Vulnerabilities > Debian > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2018-07-10	CVE-2018-1116	Missing Authorization vulnerability in multiple products A flaw was found in polkit before version 0.116. local low complexity debian canonical polkit-project CWE-862	3.6
2018-07-10	CVE-2018-1129	Improper Authentication vulnerability in multiple products A flaw was found in the way signature calculation was handled by cephx authentication protocol. low complexity redhat ceph debian opensuse CWE-287	3.3
2018-07-02	CVE-2018-12896	Integer Overflow or Wraparound vulnerability in Linux Kernel An issue was discovered in the Linux kernel through 4.17.3. local low complexity linux debian canonical CWE-190	2.1
2018-07-02	CVE-2018-12893	An issue was discovered in Xen through 4.10.x. local low complexity xen debian	2.1
2018-07-02	CVE-2018-13053	Integer Overflow or Wraparound vulnerability in Linux Kernel The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3 has an integer overflow via a large relative timeout because ktime_add_safe is not used. local low complexity linux canonical debian CWE-190	2.1
2018-06-20	CVE-2018-1120	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel A flaw was found affecting the Linux kernel before version 4.17. network linux redhat debian canonical CWE-119	3.5
2018-06-11	CVE-2016-5293	Improper Input Validation vulnerability in multiple products When the Mozilla Updater is run, if the Updater's log file in the working directory points to a hardlink, data can be appended to an arbitrary local file. local low complexity mozilla microsoft debian CWE-20	2.1
2018-06-05	CVE-2017-7653	Improper Input Validation vulnerability in multiple products The Eclipse Mosquitto broker up to version 1.4.15 does not reject strings that are not valid UTF-8. network eclipse debian CWE-20	3.5
2018-05-22	CVE-2018-3639	Information Exposure Through Discrepancy vulnerability in multiple products Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4. local low complexity intel arm redhat debian canonical siemens oracle mitel sonicwall schneider-electric nvidia microsoft CWE-203	2.1
2018-04-29	CVE-2018-10545	Information Exposure vulnerability in PHP An issue was discovered in PHP before 5.6.35, 7.0.x before 7.0.29, 7.1.x before 7.1.16, and 7.2.x before 7.2.4. local php canonical debian netapp CWE-200	1.9