Weekly Vulnerabilities Reports > August 6 to 12, 2018
Overview
161 new vulnerabilities reported during this period, including 22 critical vulnerabilities and 68 high severity vulnerabilities. This weekly summary report vulnerabilities in 162 products from 84 vendors including HP, IBM, Debian, Q CMS, and Canonical. Vulnerabilities are notably categorized as "Cross-site Scripting", "Cross-Site Request Forgery (CSRF)", "Information Exposure", "Improper Restriction of Operations within the Bounds of a Memory Buffer", and "SQL Injection".
- 139 reported vulnerabilities are remotely exploitables.
- 14 reported vulnerabilities have public exploit available.
- 60 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
- 95 reported vulnerabilities are exploitable by an anonymous user.
- HP has the most reported vulnerabilities, with 39 reported vulnerabilities.
- HP has the most reported critical vulnerabilities, with 12 reported vulnerabilities.
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
EXPLOITABLE
EXPLOITABLE
AVAILABLE
ANONYMOUSLY
WEB APPLICATION
Vulnerability Details
The following table list reported vulnerabilities for the period covered by this report:
22 Critical Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2018-08-12 | CVE-2018-3774 | URL Parse Project | Server-Side Request Forgery (SSRF) vulnerability in Url-Parse Project Url-Parse Incorrect parsing in url-parse <1.4.3 returns wrong hostname which leads to multiple vulnerabilities such as SSRF, Open Redirect, Bypass Authentication Protocol. | 10.0 |
2018-08-10 | CVE-2018-3110 | Oracle | Unspecified vulnerability in Oracle Database Server A vulnerability was discovered in the Java VM component of Oracle Database Server. | 9.9 |
2018-08-10 | CVE-2018-3779 | Activesupport Project | Unspecified vulnerability in Activesupport Project Activesupport 5.2.0 active-support ruby gem 5.2.0 could allow a remote attacker to execute arbitrary code on the system, caused by containing a malicious backdoor. | 9.8 |
2018-08-10 | CVE-2018-10630 | Crestron | Improper Authentication vulnerability in Crestron MC3 Firmware and Tsw-X60 Firmware For Crestron TSW-X60 version prior to 2.001.0037.001 and MC3 version prior to 1.502.0047.001, The devices are shipped with authentication disabled, and there is no indication to users that they need to take steps to enable it. | 9.8 |
2018-08-09 | CVE-2018-10931 | Cobbler Project Redhat | It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. | 9.8 |
2018-08-08 | CVE-2018-15168 | Zohocorp | SQL Injection vulnerability in Zohocorp Manageengine Applications Manager A SQL Injection vulnerability exists in the Zoho ManageEngine Applications Manager 13 before build 13820 via the resids parameter in a /editDisplaynames.do?method=editDisplaynames GET request. | 9.8 |
2018-08-08 | CVE-2018-15137 | Cela Link | Unrestricted Upload of File with Dangerous Type vulnerability in Cela Link Clr-M20 Firmware 2.7.1.6 CeLa Link CLR-M20 devices allow unauthorized users to upload any file (e.g., asp, aspx, cfm, html, jhtml, jsp, or shtml), which causes remote code execution as well. | 9.8 |
2018-08-06 | CVE-2018-7074 | HP | Unspecified vulnerability in HP Intelligent Management Center 7.3 A remote code execution vulnerability was identified in HPE Intelligent Management Center (iMC) PLAT 7.3 E0506P07. | 9.8 |
2018-08-06 | CVE-2018-7072 | HP | Exposure of Resource to Wrong Sphere vulnerability in HP Moonshot Provisioning Manager 1.20 A remote bypass of security restrictions vulnerability was identified in HPE Moonshot Provisioning Manager prior to v1.24. | 9.8 |
2018-08-06 | CVE-2018-7058 | HP | Improper Authentication vulnerability in HP Aruba Clearpass Policy Manager Aruba ClearPass, all versions of 6.6.x prior to 6.6.9 are affected by an authentication bypass vulnerability, an attacker can leverage this vulnerability to gain administrator privileges on the system. | 9.8 |
2018-08-06 | CVE-2017-9000 | HP | Information Exposure vulnerability in HP Arubaos ArubaOS, all versions prior to 6.3.1.25, 6.4 prior to 6.4.4.16, 6.5.x prior to 6.5.1.9, 6.5.2, 6.5.3 prior to 6.5.3.3, 6.5.4 prior to 6.5.4.2, 8.x prior to 8.1.0.4 FIPS and non-FIPS versions of software are both affected equally is vulnerable to unauthenticated arbitrary file access. | 9.8 |
2018-08-06 | CVE-2017-8992 | HP | Unspecified vulnerability in HP Centralview Fraud Risk Management HPE has identified a remote privilege escalation vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. | 9.8 |
2018-08-06 | CVE-2017-8990 | HP | Unspecified vulnerability in HP IMC Wireless Service Manager 7.1/7.2/7.3 A remote code execution vulnerability was identified in HPE Intelligent Management Center (iMC) Wireless Service Manager (WSM) Software earlier than version WSM 7.3 (E0506). | 9.8 |
2018-08-06 | CVE-2017-8988 | HP | Unspecified vulnerability in HP XP Command View 5.8.000/5.8.003/5.9.001 A Remote Bypass of Security Restrictions vulnerability was identified in HPE XP Command View Advanced Edition Software Earlier than 8.5.3-00. | 9.8 |
