|
Nov 29 2018
|
Perl Function Integer/Heap Overflows Let Local Users Obtain Potentially Sensitive Information or Remote Users Execute Arbitrary Code in Certain Cases
|
|
Nov 28 2018
|
Git run_command() API Flaw on Linux/UNIX Lets Remote Authenticated Users Execute Arbitrary Commands on the Target System
|
|
Nov 26 2018
|
PHP imap_open Command Bypass Flaw Lets Remote Authenticated Users Execute Arbitrary Commands on the Target System
|
|
Nov 21 2018
|
Moodle Login Access Control Flaw Lets Remote Users Conduct Cross-Site Request Forgery Attacks
|
|
Nov 14 2018
|
PostgreSQL Transition Relation Name Misquoting Lets Remote Authenticated Users Gain Elevated Privileges
|
|
Nov 14 2018
|
Asterisk DNS SRV and NAPTR Buffer Overflows Let Remote Users Cause the Target Service to Crash
|
|
Nov 13 2018
|
Ruby 'Array#pack' Lets Remote Users Bypass Security Restrictions on the Target System
|
|
Nov 13 2018
|
Ruby OpenSSL::X509::Name() May Fail to Prevent Remote Users from Bypassing Security Restrictions on the Target System
|
|
Nov 12 2018
|
MIT Kerberos Lets Remote Authenticated Users Gain Elevated Privileges in Certain Cases
|
|
Nov 12 2018
|
OpenSSL ECC Scalar Multiplication Lets Local Users View Keys in Certain Cases
|
|
Nov 2 2018
|
Icecast url-auth Buffer Overflow Lets Remote Users Execute Arbitrary Code
|
|
Nov 1 2018
|
curl Buffer Overflow Lets Remote Users Cause the Target Service to Crash
|
|
Nov 1 2018
|
curl Use-After-Free Memory Error in Curl_close() Lets Remote Users Deny Service
|
|
Nov 1 2018
|
curl Buffer Overflow in Curl_auth_create_plain_message Lets Remote Users Execute Arbitrary Code
|
|
Oct 30 2018
|
Samba 'libsmbclient' Directory Listing Validation Flaw Lets Remote Authenticated Users Cause the Target User's SMB Service to Crash
|
|
Oct 30 2018
|
Python Backtracking Errors Let Remote Authenticated Users Cause the Target System to Crash
|
|
Oct 29 2018
|
OpenSSL ECDSA Signature Algorithm Lets Remote Users Obtain Passwords on the Target System in Certain Cases
|
|
Oct 25 2018
|
X.Org Command Line Validation Flaw Lets Remote Authenticated Users Gain Elevated Privileges and Delete Arbitrary Files
|
|
Oct 24 2018
|
Mozilla Firefox Multiple Bugs Let Remote Users Deny Service, Obtain Potentially Sensitive Information, and Execute Arbitrary Code
|
|
Oct 18 2018
|
Joomla! Multiple Bugs Let Remote Users Bypass Access Controls and Execute Arbitrary Code on the Target System
|
|
Oct 18 2018
|
Joomla! Multiple Bugs Let Remote Users Bypass Access Controls
|
|
Oct 18 2018
|
Drupal Multiple Flaws Let Remote Users Access and Modify Data and Cause Arbitrary Code to be Executed
|
|
Oct 18 2018
|
Wireshark MS-WSP/Steam IHS Discovery/CoAP/OpcUa Processing Bugs Lets Remote Users Cause the Target Service to Crash
|
|
Oct 16 2018
|
Oracle E-Business Suite Multiple Flaws Let Remote Users Access Data and Lets Remote Authenticated Users Modify Data
|
|
Oct 16 2018
|
Oracle PeopleSoft Products Multiple Flaws Let Remote Authenticated Users Gain Elevated Privileges and Let Remote Users Access and Modify Data
|
|
Oct 16 2018
|
MySQL Multiple Flaws Let Remote Users Gain Elevated Privileges, Remote Authenticated Users Access and Modify Data, and Remote and Local Users Deny Service
