Lista CVE - 2018 / Ottobre
Visualizzazione 101 - 200 di 1468 CVE per Ottobre 2018 (Pagina 2 di 15)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2018-9497 | 2018-10-02 | In impeg2_fmt_conv_yuv420p_to_yuv420sp_uv_av8 of impeg2_format_conv.s there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed.... |
| CVE-2018-9498 | 2018-10-02 | In SkSampler::Fill of SkSampler.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed.... |
| CVE-2018-9499 | 2018-10-02 | In readVector of iCrypto.cpp, there is a possible invalid read due to uninitialized data. This could lead to local information disclosure from the DRM server with no additional execution privileges... |
| CVE-2018-9501 | 2018-10-02 | In the SetupWizard, there is a possible Factory Reset Protection bypass due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed.... |
| CVE-2018-9502 | 2018-10-02 | In rfc_process_mx_message of rfc_ts_frames.cc, there is a possible out-of-bounds read due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth service with no additional... |
| CVE-2018-9503 | 2018-10-02 | In rfc_process_mx_message of rfc_ts_frames.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges... |
| CVE-2018-9504 | 2018-10-02 | In sdp_copy_raw_data of sdp_discovery.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution over bluetooth with no additional... |
| CVE-2018-9505 | 2018-10-02 | In mca_ccb_hdl_req of mca_cact.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional... |
| CVE-2018-9506 | 2018-10-02 | In avrc_msg_cback of avrc_api.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges... |
| CVE-2018-9507 | 2018-10-02 | In bta_av_proc_meta_cmd of bta_av_act.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure over Bluetooth with no additional... |
| CVE-2018-9508 | 2018-10-02 | In smp_process_keypress_notification of smp_act.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure over Bluetooth with no additional... |
| CVE-2018-9509 | 2018-10-02 | In smp_proc_master_id of smp_act.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional... |
| CVE-2018-9510 | 2018-10-02 | In smp_proc_enc_info of smp_act.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional... |
| CVE-2018-9511 | 2018-10-02 | In ipSecSetEncapSocketOwner of XfrmController.cpp, there is a possible failure to initialize a security feature due to uninitialized data. This could lead to local denial of service of IPsec on sockets... |
| CVE-2018-9513 | 2018-10-02 | In copy_process of fork.c, there is possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction... |
| CVE-2018-9514 | 2018-10-02 | In sdcardfs_open of file.c, there is a possible Use After Free due to an unusual root cause. This could lead to local escalation of privilege with no additional execution privileges... |
| CVE-2018-9515 | 2018-10-02 | In sdcardfs_create and sdcardfs_mkdir of inode.c, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed.... |
| CVE-2017-7908 | 2018-10-02 | A heap-based buffer overflow exists in the third-party product Gigasoft, v5 and prior, included in GE Communicator 3.15 and prior. A malicious HTML file that loads the ActiveX controls can... |
| CVE-2018-14822 | 2018-10-02 | Entes EMG12 versions 2.57 and prior an information exposure through query strings vulnerability in the web interface has been identified, which may allow an attacker to impersonate a legitimate user... |
| CVE-2018-14826 | 2018-10-02 | Entes EMG12 versions 2.57 and prior The application uses a web interface where it is possible for an attacker to bypass authentication with a specially crafted URL. This could allow... |
| CVE-2018-3943 | 2018-10-02 | An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to... |
| CVE-2018-3944 | 2018-10-02 | An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to... |
| CVE-2018-3957 | 2018-10-02 | A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Keywords property of the this.info object.... |