2018-08-06 | CVE-2016-4404 | HP | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HP Keyview A security vulnerability was identified in the Filter SDK component of HP KeyView earlier than v11.2. | 9.8 |
2018-08-06 | CVE-2016-4403 | HP | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HP Keyview A security vulnerability was identified in the Filter SDK component of HP KeyView earlier than v11.2. | 9.8 |
2018-08-06 | CVE-2016-4402 | HP | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HP Keyview A security vulnerability was identified in the Filter SDK component of HP KeyView earlier than v11.2. | 9.8 |
2018-08-06 | CVE-2016-4391 | HP | Code Injection vulnerability in HP Arcsight Winc Connector A remote code execution security vulnerability has been identified in all versions of the HP ArcSight WINC Connector prior to v7.3.0. | 9.8 |
2018-08-06 | CVE-2018-14968 | Emlsoft Project | SQL Injection vulnerability in Emlsoft Project Emlsoft 5.4.5 An issue was discovered in EMLsoft 5.4.5. | 9.8 |
2018-08-06 | CVE-2018-14961 | Zzcms | SQL Injection vulnerability in Zzcms 8.3 dl/dl_sendmail.php in zzcms 8.3 has SQL Injection via the sql parameter. | 9.8 |
2018-08-06 | CVE-2017-6920 | Drupal | Data Processing Errors vulnerability in Drupal Drupal core 8 before versions 8.3.4 allows remote attackers to execute arbitrary code due to the PECL YAML parser not handling PHP objects safely during certain operations. | 9.8 |
2018-08-06 | CVE-2017-8989 | HP | Open Redirect vulnerability in HP Icewall SSO 10.0/11.0 A security vulnerability in HPE IceWall SSO Dfw 10.0 and 11.0 on RHEL, HP-UX, and Windows could be exploited remotely to allow URL Redirection. | 9.1 |
68 High Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2018-08-12 | CVE-2018-3775 | Nextcloud | Improper Authentication vulnerability in Nextcloud Server Improper Authentication in Nextcloud Server prior to version 12.0.3 would allow an attacker that obtained user credentials to bypass the 2 Factor Authentication. | 8.8 |
2018-08-10 | CVE-2018-14783 | Netcommwireless | Cross-Site Request Forgery (CSRF) vulnerability in Netcommwireless Nwl-25 Firmware 2.0.29.11 NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior. | 8.8 |
2018-08-10 | CVE-2018-13341 | Crestron | Unspecified vulnerability in Crestron MC3 Firmware and Tsw-X60 Firmware Crestron TSW-X60 all versions prior to 2.001.0037.001 and MC3 all versions prior to 1.502.0047.00, The passwords for special sudo accounts may be calculated using information accessible to those with regular user privileges. | 8.8 |
2018-08-10 | CVE-2018-6553 | Debian Canonical Cups | The CUPS AppArmor profile incorrectly confined the dnssd backend due to use of hard links. | 8.8 |
2018-08-10 | CVE-2018-15186 | Chartered Accountant | Cross-Site Request Forgery (CSRF) vulnerability in Chartered Accountant : Auditor Website Project Chartered Accountant : Auditor Website 2.0.1 PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has CSRF via client/auditor/updprofile.php. | 8.8 |
2018-08-08 | CVE-2018-15209 | Libtiff Debian | Out-of-bounds Write vulnerability in multiple products ChopUpSingleUncompressedStrip in tif_dirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf. | 8.8 |
2018-08-08 | CVE-2018-15198 | Onethink | Cross-Site Request Forgery (CSRF) vulnerability in Onethink 1.1 An issue was discovered in OneThink v1.1. | 8.8 |
2018-08-08 | CVE-2018-15197 | Onethink | Cross-Site Request Forgery (CSRF) vulnerability in Onethink 1.1 An issue was discovered in OneThink v1.1. | 8.8 |
2018-08-08 | CVE-2018-15193 | Gogs | Cross-Site Request Forgery (CSRF) vulnerability in Gogs 0.11.53 A CSRF vulnerability in the admin panel in Gogs through 0.11.53 allows remote attackers to execute admin operations via a crafted issue / link. | 8.8 |
2018-08-08 | CVE-2018-15177 | Gxlcms | Cross-Site Request Forgery (CSRF) vulnerability in Gxlcms 2.0 In Gxlcms 2.0, a news/index.php?s=Admin-Admin-Insert CSRF attack can add an administrator account. | 8.8 |
2018-08-08 | CVE-2013-7464 | Csrf Magic Project | Cross-Site Request Forgery (CSRF) vulnerability in Csrf-Magic Project Csrf-Magic In csrf-magic before 1.0.4, if $GLOBALS['csrf']['secret'] is not configured, the Anti-CSRF Token used is predictable and would permit an attacker to bypass the CSRF protections, because an automatically generated secret is not used. | 8.8 |
2018-08-07 | CVE-2018-11455 | Siemens | Path Traversal vulnerability in Siemens Automation License Manager A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4), Automation License Manager 6 (All versions < 6.0.1). | 8.8 |
2018-08-06 | CVE-2018-14857 | Ocsinventory NG | Unrestricted Upload of File with Dangerous Type vulnerability in Ocsinventory-Ng OCS Inventory Server Unrestricted file upload (with remote code execution) in require/mail/NotificationMail.php in Webconsole in OCS Inventory NG OCS Inventory Server through 2.5 allows a privileged user to gain access to the server via a template file containing PHP code, because file extensions other than .html are permitted. | 8.8 |
2018-08-06 | CVE-2018-7060 | Arubanetworks | Cross-Site Request Forgery (CSRF) vulnerability in Arubanetworks Clearpass Aruba ClearPass 6.6.x prior to 6.6.9 and 6.7.x prior to 6.7.1 is vulnerable to CSRF attacks against authenticated users. | 8.8 |
