VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Debian
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2018-10-18
CVE-2018-12372
Information Exposure vulnerability in multiple products
Decrypted S/MIME parts, when included in HTML crafted for an attack, can leak plaintext when included in a a HTML reply/forward.
network
low complexity
mozilla
redhat
debian
canonical
CWE-200
6.5
6.5
2018-10-18
CVE-2018-12367
Improper Input Validation vulnerability in multiple products
In the previous mitigations for Spectre, the resolution or precision of various methods was reduced to counteract the ability to measure precise time intervals.
network
low complexity
debian
canonical
mozilla
CWE-20
4.3
4.3
2018-10-18
CVE-2018-12366
Out-of-bounds Read vulnerability in multiple products
An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value.
network
low complexity
redhat
debian
canonical
mozilla
CWE-125
6.5
6.5
2018-10-18
CVE-2018-12365
Information Exposure vulnerability in multiple products
A compromised IPC child process can escape the content sandbox and list the names of arbitrary files on the file system without user consent or interaction.
network
low complexity
redhat
debian
canonical
mozilla
CWE-200
6.5
6.5
2018-10-17
CVE-2018-3282
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines).
network
low complexity
oracle
netapp
canonical
debian
mariadb
redhat
4.9
4.9
2018-10-17
CVE-2018-3251
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
network
low complexity
oracle
netapp
canonical
debian
mariadb
6.5
6.5
2018-10-17
CVE-2018-3214
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Sound).
network
low complexity
oracle
redhat
debian
canonical
hp
5.3
5.3
2018-10-17
CVE-2018-3180
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JSSE).
network
high complexity
oracle
redhat
debian
canonical
hp
5.6
5.6
2018-10-17
CVE-2018-3174
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs).
local
high complexity
oracle
netapp
canonical
debian
mariadb
5.3
5.3
2018-10-17
CVE-2018-3156
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
network
low complexity
oracle
canonical
debian
netapp
mariadb
6.5
6.5
«
Previous
1
2
...
202
203
204
(current)
205
206
...
302
303
»
Next