Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-22 | CVE-2018-1000003 | Improper Input Validation vulnerability in Powerdns Recursor 4.1.0 Improper input validation bugs in DNSSEC validators components in PowerDNS version 4.1.0 allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay. | 3.7 |
| 2018-01-22 | CVE-2018-1000002 | Improper Input Validation vulnerability in NIC Knot Resolver Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay. | 3.7 |
| 2018-01-18 | CVE-2018-0109 | Information Exposure vulnerability in Cisco Webex Meetings Server A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to access sensitive data about the application. | 2.7 |
| 2018-01-18 | CVE-2018-0106 | Files or Directories Accessible to External Parties vulnerability in Cisco Elastic Services Controller A vulnerability in the ConfD server of the Cisco Elastic Services Controller (ESC) could allow an unauthenticated, local attacker to access sensitive information on a targeted system. | 3.3 |
| 2018-01-18 | CVE-2018-2675 | Unspecified vulnerability in Oracle Java Advanced Management Console 2.8 Vulnerability in the Java Advanced Management Console component of Oracle Java SE (subcomponent: Server). | 3.7 |
| 2018-01-18 | CVE-2018-2579 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). | 3.7 |
| 2018-01-18 | CVE-2018-2575 | Unspecified vulnerability in Oracle Database Server 11.2.0.4/12.2.0.1 Vulnerability in the Core RDBMS component of Oracle Database Server. | 2.0 |
| 2018-01-14 | CVE-2018-5693 | Information Exposure Through Log Files vulnerability in Linuxmagic Magicspam 2.0.34 The LinuxMagic MagicSpam extension before 2.0.14-1 for Plesk allows local users to discover mailbox names by reading /var/log/magicspam/mslog. | 3.3 |
| 2018-01-12 | CVE-2017-2158 | Improper Input Validation vulnerability in Lhaplus Project Lhaplus Improper verification when expanding ZIP64 archives in Lhaplus versions 1.73 and earlier may lead to unintended contents to be extracted from a specially crafted ZIP64 archive. | 3.3 |
| 2018-01-11 | CVE-2017-1681 | Information Exposure vulnerability in IBM Liberty 3.13/3.15 IBM WebSphere Application Server (IBM Liberty for Java for Bluemix 3.15) could allow a local attacker to obtain sensitive information, caused by improper handling of application requests, which could allow unauthorized access to read a file. | 3.3 |