2018-08-06 | CVE-2018-7059 | HP | Improper Input Validation vulnerability in HP Aruba Clearpass Policy Manager Aruba ClearPass prior to 6.6.9 has a vulnerability in the API that helps to coordinate cluster actions. | 8.8 |
2018-08-06 | CVE-2016-8526 | HP | XXE vulnerability in HP Airwave Aruba Airwave all versions up to, but not including, 8.2.3.1 is vulnerable to an XML external entities (XXE). | 8.8 |
2018-08-06 | CVE-2016-4405 | HP | Deserialization of Untrusted Data vulnerability in HP Business Service Management A remote code execution vulnerability was identified in HP Business Service Management (BSM) using Apache Commons Collection Java Deserialization versions v9.20-v9.26 | 8.8 |
2018-08-06 | CVE-2016-4398 | HP | Deserialization of Untrusted Data vulnerability in HP Network Node Manager I 10.00/10.01/10.10 A remote arbitrary code execution vulnerability was identified in HP Network Node Manager i (NNMi) Software 10.00, 10.01 (patch1), 10.01 (patch 2), 10.10 using Java Deserialization. | 8.8 |
2018-08-06 | CVE-2018-14978 | Q CMS | Cross-Site Request Forgery (CSRF) vulnerability in Q-Cms Qcms 3.0.1 An issue was discovered in QCMS 3.0.1. | 8.8 |
2018-08-06 | CVE-2018-14967 | Emlsoft Project | SQL Injection vulnerability in Emlsoft Project Emlsoft 5.4.5 An issue was discovered in EMLsoft 5.4.5. | 8.8 |
2018-08-06 | CVE-2018-14966 | Emlsoft Project | Cross-Site Request Forgery (CSRF) vulnerability in Emlsoft Project Emlsoft 5.4.5 An issue was discovered in EMLsoft 5.4.5. | 8.8 |
2018-08-06 | CVE-2018-14965 | Emlsoft Project | Cross-Site Request Forgery (CSRF) vulnerability in Emlsoft Project Emlsoft 5.4.5 An issue was discovered in EMLsoft 5.4.5. | 8.8 |
2018-08-06 | CVE-2018-14963 | Zzcms | Cross-Site Request Forgery (CSRF) vulnerability in Zzcms 8.3. zzcms 8.3 has CSRF via the admin/adminadd.php?action=add URI. | 8.8 |
2018-08-06 | CVE-2018-14960 | Xiao5Ucompany Project | Cross-Site Request Forgery (CSRF) vulnerability in Xiao5Ucompany Project Xiao5Ucompany 1.7 Xiao5uCompany 1.7 has CSRF via admin/Admin.asp. | 8.8 |
2018-08-08 | CVE-2018-15192 | Gogs Gitea | Server-Side Request Forgery (SSRF) vulnerability in multiple products An SSRF vulnerability in webhooks in Gitea through 1.5.0-rc2 and Gogs through 0.11.53 allows remote attackers to access intranet services. | 8.6 |
2018-08-07 | CVE-2018-11454 | Siemens | Incorrect Permission Assignment for Critical Resource vulnerability in Siemens products A vulnerability has been identified in SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V10, V11, V12 (All versions), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V13 (All versions < V13 SP2 Update 2), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V14 (All versions < V14 SP1 Update 6), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V15 (All versions < V15 Update 2). | 8.6 |
2018-08-06 | CVE-2017-8987 | HP | Unspecified vulnerability in HP Integrated Lights-Out 3 Firmware 1.88 A Unauthenticated Remote Denial of Service vulnerability was identified in HPE Integrated Lights-Out 3 (iLO 3) version v1.88 only. | 8.6 |
2018-08-10 | CVE-2018-11048 | Dell | XXE vulnerability in Dell products Dell EMC Data Protection Advisor, versions 6.2, 6,3, 6.4, 6.5 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 contain a XML External Entity (XXE) Injection vulnerability in the REST API. | 8.1 |
2018-08-09 | CVE-2018-10925 | Canonical Debian Postgresql | Incorrect Authorization vulnerability in multiple products It was discovered that PostgreSQL versions before 10.5, 9.6.10, 9.5.14, 9.4.19, and 9.3.24 failed to properly check authorization on certain statements involved with "INSERT ... | 8.1 |
2018-08-09 | CVE-2018-15133 | Laravel | Deserialization of Untrusted Data vulnerability in Laravel In Laravel Framework through 5.5.40 and 5.6.x through 5.6.29, remote code execution might occur as a result of an unserialize call on a potentially untrusted X-XSRF-TOKEN value. | 8.1 |
2018-08-06 | CVE-2017-16252 | Insteon | Out-of-bounds Write vulnerability in Insteon HUB Firmware 1012 Specially crafted commands sent through the PubNub service in Insteon Hub 2245-222 with firmware version 1012 can cause a stack-based buffer overflow overwriting arbitrary data. | 8.1 |
2018-08-06 | CVE-2017-9001 | HP | Unspecified vulnerability in HP Aruba Clearpass Policy Manager Aruba ClearPass 6.6.3 and later includes a feature called "SSH Lockout", which causes ClearPass to lock accounts with too many login failures through SSH. | 8.1 |
2018-08-06 | CVE-2017-1396 | IBM | Permission Issues vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. | 8.1 |
2018-08-10 | CVE-2018-15187 | Advanced Real Estate Script Project | Cross-Site Request Forgery (CSRF) vulnerability in Advanced Real Estate Script Project Advanced Real Estate Script 4.0.9 PHP Scripts Mall advanced-real-estate-script 4.0.9 has CSRF via edit-profile.php. | 8.0 |
2018-08-10 | CVE-2018-11063 | Dell | Unquoted Search Path or Element vulnerability in Dell Wyse Management Suite 1.0/1.1 Dell WMS versions 1.1 and prior are impacted by multiple unquoted service path vulnerabilities. | 7.8 |