| CVE-2018-3958 | 2018-10-02 | A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Subject property of the this.info object.... |
| CVE-2018-3959 | 2018-10-02 | A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Author property of the this.info object.... |
| CVE-2018-3960 | 2018-10-02 | A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Producer property of the this.info object.... |
| CVE-2018-3961 | 2018-10-02 | A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Creator property of the this.info object.... |
| CVE-2018-3962 | 2018-10-02 | A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the CreationDate property of the this.info object.... |
| CVE-2018-17938 | 2018-10-03 | Zimbra Collaboration before 8.8.10 GA allows text content spoofing via a loginErrorCode value. |
| CVE-2018-17942 | 2018-10-03 | The convert_to_decimal function in vasnprintf.c in Gnulib before 2018-09-23 has a heap-based buffer overflow because memory is not allocated for a trailing '\0' character during %f processing. |
| CVE-2018-17946 | 2018-10-03 | The Tribulant Slideshow Gallery plugin before 1.6.6.1 for WordPress has XSS via the id, method, Gallerymessage, Galleryerror, or Galleryupdated parameter. |
| CVE-2018-17947 | 2018-10-03 | The Snazzy Maps plugin before 1.1.5 for WordPress has XSS via the text or tab parameter. |
| CVE-2018-6689 | 2018-10-03 | Data Loss Prevention Endpoint (DLPe) - Authentication Bypass vulnerability |
| CVE-2018-14800 | 2018-10-03 | Delta Electronics ISPSoft version 3.0.5 and prior allow an attacker, by opening a crafted file, to cause the application to read past the boundary allocated to a stack object, which... |
| CVE-2018-1793 | 2018-10-03 | IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using SAML ear is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI... |
| CVE-2018-1794 | 2018-10-03 | IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using OAuth ear is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI... |
| CVE-2018-3946 | 2018-10-03 | An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to... |
| CVE-2018-3964 | 2018-10-03 | An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory... |
| CVE-2018-3965 | 2018-10-03 | An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory... |
| CVE-2018-3966 | 2018-10-03 | An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory... |
| CVE-2018-3967 | 2018-10-03 | An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory... |
| CVE-2018-3993 | 2018-10-03 | An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.2.0.9297. A specially crafted PDF document can trigger a previously freed object in memory... |
| CVE-2018-3994 | 2018-10-03 | An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.2.0.9297. A specially crafted PDF document can trigger a previously freed object in memory... |
| CVE-2018-3995 | 2018-10-03 | An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.2.0.9297. A specially crafted PDF document can trigger a previously freed object in memory to... |
| CVE-2018-16048 | 2018-10-03 | An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Missing Authorization Control for API Repository Storage. |
| CVE-2018-16049 | 2018-10-03 | An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Sensitive Data Disclosure in Sidekiq Logs through an Error... |
| CVE-2018-16050 | 2018-10-03 | An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.5 and 11.2.x before 11.2.2. There is Persistent XSS in the Merge Request Changes View. |
| CVE-2018-16051 | 2018-10-03 | An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Orphaned Upload Files Exposure. |
| CVE-2018-12087 | 2018-10-03 | Failure to validate certificates in OPC Foundation UA Client Applications communicating without security allows attackers with control over a piece of network infrastructure to decrypt passwords. |
| CVE-2018-17053 | 2018-10-03 | Cross-site scripting (XSS) vulnerability in Identity Server in Progress Sitefinity CMS versions 10.0 through 11.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to login... |