|
|
Oct 2 2018
|
Mozilla Firefox File Processing Flaws Let Remote Users Execute Arbitrary Code
|
|
Oct 1 2018
|
Django Password Change Flaw Lets Remote Authenticated Administrative Users View Hashed Passwords on the Target System
|
|
Sep 29 2018
|
Python elementtree C Accelerator Lets Remote Users Consume Excessive CPU and Memory Resources
|
|
Sep 25 2018
|
Network Security Services SSLv2 ClientHello Processing May Let Remote Users Obtain Potentially Sensitive Information on the Target System
|
|
Sep 25 2018
|
Apache HTTPD HTTP/2 SETTINGS Data Processing Bug Lets Remote Users Deny Service
|
|
Sep 23 2018
|
Mozilla Firefox ESR Bugs Let Users Bypass Security Restrictions and Cause the Target User's Browser to Crash
|
|
Sep 23 2018
|
Mozilla Firefox Lets Users Cause the Target User's Browser to Crash
|
|
Sep 22 2018
|
PHP Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Conduct Cross-Site Scripting Attacks
|
|
Sep 21 2018
|
MediaWiki Multiple Flaws Let Remote Authenticated Users Bypass Security Restrictions and Obtain Potentially Sensitive Information
|
|
Sep 21 2018
|
Asterisk Stack Overflow in HTTP Websocket Upgrade Lets Remote Users Cause the Target Service to Crash
|
|
Sep 20 2018
|
BIND 'krb5-subdomain' and 'ms-subdomain' Documentation May Let Remote Authenticated Administrative Users Modify Certain Data on the Target System
|
|
Sep 10 2018
|
Apache ActiveMQ Client Missing TLS Hostname Verification Lets Remote Users Bypass Security Controls on the Target System
|
|
Sep 7 2018
|
Mozilla Firefox Multiple Bugs Let Remote Users Spoof the Address Bar, Bypass Security Restrictions, and Execute Arbitrary Code
|
|
Sep 6 2018
|
Wireshark Bugs in Bluetooth AVDTP, Bluetooth Attribute Protocol, and Radiotap Dissectors Let Remote Users Cause the Target Service to Crash
|
|
Sep 6 2018
|
Wireshark Bugs in Multiple Dissectors Let Remote Users Cause the Application to Crash or Consume Excessive CPU Resources
|
|
Sep 6 2018
|
libcurl Curl_ntlm_core_mk_nt_hash() Buffer Overflow Lets Remote Users Execute Arbitrary Code
|
|
Aug 22 2018
|
phpMyAdmin Input Validation Flaw in File Import Feature Lets Remote Users Conduct Cross-Site Scripting Attacks
|
|
Aug 22 2018
|
Apache Struts Undefined Namespace Processing Lets Remote Users Execute Arbitrary Code on the Target System
|
|
Aug 21 2018
|
X.org libX11 Bugs Let Remote Users Deny Service and Potentially Execute Arbitrary Code
|
|
Aug 16 2018
|
Apache Tomcat Native OCSP Response Handling Flaws Let Remote Users Bypass Authentication on the Target System
|
|
Aug 16 2018
|
Apache Commons Compress Error in Parsing ZIP Archives Lets Remote Users Deny Service
|
|
Aug 15 2018
|
OpenSSH Authentication Attempt Processing Lets Remote Users Determine Valid Usernames on the Target System
|
|
Aug 15 2018
|
Adobe Experience Manager Multiple Flaws Let Remote Users Modify Data and Conduct Cross-Site Scripting Attacks
|
|
Aug 14 2018
|
PostgreSQL Bugs Let Remote Authenticated Users Access Systems and Obtain Potentially Sensitive Information from System Memory
|
|
Aug 8 2018
|
BIND 'deny-answer-aliases' Bug Lets Remote Users Cause the Target 'named' Service to Crash
|
|
Aug 8 2018
|