2018-08-09 | CVE-2018-0429 | Cisco | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Cisco Thor Video Codec 18De8F9F0762C3A542B1122589Edb8Af859D9813 Stack-based buffer overflow in the Cisco Thor decoder before commit 18de8f9f0762c3a542b1122589edb8af859d9813 allows local users to cause a denial of service (segmentation fault) and execute arbitrary code via a crafted non-conformant Thor bitstream. | 7.8 |
2018-08-08 | CVE-2018-15176 | Xnview | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Xnview 2.45 XnView 2.45 allows remote attackers to cause a denial of service (User Mode Write AV starting at MSVCR120!memcpy+0x0000000000000074 and application crash) or possibly have unspecified other impact via a crafted RLE file. | 7.8 |
2018-08-08 | CVE-2018-15175 | Xnview | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Xnview 2.45 XnView 2.45 allows remote attackers to cause a denial of service (User Mode Write AV starting at Qt5Core!QVariant::~QVariant+0x0000000000000014 and application crash) or possibly have unspecified other impact via a crafted RLE file. | 7.8 |
2018-08-08 | CVE-2018-15174 | Xnview | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Xnview 2.45 XnView 2.45 allows remote attackers to cause a denial of service (Read Access Violation at the Instruction Pointer and application crash) or possibly have unspecified other impact via a crafted ICO file. | 7.8 |
2018-08-07 | CVE-2018-11453 | Siemens | Incorrect Permission Assignment for Critical Resource vulnerability in Siemens products A vulnerability has been identified in SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V10, V11, V12 (All versions), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V13 (All versions < V13 SP2 Update 2), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V14 (All versions < V14 SP1 Update 6), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V15 (All versions < V15 Update 2). | 7.8 |
2018-08-06 | CVE-2017-8968 | HP | Unspecified vulnerability in HP Restful Interface Tool 1.5/2.0 A remote execution of arbitrary code vulnerability has been identified in HPE RESTful Interface Tool 1.5, 2.0 (hprest-1.5-79.x86_64.rpm, ilorest-2.0-403.x86_64.rpm). | 7.8 |
2018-08-06 | CVE-2016-4397 | HP | Code Injection vulnerability in HP Network Node Manager I 10.00/10.10/10.20 A local code execution security vulnerability was identified in HP Network Node Manager i (NNMi) v10.00, v10.10 and v10.20 Software. | 7.8 |
2018-08-06 | CVE-2017-14447 | Insteon | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Insteon HUB Firmware 1012 An exploitable buffer overflow vulnerability exists in the PubNub message handler for the 'ad' channel of Insteon Hub running firmware version 1012. | 7.7 |
2018-08-10 | CVE-2018-14785 | Netcommwireless | Information Exposure vulnerability in Netcommwireless Nwl-25 Firmware 2.0.29.11 NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior. | 7.5 |
2018-08-10 | CVE-2018-14782 | Netcommwireless | Improper Authentication vulnerability in Netcommwireless Nwl-25 Firmware 2.0.29.11 NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior. | 7.5 |
2018-08-10 | CVE-2018-11492 | Asus | Unspecified vulnerability in Asus Hg100 Firmware ASUS HG100 devices allow denial of service via an IPv4 packet flood. | 7.5 |
2018-08-10 | CVE-2018-10769 | Smartmesh Project Ugtoken Project GG Token Project First Project MTC Project Mesh Project | The transferProxy and approveProxy functions of a smart contract implementation for SmartMesh (SMT), an Ethereum ERC20 token, allow attackers to accomplish an unauthorized transfer of digital assets because replay attacks can occur with the same-named functions (with the same signatures) in other tokens: First (FST), GG Token (GG), M2C Mesh Network (MTC), M2C Mesh Network (mesh), and UG Token (UGT). | 7.5 |
2018-08-09 | CVE-2018-7686 | Microfocus | Information Exposure vulnerability in Microfocus Edirectory Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage. | 7.5 |
2018-08-09 | CVE-2018-14735 | Hitachi | Information Exposure vulnerability in Hitachi products An Information Exposure issue was discovered in Hitachi Command Suite 8.5.3. | 7.5 |
2018-08-09 | CVE-2018-10915 | Redhat Canonical Debian Postgresql | SQL Injection vulnerability in multiple products A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. | 7.5 |
2018-08-08 | CVE-2018-11561 | Erc20Token Project | Integer Overflow or Wraparound vulnerability in Erc20Token Project Erc20Token An integer overflow in the unprotected distributeToken function of a smart contract implementation for EETHER (EETHER), an Ethereum ERC20 token, will lead to an unauthorized increase of an attacker's digital assets. | 7.5 |
2018-08-08 | CVE-2018-12408 | Tibco | XXE vulnerability in Tibco products The BusinessWorks engine component of TIBCO Software Inc.'s TIBCO ActiveMatrix BusinessWorks, TIBCO ActiveMatrix BusinessWorks for z/Linux, and TIBCO ActiveMatrix BusinessWorks Distribution for TIBCO Silver Fabric contains a vulnerability that may allow XML eXternal Entity (XXE) attacks via incoming network messages, and may disclose the contents of files accessible to a running BusinessWorks engine Affected releases are TIBCO Software Inc. | 7.5 |
