Lista CVE - 2018 / Dicembre
Visualizzazione 601 - 700 di 1163 CVE per Dicembre 2018 (Pagina 7 di 12)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2018-19821 | 2018-12-17 | Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1... |
| CVE-2018-19822 | 2018-12-17 | Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1... |
| CVE-2018-20027 | 2018-12-17 | The yaml_parse.load method in Pylearn2 allows code injection. |
| CVE-2018-20171 | 2018-12-17 | An issue was discovered in Nagios XI before 5.5.8. The... |
| CVE-2018-20172 | 2018-12-17 | An issue was discovered in Nagios XI before 5.5.8. The... |
| CVE-2017-1265 | 2018-12-17 | IBM Security Guardium 10.0, 10.0.1, 10.1, 10.1.2, 10.1.3, 10.1.4, and... |
| CVE-2017-1272 | 2018-12-17 | IBM Security Guardium 10.0 and 10.5 stores sensitive information in... |
| CVE-2017-1597 | 2018-12-17 | IBM Security Guardium 10.0, 10.0.1, 10.1, 10.1.2, 10.1.3, 10.1.4, and... |
| CVE-2018-1889 | 2018-12-17 | IBM Security Guardium 10.0 and 10.5 is vulnerable to cross-site... |
| CVE-2018-1891 | 2018-12-17 | IBM Security Guardium 10 and 10.5 is vulnerable to cross-site... |
| CVE-2018-20184 | 2018-12-17 | In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer... |
| CVE-2018-20185 | 2018-12-17 | In GraphicsMagick 1.4 snapshot-20181209 Q8 on 32-bit platforms, there is... |
| CVE-2018-20186 | 2018-12-17 | An issue was discovered in Bento4 1.5.1-627. AP4_Sample::ReadData in Core/Ap4Sample.cpp... |
| CVE-2018-14852 | 2018-12-17 | Out-of-bounds array access in dhd_rx_frame in drivers/net/wireless/bcmdhd4358/dhd_linux.c in the bcmdhd4358... |
| CVE-2018-14853 | 2018-12-17 | A NULL pointer dereference in dhd_prot_txdata_write_flush in drivers/net/wireless/bcmdhd4358/dhd_msgbuf.c in the... |
| CVE-2018-14854 | 2018-12-17 | Buffer overflow in dhd_bus_flow_ring_delete_response in drivers/net/wireless/bcmdhd4358/dhd_pcie.c in the bcmdhd4358 Wi-Fi... |
| CVE-2018-14855 | 2018-12-17 | Buffer overflow in dhd_bus_flow_ring_flush_response in drivers/net/wireless/bcmdhd4358/dhd_pcie.c in the bcmdhd4358 Wi-Fi... |
| CVE-2018-14856 | 2018-12-17 | Buffer overflow in dhd_bus_flow_ring_create_response in drivers/net/wireless/bcmdhd4358/dhd_pcie.c in the bcmdhd4358 Wi-Fi... |
| CVE-2018-16596 | 2018-12-17 | A stack-based buffer overflow in the LAN UPnP service running... |
| CVE-2018-18555 | 2018-12-17 | A sandbox escape issue was discovered in VyOS 1.1.8. It... |
| CVE-2018-18556 | 2018-12-17 | A privilege escalation issue was discovered in VyOS 1.1.8. The... |
| CVE-2018-19036 | 2018-12-17 | An issue was discovered in several Bosch IP cameras for... |
| CVE-2018-19828 | 2018-12-17 | Artica Integria IMS 5.0.83 has XSS via the search_string parameter. |
| CVE-2018-19933 | 2018-12-17 | Bolt CMS <3.6.2 allows XSS via text input click preview... |
| CVE-2018-19936 | 2018-12-17 | PrinterOn Enterprise 4.1.4 allows Arbitrary File Deletion. |
| CVE-2018-19974 | 2018-12-17 | In YARA 3.8.1, bytecode in a specially crafted compiled rule... |
| CVE-2018-19975 | 2018-12-17 | In YARA 3.8.1, bytecode in a specially crafted compiled rule... |
| CVE-2018-19976 | 2018-12-17 | In YARA 3.8.1, bytecode in a specially crafted compiled rule... |
| CVE-2018-20092 | 2018-12-17 | PTC ThingWorx Platform through 8.3.0 is vulnerable to a directory... |
| CVE-2018-20123 | 2018-12-17 | pvrdma_realize in hw/rdma/vmw/pvrdma_main.c in QEMU has a Memory leak after... |
| CVE-2018-20133 | 2018-12-17 | ymlref allows code injection. |
| CVE-2018-20188 | 2018-12-17 | FUEL CMS 1.4.3 has CSRF via users/create/ to add an... |