(Mozilla Issues Fix for Mozilla Thunderbird) Mozilla Firefox Multiple Bugs Let Remote Users Conduct Cross-Site Request Forgery Attacks, Bypass Security Restrictions, Obtain Potentially Sensitive Information, and Execute Arbitrary Code
|
|
Aug 3 2018
|
OCS inventory NG Lack of Template File Upload Restrictions Lets Remote Authenticated Users Upload and Execute Arbitrary Code
|
|
Aug 2 2018
|
Clam AntiVirus Memory Errors in 'libmspack' Component Let Remote Users Deny Service and Execute Arbitrary Code
|
|
Aug 1 2018
|
Drupal Access Control Flaw in Symfony HttpFoundation Component Lets Remote Users Bypass Security Restrictions on the Target System
|
|
Aug 1 2018
|
Django Open Redirect Flaw in CommonMiddleware Lets Remote Users Redirect the Target User's Browser to an Arbitrary Site
|
|
Aug 1 2018
|
Apache HTTPD HTTP/2 Request Processing Bug Lets Remote Users Consume Excessive Worker Processes on the Target System
|
|
Aug 1 2018
|
Apache HTTPD Null Pointer Dereference in mod_md Lets Remote Users Deny Service
|
|
Jul 31 2018
|
FFmpeg Divide-by-Zero Error in Converting Audio Files Lets Remote Users Cause the Target Application to Crash
|
|
Jul 26 2018
|
Apache Tomcat NIO/NIO2 Connector Management Flaw Lets Remote Users Access Other User's Sessions in Certain Cases
|
|
Jul 26 2018
|
Apache Tomcat Overflow in UTF-8 Decoder Lets Remote Users Deny Service
|
|
Jul 26 2018
|
Apache Tomcat Missing Check in WebSocket Client Lets Remote Users Bypass Hostname Verification on the Target System
|
|
Jul 25 2018
|
Clam AntiVirus File Processing Bugs Let Remote Users Deny Service
|
|
Jul 18 2018
|
Oracle Fusion Middleware Multiple Flaws Let Remote Users Access and Modify Data, Deny Service, and Gain Elevated Privileges
|
|
Jul 17 2018
|
MySQL Multiple Flaws Let Remote Users Access and Gain Elevated Privileges, Remote Authenticated and Local Users Deny Service, and Remote Authenticated Users Modify Data
|
|
Jul 17 2018
|
(Oracle Issues Fix for MySQL) OpenSSL Bugs Let Users Deny Service and Bypass Authentication in Certain Cases
|
|
Jul 12 2018
|
curl Buffer Overflow in Curl_smtp_escape_eob() Lets Remote Users Execute Arbitrary Code on the Target System
|
|
Jul 11 2018
|
Apache Storm Unspecified Flaw Lets Remote Authenticated Users on a Storm Cluster Execute Arbitrary Code as Different Users
|
|
Jul 10 2018
|
Joomla! Local Include File Bug Lets Remote Users Execute Local PHP Code
|
|
Jul 10 2018
|
Joomla! Input Validation Flaw in Language Switcher Module Lets Remote Users Conduct Cross-Site Scripting Attacks
|
|
Jul 5 2018
|
Apache CXF Fediz XML DTD Processing Lets Remote Users Deny Service
|
|
Jul 5 2018
|
ImageMagick Memory Leak in XMagickCommand() Lets Remote Users Consume Excessive Memory Resources
|
|
Jul 3 2018
|
Open-Xchange App Suite Multiple Bugs Let Remote Users Conduct Cross-Site Scripting Attacks and Remote Authenticated Users Obtain Potentially Sensitive Information
|
|
Jun 28 2018
|
Apache CXF 'com.sun.net.ssl' Lets Remote Users Bypass TLS Hostname Verification on the Target System
|
|
Jun 27 2018
|
Jetty Multiple Flaws Let Remote Users Conduct HTTP Request Smuggling and Session Hijacking Attacks and Determine the Installation Path
|