2018-08-08 | CVE-2018-15173 | Nmap | Unspecified vulnerability in Nmap Nmap through 7.70, when the -sV option is used, allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted TCP-based service. | 7.5 |
2018-08-07 | CVE-2018-15132 | PHP Netapp | Information Exposure vulnerability in multiple products An issue was discovered in ext/standard/link_win32.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8. | 7.5 |
2018-08-06 | CVE-2017-16654 | Sensiolabs Debian | Path Traversal vulnerability in multiple products An issue was discovered in Symfony before 2.7.38, 2.8.31, 3.2.14, 3.3.13, 3.4-BETA5, and 4.0-BETA5. | 7.5 |
2018-08-06 | CVE-2018-7092 | HP | Path Traversal vulnerability in HP Intelligent Management Center 7.3 A potential security vulnerability has been identified in HPE Intelligent Management Center Platform (IMC Plat) 7.3 E0506P09. | 7.5 |
2018-08-06 | CVE-2018-7069 | HP | Improper Authentication vulnerability in HP Centralview Fraud Risk Management HPE has identified a remote unauthenticated access to files vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. | 7.5 |
2018-08-06 | CVE-2018-5390 | Redhat Linux Canonical Debian HP F5 A10Networks Cisco | Resource Exhaustion vulnerability in multiple products Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service. | 7.5 |
2018-08-06 | CVE-2018-14716 | Nystudio107 | Code Injection vulnerability in Nystudio107 Seomatic A Server Side Template Injection (SSTI) was discovered in the SEOmatic plugin before 3.1.4 for Craft CMS, because requests that don't match any elements incorrectly generate the canonicalUrl, and can lead to execution of Twig code. | 7.5 |
2018-08-06 | CVE-2018-13877 | Megacryptopolis | Improper Input Validation vulnerability in Megacryptopolis The doPayouts() function of the smart contract implementation for MegaCryptoPolis, an Ethereum game, has a Denial of Service vulnerability. | 7.5 |
2018-08-06 | CVE-2017-9003 | HP | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HP Arubaos Multiple memory corruption flaws are present in ArubaOS which could allow an unauthenticated user to crash ArubaOS processes. | 7.5 |
2018-08-06 | CVE-2018-1551 | IBM | Incorrect Permission Assignment for Critical Resource vulnerability in IBM Websphere MQ IBM WebSphere MQ 8.0.0.2 through 8.0.0.8 and 9.0.0.0 through 9.0.0.3 could allow users to have more authority than they should have if an MQ administrator creates an invalid user group name. | 7.5 |
2018-08-06 | CVE-2017-1411 | IBM | Insufficiently Protected Credentials vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. | 7.5 |
2018-08-06 | CVE-2017-1366 | IBM | Inadequate Encryption Strength vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. | 7.5 |
2018-08-10 | CVE-2018-14028 | Wordpress | Unrestricted Upload of File with Dangerous Type vulnerability in Wordpress 4.9.7 In WordPress 4.9.7, plugins uploaded via the admin area are not verified as being ZIP files. | 7.2 |
2018-08-08 | CVE-2018-11769 | Apache | Unspecified vulnerability in Apache Couchdb CouchDB administrative users before 2.2.0 can configure the database server via HTTP(S). | 7.2 |
2018-08-06 | CVE-2018-7078 | HP | Unspecified vulnerability in HP products A remote code execution was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than version v2.60 and HPE Integrated Lights-Out 5 (iLO 5) earlier than version v1.30. | 7.2 |
2018-08-10 | CVE-2018-10622 | Medtronic | Insufficiently Protected Credentials vulnerability in Medtronic products A vulnerability was discovered in all versions of Medtronic MyCareLink 24950 and 24952 Patient Monitor. | 7.1 |
70 Medium Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2018-08-07 | CVE-2018-5383 | Google Apple | Improper Verification of Cryptographic Signature vulnerability in multiple products Bluetooth firmware or operating system software drivers in macOS versions before 10.13, High Sierra and iOS versions before 11.4, and Android versions before the 2018-06-05 patch may not sufficiently validate elliptic curve parameters used to generate public keys during a Diffie-Hellman key exchange, which may allow a remote attacker to obtain the encryption key used by the device. | 6.8 |
2018-08-06 | CVE-2017-1755 | IBM | Unspecified vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 could allow a local attacker to inject commands into malicious files that could be executed by the administrator. | 6.7 |
2018-08-10 | CVE-2018-15191 | Hotel Booking Script Project | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Hotel Booking Script Project Hotel Booking Script 2.0.4 PHP Scripts Mall hotel-booking-script 2.0.4 allows remote attackers to cause a denial of service via crafted JavaScript code in the First Name, Last Name, or Address field. | 6.5 |
2018-08-10 | CVE-2018-15188 | Advanced Real Estate Script Project | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Advanced Real Estate Script Project Advanced Real Estate Script 4.0.9 PHP Scripts Mall advanced-real-estate-script 4.0.9 allows remote attackers to cause a denial of service (page structure loss) via crafted JavaScript code in the Name field of a profile. | 6.5 |
