Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-22 | CVE-2018-1000002 | Improper Input Validation vulnerability in NIC Knot Resolver Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay. | 3.7 |
| 2018-01-18 | CVE-2018-0109 | Information Exposure vulnerability in Cisco Webex Meetings Server A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to access sensitive data about the application. | 2.7 |
| 2018-01-18 | CVE-2018-0106 | Files or Directories Accessible to External Parties vulnerability in Cisco Elastic Services Controller A vulnerability in the ConfD server of the Cisco Elastic Services Controller (ESC) could allow an unauthenticated, local attacker to access sensitive information on a targeted system. | 3.3 |
| 2018-01-18 | CVE-2018-2675 | Unspecified vulnerability in Oracle Java Advanced Management Console 2.8 Vulnerability in the Java Advanced Management Console component of Oracle Java SE (subcomponent: Server). | 3.7 |
| 2018-01-18 | CVE-2018-2579 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). | 3.7 |
| 2018-01-18 | CVE-2018-2575 | Unspecified vulnerability in Oracle Database Server 11.2.0.4/12.2.0.1 Vulnerability in the Core RDBMS component of Oracle Database Server. | 2.0 |
| 2018-01-14 | CVE-2018-5693 | Information Exposure Through Log Files vulnerability in Linuxmagic Magicspam 2.0.34 The LinuxMagic MagicSpam extension before 2.0.14-1 for Plesk allows local users to discover mailbox names by reading /var/log/magicspam/mslog. | 3.3 |
| 2018-01-12 | CVE-2017-2158 | Improper Input Validation vulnerability in Lhaplus Project Lhaplus Improper verification when expanding ZIP64 archives in Lhaplus versions 1.73 and earlier may lead to unintended contents to be extracted from a specially crafted ZIP64 archive. | 3.3 |
| 2018-01-11 | CVE-2017-1681 | Information Exposure vulnerability in IBM Liberty 3.13/3.15 IBM WebSphere Application Server (IBM Liberty for Java for Bluemix 3.15) could allow a local attacker to obtain sensitive information, caused by improper handling of application requests, which could allow unauthorized access to read a file. | 3.3 |
| 2018-01-11 | CVE-2017-1478 | Information Exposure vulnerability in IBM Security Access Manager 9.0 Firmware IBM Security Access Manager Appliance 9.0.0 allows web pages to be stored locally which can be read by another user on the system. | 3.3 |