| CVE-2018-17054 | 2018-10-03 | Cross-site scripting (XSS) vulnerability in Identity Server in Progress Sitefinity CMS versions 10.0 through 11.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to login... |
| CVE-2018-17965 | 2018-10-03 | ImageMagick 7.0.7-28 has a memory leak vulnerability in WriteSGIImage in coders/sgi.c. |
| CVE-2018-17966 | 2018-10-03 | ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePDBImage in coders/pdb.c. |
| CVE-2018-17967 | 2018-10-03 | ImageMagick 7.0.7-28 has a memory leak vulnerability in ReadBGRImage in coders/bgr.c. |
| CVE-2018-17969 | 2018-10-03 | Samsung SCX-6545X V2.00.03.01 03-23-2012 devices allows remote attackers to discover cleartext credentials via iso.3.6.1.4.1.236.11.5.11.81.10.1.5.0 and iso.3.6.1.4.1.236.11.5.11.81.10.1.6.0 SNMP requests. |
| CVE-2018-17408 | 2018-10-03 | Stack-based buffer overflows in Zahir Accounting Enterprise Plus 6 through build 10b allow remote attackers to execute arbitrary code via a crafted CSV file that is accessed through the Import... |
| CVE-2018-17428 | 2018-10-03 | An issue was discovered in OPAC EasyWeb Five 5.7. There is SQL injection via the w2001/index.php?scelta=campi biblio parameter. |
| CVE-2018-17540 | 2018-10-03 | The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate. |
| CVE-2018-17552 | 2018-10-03 | SQL Injection in login.php in Naviwebs Navigate CMS 2.8 allows remote attackers to bypass authentication via the navigate-user cookie. |
| CVE-2018-17553 | 2018-10-03 | An "Unrestricted Upload of File with Dangerous Type" issue with directory traversal in navigate_upload.php in Naviwebs Navigate CMS 2.8 allows authenticated attackers to achieve remote code execution via a POST... |
| CVE-2018-17562 | 2018-10-03 | Multi-Tech FaxFinder before 5.1.6 has SQL Injection via a status/call_details?oid= URI, allowing an attacker to extract the underlying database schema to further disclose other fax server information through different injection... |
| CVE-2018-17880 | 2018-10-03 | On D-Link DIR-823G 2018-09-19 devices, the GoAhead configuration allows /HNAP1 RunReboot commands without authentication to trigger a reboot. |
| CVE-2018-17881 | 2018-10-03 | On D-Link DIR-823G 2018-09-19 devices, the GoAhead configuration allows /HNAP1 SetPasswdSettings commands without authentication to trigger an admin password change. |
| CVE-2017-2751 | 2018-10-03 | A BIOS password extraction vulnerability has been reported on certain consumer notebooks with firmware F.22 and others. The BIOS password was stored in CMOS in a way that allowed it... |
| CVE-2018-5921 | 2018-10-03 | A potential security vulnerability has been identified with certain HP printers and MFPs in 2405129_000052 and other firmware versions. This vulnerability is known as Cross Site Request Forgery, and could... |
| CVE-2018-6695 | 2018-10-03 | Threat Intelligence Exchange Server (TIE Server) SSH host keys generation vulnerability |
| CVE-2018-17972 | 2018-10-03 | An issue was discovered in the proc_pid_stack function in fs/proc/base.c in the Linux kernel through 4.18.11. It does not ensure that only root may inspect the kernel stack of an... |
| CVE-2018-17974 | 2018-10-03 | An issue was discovered in Tcpreplay 4.3.0 beta1. A heap-based buffer over-read was triggered in the function dlt_en10mb_encode() of the file plugins/dlt_en10mb/en10mb.c, due to inappropriate values in the function memmove().... |
| CVE-2018-11784 | 2018-10-04 | When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to a directory (e.g. redirecting to '/foo/' when the... |
| CVE-2018-5492 | 2018-10-04 | NetApp E-Series SANtricity OS Controller Software 11.30 and later version 11.30.5 is susceptible to unauthenticated remote code execution. |
| CVE-2017-5658 | 2018-10-04 | The statistics generator in Apache Pony Mail 0.7 to 0.9 was found to be returning timestamp data without proper authorization checks. This could lead to derived information disclosure on private... |