2018-08-10 | CVE-2018-15185 | Naukri Clone Script Project | Improper Input Validation vulnerability in Naukri Clone Script Project Naukri Clone Script 3.0.4 PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 allows remote attackers to cause a denial of service (page update outage) via crafted PHP and JavaScript code in the "Current Position" field. | 6.5 |
2018-08-09 | CVE-2018-15181 | JIO | Cross-site Scripting vulnerability in JIO 4G Hotspot M2S Firmware JioFi 4G Hotspot M2S devices allow attackers to cause a denial of service (secure configuration outage) via an XSS payload in the SSID name and Security Key fields. | 6.5 |
2018-08-08 | CVE-2018-14526 | Canonical Debian W1 FI | Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in multiple products An issue was discovered in rsn_supp/wpa.c in wpa_supplicant 2.0 through 2.6. | 6.5 |
2018-08-08 | CVE-2018-15203 | Ignitedcms | Cross-Site Request Forgery (CSRF) vulnerability in Ignitedcms 1.0.0/1.0.1/20170219 An issue was discovered in Ignited CMS through 2017-02-19. | 6.5 |
2018-08-06 | CVE-2017-16790 | Sensiolabs Debian | Improper Input Validation vulnerability in multiple products An issue was discovered in Symfony before 2.7.38, 2.8.31, 3.2.14, 3.3.13, 3.4-BETA5, and 4.0-BETA5. | 6.5 |
2018-08-06 | CVE-2017-1368 | IBM | Session Fixation vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 does not set the secure attribute on authorization tokens or session cookies. | 6.5 |
2018-08-09 | CVE-2018-10908 | Ovirt Redhat | Allocation of Resources Without Limits or Throttling vulnerability in multiple products It was found that vdsm before version 4.20.37 invokes qemu-img on untrusted inputs without limiting resources. | 6.3 |
2018-08-08 | CVE-2018-15202 | Juunan06 | Cross-Site Request Forgery (CSRF) vulnerability in Juunan06 Ecommerce 20180805 An issue was discovered in Juunan06 eCommerce through 2018-08-05. | 6.3 |
2018-08-10 | CVE-2018-14784 | Netcommwireless | Cross-site Scripting vulnerability in Netcommwireless Nwl-25 Firmware 2.0.29.11 NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior. | 6.1 |
2018-08-10 | CVE-2018-14503 | Coremail | Cross-site Scripting vulnerability in Coremail XT 3.0 Cross-site scripting (XSS) vulnerability in intervalCheck.jsp in Coremail XT 3.0 allows remote attackers to inject arbitrary web script or HTML via the sid parameter. | 6.1 |
2018-08-10 | CVE-2018-13390 | Atlassian | Unspecified vulnerability in Atlassian Cloudtoken Unauthenticated access to cloudtoken daemon on Linux via network from version 0.1.1 before version 0.1.24 allows attackers on the same subnet to gain temporary AWS credentials for the users' roles. | 6.1 |
2018-08-09 | CVE-2018-7692 | Microfocus | Open Redirect vulnerability in Microfocus Edirectory Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1. | 6.1 |
2018-08-09 | CVE-2018-15183 | Myperfectresume Jobhero Resume Clone Script Project | Cross-site Scripting vulnerability in Myperfectresume / Jobhero / Resume Clone Script Project Myperfectresume / Jobhero / Resume Clone Script 2.0.6 PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title fields. | 6.1 |
2018-08-08 | CVE-2018-15178 | Gogs | Open Redirect vulnerability in Gogs Open redirect vulnerability in Gogs before 0.12 allows remote attackers to redirect users to arbitrary websites and conduct phishing attacks via an initial /\ substring in the user/login redirect_to parameter, related to the function isValidRedirect in routes/user/auth.go. | 6.1 |
2018-08-08 | CVE-2018-15169 | Zohocorp | Cross-site Scripting vulnerability in Zohocorp Manageengine Applications Manager A reflected Cross-site scripting (XSS) vulnerability in Zoho ManageEngine Applications Manager 13 before build 13820 allows remote attackers to inject arbitrary web script or HTML via the /deleteMO.do method parameter. | 6.1 |
2018-08-06 | CVE-2018-7091 | HP | Open Redirect vulnerability in HP XP 9000 Command View HPE XP P9000 Command View Advanced Edition Software (CVAE) has open URL redirection vulnerability in versions 7.0.0-00 to earlier than 8.60-00 of DevMgr, TSMgr and RepMgr. | 6.1 |
2018-08-06 | CVE-2018-7090 | HP | Cross-site Scripting vulnerability in HP XP 9000 Command View HPE XP P9000 Command View Advanced Edition Software (CVAE) has local and remote cross site scripting vulnerability in versions 7.0.0-00 to earlier than 8.60-00 of DevMgr, TSMgr and RepMgr. | 6.1 |
2018-08-06 | CVE-2018-7075 | HP | Cross-site Scripting vulnerability in HP Intelligent Management Center 7.3 A remote cross-site scripting (XSS) vulnerability was identified in HPE Intelligent Management Center (iMC) PLAT version v7.3 (E0506). | 6.1 |
2018-08-06 | CVE-2018-7068 | HP | HTTP Request Smuggling vulnerability in HP Centralview Fraud Risk Management HPE has identified a remote HOST header attack vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. | 6.1 |