| CVE-2018-20189 | 2018-12-17 | In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a... |
| CVE-2018-20190 | 2018-12-17 | In LibSass 3.5.5, a NULL Pointer Dereference in the function... |
| CVE-2018-7797 | 2018-12-17 | A URL redirection vulnerability exists in Power Monitoring Expert, Energy... |
| CVE-2018-7804 | 2018-12-17 | A URL Redirection to Untrusted Site vulnerability exists in the... |
| CVE-2018-7812 | 2018-12-17 | An Information Exposure through Discrepancy vulnerability exists in the embedded... |
| CVE-2018-7833 | 2018-12-17 | An Improper Check for Unusual or Exceptional Conditions vulnerability exists... |
| CVE-2018-20194 | 2018-12-18 | There is a stack-based buffer underflow in the third instance... |
| CVE-2018-20195 | 2018-12-18 | A NULL pointer dereference was discovered in ic_predict of libfaad/ic_predict.c... |
| CVE-2018-20196 | 2018-12-18 | There is a stack-based buffer overflow in the third instance... |
| CVE-2018-20197 | 2018-12-18 | There is a stack-based buffer underflow in the third instance... |
| CVE-2018-20198 | 2018-12-18 | A NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c... |
| CVE-2018-20199 | 2018-12-18 | A NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c... |
| CVE-2018-20201 | 2018-12-18 | There is a stack-based buffer over-read in the jsfNameFromString function... |
| CVE-2018-4015 | 2018-12-18 | An exploitable vulnerability exists in the HTTP client functionality of... |
| CVE-2017-15031 | 2018-12-18 | In all versions of ARM Trusted Firmware up to and... |
| CVE-2018-19522 | 2018-12-18 | DriverAgent 2.2015.7.14, which includes DrvAgent64.sys 1.0.0.1, allows a user to... |
| CVE-2018-1833 | 2018-12-18 | IBM Event Streams 2018.3.0 could allow a remote attacker to... |
| CVE-2018-20213 | 2018-12-18 | wbook_addworksheet in workbook.c in libexcel.a in libexcel 0.01 allows attackers... |
| CVE-2018-6978 | 2018-12-18 | vRealize Operations (7.x before 7.0.0.11287810, 6.7.x before 6.7.0.11286837 and 6.6.x... |
| CVE-2018-16884 | 2018-12-18 | A flaw was found in the Linux kernel's NFS41+ subsystem.... |
| CVE-2018-17777 | 2018-12-18 | An issue was discovered on D-Link DVA-5592 A1_WI_20180823 devices. If... |
| CVE-2018-18921 | 2018-12-18 | PHP Server Monitor before 3.3.2 has CSRF, as demonstrated by... |
| CVE-2018-19789 | 2018-12-18 | An issue was discovered in Symfony 2.7.x before 2.7.50, 2.8.x... |
| CVE-2018-19790 | 2018-12-18 | An open redirect was discovered in Symfony 2.7.x before 2.7.50,... |
| CVE-2018-19829 | 2018-12-18 | Artica Integria IMS 5.0.83 has CSRF in godmode/usuarios/lista_usuarios, resulting in... |
| CVE-2018-20227 | 2018-12-19 | RDF4J 2.4.2 allows Directory Traversal via ../ in an entry... |
| CVE-2018-20228 | 2018-12-19 | Subsonic V6.1.5 allows internetRadioSettings.view streamUrl CSRF, with resultant SSRF. |
| CVE-2018-20231 | 2018-12-19 | Cross Site Request Forgery (CSRF) in the two-factor-authentication plugin before... |
| CVE-2018-20230 | 2018-12-19 | An issue was discovered in PSPP 1.2.0. There is a... |
| CVE-2018-16883 | 2018-12-19 | sssd versions from 1.13.0 to before 2.0.0 did not properly... |
| CVE-2018-17192 | 2018-12-19 | The X-Frame-Options headers were applied inconsistently on some HTTP responses,... |
| CVE-2018-17193 | 2018-12-19 | The message-page.jsp error page used the value of the HTTP... |
| CVE-2018-17194 | 2018-12-19 | When a client request to a cluster node was replicated... |
| CVE-2018-17195 | 2018-12-19 | The template upload API endpoint accepted requests from different domain... |
| CVE-2018-15126 | 2018-12-19 | LibVNC before commit 73cb96fec028a576a5a24417b57723b55854ad7b contains heap use-after-free vulnerability in server... |