| CVE-2018-12470 | 2018-10-04 | SQL injection in RegistrationSharing module |
| CVE-2018-12471 | 2018-10-04 | External Entity processing in the RegistrationSharing module |
| CVE-2018-12472 | 2018-10-04 | Authentication bypass in sibling check |
| CVE-2018-1602 | 2018-10-04 | IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI... |
| CVE-2018-1603 | 2018-10-04 | IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI... |
| CVE-2018-1604 | 2018-10-04 | IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI... |
| CVE-2018-1670 | 2018-10-04 | IBM Financial Transaction Manager for ACH Services for Multi-Platform 3.0.2 could allow an authenticated user to obtain sensitive product configuration information from log files. IBM X-Force ID: 144946. |
| CVE-2018-1819 | 2018-10-04 | IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.0.2, 3.0.4, 3.0.6, and 3.2.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow... |
| CVE-2018-17871 | 2018-10-04 | Verba Collaboration Compliance and Quality Management Platform before 9.2.1.5545 has Incorrect Access Control. |
| CVE-2018-17872 | 2018-10-04 | Verba Collaboration Compliance and Quality Management Platform before 9.2.1.5545 has Insecure Permissions. |
| CVE-2018-17876 | 2018-10-04 | A Stored XSS vulnerability has been discovered in the v5.5.0 version of the Coaster CMS product. |
| CVE-2018-17849 | 2018-10-04 | Navigate CMS 2.8 has Stored XSS via a navigate_upload.php (aka File Upload) request with a multipart/form-data JavaScript payload. |
| CVE-2018-0503 | 2018-10-04 | $wgRateLimits entry for 'user' overrides 'newbie' |
| CVE-2018-0504 | 2018-10-04 | Information disclosure in Special:Redirect/logid |
| CVE-2018-0505 | 2018-10-04 | BotPasswords can bypass CentralAuth's account lock |
| CVE-2018-13258 | 2018-10-04 | Tarball was missing .htaccess files |
| CVE-2018-16326 | 2018-10-04 | PHP Scripts Mall Olx Clone 3.4.2 has XSS. |
| CVE-2018-16453 | 2018-10-04 | PHP Scripts Mall Domain Lookup Script 3.0.5 allows XSS in the search bar. |
| CVE-2018-16455 | 2018-10-04 | PHP Scripts Mall Market Place Script 1.0.1 allows XSS via a keyword. |
| CVE-2018-16456 | 2018-10-04 | PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a keyword. NOTE: This may overlap with CVE-2018-6870 which has XSS via the Listings Search feature. |
| CVE-2018-16457 | 2018-10-04 | PHP Scripts Mall Open Source Real-estate Script 3.6.2 allows remote attackers to list the wp-content/themes/template_dp_dec2015/img directory. |
| CVE-2018-17891 | 2018-10-04 | Carestream Vue RIS, RIS Client Builds: Version 11.2 and prior running on a Windows 8.1 machine with IIS/7.5. When contacting a Carestream server where there is no Oracle TNS listener... |
| CVE-2015-9271 | 2018-10-04 | The VideoWhisper videowhisper-video-conference-integration plugin 4.91.8 for WordPress allows remote attackers to execute arbitrary code because vc/vw_upload.php considers a file safe when "html" are the last four characters, as demonstrated by... |
| CVE-2018-17983 | 2018-10-04 | cext/manifest.c in Mercurial before 4.7.2 has an out-of-bounds read during parsing of a malformed manifest entry. |
| CVE-2018-17984 | 2018-10-04 | An unanchored /[a-z]{2}/ regular expression in ISPConfig before 3.1.13 makes it possible to include arbitrary files, leading to code execution. This is exploitable by authenticated users who have local filesystem... |
| CVE-2018-17985 | 2018-10-04 | An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption problem caused by the cplus_demangle_type function making recursive calls to... |
| CVE-2018-17986 | 2018-10-05 | rars/user/data in razorCMS 3.4.8 allows CSRF for changing the password of an admin user. |
| CVE-2013-7465 | 2018-10-05 | Ice Cold Apps Servers Ultimate 6.0.2(12) does not require authentication for TELNET, SSH, or FTP, which allows remote attackers to execute arbitrary code by uploading PHP scripts. |
| CVE-2014-10075 | 2018-10-05 | The karo gem 2.3.8 for Ruby allows Remote command injection via the host field. |