2018-08-06 | CVE-2017-9002 | HP | Cross-site Scripting vulnerability in HP Aruba Clearpass Policy Manager All versions of Aruba ClearPass prior to 6.6.8 contain reflected cross-site scripting vulnerabilities. | 6.1 |
2018-08-06 | CVE-2016-8527 | HP | Cross-site Scripting vulnerability in HP Airwave Aruba Airwave all versions up to, but not including, 8.2.3.1 is vulnerable to a reflected cross-site scripting (XSS). | 6.1 |
2018-08-06 | CVE-2016-4406 | HP | Cross-site Scripting vulnerability in HP products A remote cross site scripting vulnerability was identified in HPE iLO 3 all version prior to v1.88 and HPE iLO 4 all versions prior to v2.44. | 6.1 |
2018-08-06 | CVE-2018-14977 | Q CMS | Cross-site Scripting vulnerability in Q-Cms Qcms 3.0.1 An issue was discovered in QCMS 3.0.1. | 6.1 |
2018-08-06 | CVE-2017-12614 | Apache | Cross-site Scripting vulnerability in Apache Airflow It was noticed an XSS in certain 404 pages that could be exploited to perform an XSS attack. | 6.1 |
2018-08-07 | CVE-2018-12885 | Mycryptochamp | Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in Mycryptochamp The randMod() function of the smart contract implementation for MyCryptoChamp, an Ethereum game, generates a random value with publicly readable variables such as the current block information and a private variable, (which can be read with a getStorageAt call). | 5.9 |
2018-08-06 | CVE-2017-16653 | Sensiolabs Debian | An issue was discovered in Symfony before 2.7.38, 2.8.31, 3.2.14, 3.3.13, 3.4-BETA5, and 4.0-BETA5. | 5.9 |
2018-08-07 | CVE-2018-11456 | Siemens | Unspecified vulnerability in Siemens Automation License Manager A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4). | 5.8 |
2018-08-10 | CVE-2018-7754 | Linux | Information Exposure Through Log Files vulnerability in Linux Kernel The aoedisk_debugfs_show function in drivers/block/aoe/aoeblk.c in the Linux kernel through 4.16.4rc4 allows local users to obtain sensitive address information by reading "ffree: " lines in a debugfs file. | 5.5 |
2018-08-07 | CVE-2018-5995 | Linux | Information Exposure vulnerability in Linux Kernel The pcpu_embed_first_chunk function in mm/percpu.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by reading dmesg data from a "pages/cpu" printk call. | 5.5 |
2018-08-07 | CVE-2018-5953 | Linux Debian | Information Exposure vulnerability in multiple products The swiotlb_print_info function in lib/swiotlb.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by reading dmesg data from a "software IO TLB" printk call. | 5.5 |
2018-08-06 | CVE-2018-7073 | HP Canonical | Exposure of Resource to Wrong Sphere vulnerability in multiple products A local arbitrary file modification vulnerability was identified in HPE Moonshot Provisioning Manager prior to v1.24. | 5.5 |
2018-08-10 | CVE-2018-15190 | Hotel Booking Script Project | Cross-site Scripting vulnerability in Hotel Booking Script Project Hotel Booking Script 2.0.4 PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the First Name, Last Name, or Address field. | 5.4 |
2018-08-10 | CVE-2018-15189 | Advanced Real Estate Script Project | Cross-site Scripting vulnerability in Advanced Real Estate Script Project Advanced Real Estate Script 4.0.9 PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile. | 5.4 |
2018-08-09 | CVE-2018-15184 | Naukri Clone Script Project | Cross-site Scripting vulnerability in Naukri Clone Script Project Naukri Clone Script 3.0.4 PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795. | 5.4 |
2018-08-09 | CVE-2018-15182 | CAR Rental Script Project | Cross-site Scripting vulnerability in CAR Rental Script Project CAR Rental Script 2.0.8 PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields. | 5.4 |
2018-08-08 | CVE-2018-15199 | Auracms | Cross-site Scripting vulnerability in Auracms 2.3 AuraCMS 2.3 allows XSS via a Bukutamu -> AddGuestbook action. | 5.4 |
2018-08-07 | CVE-2018-15130 | Thinksaas | Cross-site Scripting vulnerability in Thinksaas 2.6 ThinkSAAS through 2018-07-25 has XSS via the index.php?app=group&ac=create&ts=do groupdesc parameter. | 5.4 |
2018-08-07 | CVE-2018-1690 | IBM | Cross-site Scripting vulnerability in IBM Rhapsody Model Manager 6.0.6 IBM Rhapsody Model Manager 6.0.6 is vulnerable to cross-site scripting. | 5.4 |
2018-08-07 | CVE-2018-15129 | Thinksaas | Cross-site Scripting vulnerability in Thinksaas 2.6 ThinkSAAS through 2018-07-25 has XSS via the index.php?app=article&ac=comment&ts=do content parameter. | 5.4 |
2018-08-06 | CVE-2018-14869 | PHP Template Store Script Project | Cross-site Scripting vulnerability in PHP Template Store Script Project PHP Template Store Script 3.0.6 PHP Template Store Script 3.0.6 allows XSS via the Address line 1, Address Line 2, Bank name, or A/C Holder name field in a profile. | 5.4 |
2018-08-06 | CVE-2017-8991 | HP | Cross-site Scripting vulnerability in HP Centralview Fraud Risk Management HPE has identified a cross site scripting (XSS) vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. | 5.4 |
2018-08-06 | CVE-2016-4400 | HP | Cross-site Scripting vulnerability in HP Network Node Manager I 10.00/10.01/10.10 A security vulnerability was identified in HP Network Node Manager i (NNMi) Software 10.00, 10.01 (patch1), 10.01 (patch 2), 10.10. | 5.4 |