| CVE-2018-15127 | 2018-12-19 | LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in... |
| CVE-2018-20019 | 2018-12-19 | LibVNC before commit a83439b9fbe0f03c48eb94ed05729cb016f8b72f contains multiple heap out-of-bound write vulnerabilities... |
| CVE-2018-20020 | 2018-12-19 | LibVNC before commit 7b1ef0ffc4815cab9a96c7278394152bdc89dc4d contains heap out-of-bound write vulnerability inside... |
| CVE-2018-20021 | 2018-12-19 | LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c contains a CWE-835: Infinite loop vulnerability... |
| CVE-2018-20022 | 2018-12-19 | LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665: Improper Initialization vulnerability... |
| CVE-2018-20023 | 2018-12-19 | LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization vulnerability in VNC... |
| CVE-2018-20024 | 2018-12-19 | LibVNC before commit 4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7 contains null pointer dereference in VNC... |
| CVE-2018-6307 | 2018-12-19 | LibVNC before commit ca2a5ac02fbbadd0a21fabba779c1ea69173d10b contains heap use-after-free vulnerability in server... |
| CVE-2018-20298 | 2018-12-19 | S3 Browser before 8.1.5 contains an XML external entity (XXE)... |
| CVE-2018-18999 | 2018-12-19 | WebAccess/SCADA, WebAccess/SCADA Version 8.3.2 installed on Windows 2008 R2 SP1.... |
| CVE-2018-19506 | 2018-12-19 | Zurmo 3.2.4 has XSS via an admin's use of the... |
| CVE-2018-19507 | 2018-12-19 | CMSimple 4.7.5 has XSS via an admin's use of a... |
| CVE-2018-19508 | 2018-12-19 | CMSimple 4.7.5 has XSS via an admin's upload of an... |
| CVE-2018-19596 | 2018-12-19 | Zurmo 3.2.4 allows HTML Injection via an admin's use of... |
| CVE-2018-19597 | 2018-12-19 | CMS Made Simple 2.2.8 allows XSS via an uploaded SVG... |
| CVE-2018-19598 | 2018-12-19 | Statamic 2.10.3 allows XSS via First Name or Last Name... |
| CVE-2018-11799 | 2018-12-19 | Vulnerability allows a user of Apache Oozie 3.1.3-incubating to 5.0.0... |
| CVE-2018-15798 | 2018-12-19 | Pivotal Concourse allows malicious redirect urls on login |
| CVE-2018-15801 | 2018-12-19 | Authorization Bypass During JWT Issuer Validation with spring-security |
| CVE-2018-20299 | 2018-12-19 | An issue was discovered in several Bosch Smart Home cameras... |
| CVE-2018-20300 | 2018-12-20 | Empire CMS 7.5 allows remote attackers to execute arbitrary PHP... |
| CVE-2018-20302 | 2018-12-20 | An XSS issue was discovered in Steve Pallen Xain before... |
| CVE-2018-20303 | 2018-12-20 | In pkg/tool/path.go in Gogs before 0.11.82.1218, a directory traversal in... |
| CVE-2018-20304 | 2018-12-20 | wbook_addworksheet in workbook.c in libexcel.a in libexcel 0.01 allows attackers... |
| CVE-2018-20305 | 2018-12-20 | D-Link DIR-816 A2 1.10 B05 devices allow arbitrary remote code... |
| CVE-2018-20301 | 2018-12-20 | An issue was discovered in Steve Pallen Coherence before 0.5.2... |
| CVE-2018-20306 | 2018-12-20 | A stored cross-site scripting (XSS) vulnerability in the web administration... |
| CVE-2018-20307 | 2018-12-20 | Pulse Secure Virtual Traffic Manager 9.9 versions prior to 9.9r2... |
| CVE-2018-8653 | 2018-12-20 | A remote code execution vulnerability exists in the way that... |
| CVE-2018-6669 | 2018-12-20 | Bypass Application Control through an ASP.NET form |
| CVE-2018-7365 | 2018-12-20 | All versions up to ZXCLOUD iRAI V5.01.05 of the ZTE... |
| CVE-2018-1661 | 2018-12-20 | IBM DataPower Gateways 7.5, 7.5.1, 7.5.2, and 7.6 is vulnerable... |
| CVE-2018-1677 | 2018-12-20 | IBM DataPower Gateways 7.1, 7.2, 7.5, 7.5.1, 7.5.2, 7.6, and... |