2018-18589 | 2018-10-23 | MFSBGN03827 rev.1 - Microfocus Real User Monitoring 9.4.0 BPRDownload Java Deserialization Vulnerability |
| CVE-2018-18608 | 2018-10-23 | DedeCMS 5.7 SP2 allows XSS via the function named GetPageList... |
| CVE-2018-18622 | 2018-10-23 | An issue was discovered in Waimai Super Cms 20150505. There... |
| CVE-2018-18626 | 2018-10-23 | An issue was discovered in PHPYun V4.6. There is a... |
| CVE-2017-18349 | 2018-10-23 | parseObject in Fastjson before 1.2.25, as used in FastjsonEngine in... |
| CVE-2018-14806 | 2018-10-23 | Advantech WebAccess 8.3.1 and earlier has a path traversal vulnerability... |
| CVE-2018-14816 | 2018-10-23 | Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow... |
| CVE-2018-14820 | 2018-10-23 | Advantech WebAccess 8.3.1 and earlier has a .dll component that... |
| CVE-2018-14828 | 2018-10-23 | Advantech WebAccess 8.3.1 and earlier has an improper privilege management... |
| CVE-2018-18628 | 2018-10-23 | An issue was discovered in Pippo 1.11.0. The function SerializationSessionDataTranscoder.decode()... |
| CVE-2018-12901 | 2018-10-23 | A vulnerability in the conferencing component of Mitel ST 14.2,... |
| CVE-2018-15497 | 2018-10-23 | The Mitel MiVoice 5330e VoIP device is affected by memory... |
| CVE-2018-16226 | 2018-10-23 | A vulnerability in the web admin component of Mitel MiVoice... |
| CVE-2018-16235 | 2018-10-23 | Telligent Community 6.x, 7.x, 8.x, 9.x before 9.2.10.11796, 10.1.x before... |
| CVE-2018-17444 | 2018-10-23 | A Directory Traversal issue was discovered in Citrix SD-WAN 10.1.0... |
| CVE-2018-17445 | 2018-10-23 | A Command Injection issue was discovered in Citrix SD-WAN 10.1.0... |
| CVE-2018-17446 | 2018-10-23 | A SQL Injection issue was discovered in Citrix SD-WAN 10.1.0... |
| CVE-2018-17447 | 2018-10-23 | An Information Exposure Through Log Files issue was discovered in... |
| CVE-2018-17448 | 2018-10-23 | An Incorrect Access Control issue was discovered in Citrix SD-WAN... |
| CVE-2018-17873 | 2018-10-23 | An incorrect access control vulnerability in the FTP configuration of... |
| CVE-2018-17877 | 2018-10-23 | A lottery smart contract implementation for Greedy 599, an Ethereum... |
| CVE-2018-17968 | 2018-10-23 | A gambling smart contract implementation for RuletkaIo, an Ethereum gambling... |
| CVE-2018-18437 | 2018-10-23 | In AXIOS ITALIA Axioscloud Sissiweb Registro Elettronico 1.7.0, secret/relogoff.aspx has... |
| CVE-2018-18467 | 2018-10-23 | An issue was discovered in Daniel Gultsch Conversations 2.3.4. It... |
| CVE-2018-18475 | 2018-10-23 | Zoho ManageEngine OpManager before 12.3 build 123214 allows Unrestricted Arbitrary... |
| CVE-2018-7427 | 2018-10-23 | Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise... |
| CVE-2018-7429 | 2018-10-23 | Splunkd in Splunk Enterprise 6.2.x before 6.2.14 6.3.x before 6.3.11,... |
| CVE-2018-7431 | 2018-10-23 | Directory traversal vulnerability in the Splunk Django App in Splunk... |
| CVE-2018-7432 | 2018-10-23 | Splunk Enterprise 6.2.x before 6.2.14, 6.3.x before 6.3.10, 6.4.x before... |