2018-08-06 | CVE-2016-4399 | HP | Cross-site Scripting vulnerability in HP Network Node Manager I 10.00/10.01/10.10 A security vulnerability was identified in HP Network Node Manager i (NNMi) Software 10.00, 10.01 (patch1), 10.01 (patch 2), 10.10. | 5.4 |
2018-08-06 | CVE-2016-4392 | HP | Cross-site Scripting vulnerability in HP Business Service Management A remote cross site scripting vulnerability has been identified in HP Business Service Management software v9.1x, v9.20 - v9.25IP1. | 5.4 |
2018-08-06 | CVE-2018-14964 | Emlsoft Project | Cross-site Scripting vulnerability in Emlsoft Project Emlsoft 5.4.5 An issue was discovered in EMLsoft 5.4.5. | 5.4 |
2018-08-06 | CVE-2018-14962 | Zzcms | Cross-site Scripting vulnerability in Zzcms 8.3. zzcms 8.3 has stored XSS related to the content variable in user/manage.php and zt/show.php. | 5.4 |
2018-08-06 | CVE-2018-1422 | IBM | Cross-site Scripting vulnerability in IBM Rational Doors Next Generation IBM Jazz Foundation products (IBM Rational DOORS Next Generation 5.0 through 5.0.2 and 6.0 through 6.0.5) are vulnerable to cross-site scripting. | 5.4 |
2018-08-12 | CVE-2018-3776 | Nextcloud | Information Exposure Through Log Files vulnerability in Nextcloud Server Improper input validator in Nextcloud Server prior to 12.0.3 and 11.0.5 could lead to an attacker's actions not being logged in the audit log. | 5.3 |
2018-08-09 | CVE-2018-6922 | Freebsd | Resource Exhaustion vulnerability in Freebsd 10.4/11.1/11.2 One of the data structures that holds TCP segments in all versions of FreeBSD prior to 11.2-RELEASE-p1, 11.1-RELEASE-p12, and 10.4-RELEASE-p10 uses an inefficient algorithm to reassemble the data. | 5.3 |
2018-08-08 | CVE-2018-3778 | Aedes Project | Incorrect Authorization vulnerability in Aedes Project Aedes Improper authorization in aedes version <0.35.0 will publish a LWT in a channel when a client is not authorized. | 5.3 |
2018-08-06 | CVE-2017-2654 | Jenkins | Information Exposure vulnerability in Jenkins Email Extension jenkins-email-ext before version 2.57.1 is vulnerable to an Information Exposure. | 5.3 |
2018-08-06 | CVE-2018-7070 | HP | Information Exposure vulnerability in HP Centralview Fraud Risk Management HPE has identified a remote disclosure of information vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. | 5.3 |
2018-08-06 | CVE-2017-1409 | IBM | Information Exposure vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 discloses sensitive information to unauthorized users. | 5.3 |
2018-08-10 | CVE-2018-14837 | Wolfcms | Cross-site Scripting vulnerability in Wolfcms Wolf CMS 0.8.3.1 Wolf CMS 0.8.3.1 has XSS in the Snippets tab, as demonstrated by a ?/admin/snippet/edit/1 URI. | 4.8 |
2018-08-06 | CVE-2018-14976 | Q CMS | Cross-site Scripting vulnerability in Q-Cms Qcms 3.0.1 An issue was discovered in QCMS 3.0.1. | 4.8 |
2018-08-06 | CVE-2018-14975 | Q CMS | Cross-site Scripting vulnerability in Q-Cms Qcms 3.0.1 An issue was discovered in QCMS 3.0.1. | 4.8 |
2018-08-06 | CVE-2018-14974 | Q CMS | Cross-site Scripting vulnerability in Q-Cms Qcms 3.0.1 An issue was discovered in QCMS 3.0.1. | 4.8 |
2018-08-06 | CVE-2018-14973 | Q CMS | Cross-site Scripting vulnerability in Q-Cms Qcms 3.0.1 An issue was discovered in QCMS 3.0.1. | 4.8 |
2018-08-06 | CVE-2018-14972 | Q CMS | Cross-site Scripting vulnerability in Q-Cms Qcms 3.0.1 An issue was discovered in QCMS 3.0.1. | 4.8 |
2018-08-06 | CVE-2018-14971 | Q CMS | Cross-site Scripting vulnerability in Q-Cms Qcms 3.0.1 An issue was discovered in QCMS 3.0.1. | 4.8 |
2018-08-06 | CVE-2018-14970 | Q CMS | Cross-site Scripting vulnerability in Q-Cms Qcms 3.0.1 An issue was discovered in QCMS 3.0.1. | 4.8 |
2018-08-06 | CVE-2018-14969 | Q CMS | Cross-site Scripting vulnerability in Q-Cms Qcms 3.0.1 An issue was discovered in QCMS 3.0.1. | 4.8 |
2018-08-10 | CVE-2018-10626 | Medtronic | Insufficient Verification of Data Authenticity vulnerability in Medtronic products A vulnerability was discovered in all versions of Medtronic MyCareLink 24950 and 24952 Patient Monitor. | 4.4 |
2018-08-06 | CVE-2018-7071 | HP | Information Exposure vulnerability in HP Network Function Virtualization Director 4.2.1 HPE has identified a remote access to sensitive information vulnerability in HPE Network Function Virtualization Director (NFVD) 4.2.1 prior to gui patch 3. | 4.3 |
2018-08-06 | CVE-2018-1528 | IBM | Information Exposure vulnerability in IBM products IBM Maximo Asset Management 7.6 through 7.6.3 could allow an authenticated user to obtain sensitive information from the WhoAmI API. | 4.3 |
2018-08-06 | CVE-2017-1412 | IBM | Information Exposure vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 generates an error message that includes sensitive information about its environment, users, or associated data. | 4.3 |
1 Low Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2018-08-10 | CVE-2018-6556 | Canonical Linuxcontainers Suse Opensuse | Channel and Path Errors vulnerability in multiple products lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. | 3.3 |