Weekly Vulnerabilities Reports > February 25 to March 3, 2019

Overview

161 new vulnerabilities reported during this period, including 9 critical vulnerabilities and 43 high severity vulnerabilities. This weekly summary report vulnerabilities in 288 products from 69 vendors including Mozilla, Canonical, Debian, Qualcomm, and Google. Vulnerabilities are notably categorized as "Improper Restriction of Operations within the Bounds of a Memory Buffer", "Cross-site Scripting", "Improper Input Validation", "Information Exposure", and "Out-of-bounds Write".

  • 127 reported vulnerabilities are remotely exploitables.
  • 15 reported vulnerabilities have public exploit available.
  • 33 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
  • 151 reported vulnerabilities are exploitable by an anonymous user.
  • Mozilla has the most reported vulnerabilities, with 26 reported vulnerabilities.
  • Google has the most reported critical vulnerabilities, with 6 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

Expand/Hide

9 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2019-02-28 CVE-2019-1663 Cisco Improper Input Validation vulnerability in Cisco Rv110W Firmware, Rv130W Firmware and Rv215W Firmware

A vulnerability in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and Cisco RV215W Wireless-N VPN Router could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device.

10.0
2019-02-28 CVE-2018-12391 Mozilla
Google
Incorrect Authorization vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird

During HTTP Live Stream playback on Firefox for Android, audio data can be accessed across origins in violation of security policies.

9.3
2019-02-28 CVE-2019-1994 Google Insecure Default Initialization of Resource vulnerability in Google Android 8.0/8.1/9.0

In refresh of DevelopmentTiles.java, there is the possibility of leaving development settings accessible due to an insecure default value.

9.3
2019-02-28 CVE-2019-1991 Google Out-Of-Bounds Write vulnerability in Google Android

In btif_dm_data_copy of btif_core.cc, there is a possible out of bounds write due to a buffer overflow.

9.3
2019-02-28 CVE-2019-1988 Google Out-Of-Bounds Write vulnerability in Google Android 8.0/8.1/9.0

In sample6 of SkSwizzler.cpp, there is a possible out of bounds write due to improper input validation.

9.3
2019-02-28 CVE-2019-1987 Google Out-Of-Bounds Write vulnerability in Google Android

In onSetSampleX of SkSwizzler.cpp, there is a possible out of bounds write due to a missing bounds check.

9.3
2019-02-28 CVE-2019-1986 Google Out-Of-Bounds Write vulnerability in Google Android 9.0

In SkSwizzler::onSetSampleX of SkSwizzler.cpp, there is a possible out of bounds write due to a missing bounds check.

9.3
2019-02-28 CVE-2019-1674 Cisco OS Command Injection vulnerability in Cisco products

A vulnerability in the update service of Cisco Webex Meetings Desktop App and Cisco Webex Productivity Tools for Windows could allow an authenticated, local attacker to execute arbitrary commands as a privileged user.

9.0
2019-02-26 CVE-2019-9201 Phoenixcontact Missing Authentication FOR Critical Function vulnerability in Phoenixcontact products

Phoenix Contact ILC 131 ETH, ILC 131 ETH/XC, ILC 151 ETH, ILC 151 ETH/XC, ILC 171 ETH 2TX, ILC 191 ETH 2TX, ILC 191 ME/AN, and AXC 1050 devices allow remote attackers to establish TCP sessions to port 1962 and obtain sensitive information or make changes, as demonstrated by using the Create Backup feature to traverse all directories.

9.0

43 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2019-02-25 CVE-2019-9146 Jamf Unspecified vulnerability in Jamf Self Service 10.9.0

Jamf Self Service 10.9.0 allows man-in-the-middle attackers to obtain a root shell by leveraging the "publish Bash shell scripts" feature to insert "/Applications/Utilities/Terminal app/Contents/MacOS/Terminal" into the TCP data stream.

7.9
2019-02-28 CVE-2019-6551 Pangea Comm Improper Authentication vulnerability in Pangea-Comm FAX ATA 3.1.8

Pangea Communications Internet FAX ATA all Versions 3.1.8 and prior allow an attacker to bypass user authentication using a specially crafted URL to cause the device to reboot, which may be used to cause a continual denial-of-service condition.

7.8
2019-02-28 CVE-2019-1992 Google Race Condition vulnerability in Google Android

In bta_hl_sdp_query_results of bta_hl_main.cc, there is a possible use-after-free due to a race condition.

7.6
2019-03-01 CVE-2019-9546 Solarwinds Uncontrolled Search Path Element vulnerability in Solarwinds Orion Platform

SolarWinds Orion Platform before 2018.4 Hotfix 2 allows privilege escalation through the RabbitMQ service.

7.5
2019-02-28 CVE-2018-18498 Mozilla
Debian
Canonical
Redhat
Integer Overflow OR Wraparound vulnerability in multiple products

A potential vulnerability leading to an integer overflow can occur during buffer size calculations for images when a raw value is used instead of the checked value.

7.5
2019-02-28 CVE-2018-18493 Mozilla
Debian
Canonical
Redhat
Buffer Errors vulnerability in Mozilla Firefox and Firefox ESR

A buffer overflow can occur in the Skia library during buffer offset calculations with hardware accelerated canvas 2D actions due to the use of 32-bit calculations instead of 64-bit.

7.5
2019-02-28 CVE-2018-18492 Mozilla
Debian
Canonical
Redhat
USE After Free vulnerability in Mozilla Firefox and Firefox ESR

A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the options collection.

7.5
2019-02-28 CVE-2018-12407 Mozilla
Canonical
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content, when working with the VertexBuffer11 module.

7.5
2019-02-28 CVE-2018-12405 Mozilla
Canonical
Debian
Redhat
Buffer Errors vulnerability in Mozilla Firefox and Firefox ESR

Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3.

7.5
2019-02-28 CVE-2018-12392 Mozilla
Debian
Canonical
Redhat
Unspecified vulnerability in Mozilla Firefox and Firefox ESR

When manipulating user events in nested loops while opening a document through script, it is possible to trigger a potentially exploitable crash due to poor event handling.

7.5
2019-02-28 CVE-2018-12390 Mozilla
Debian
Canonical
Redhat
Buffer Errors vulnerability in Mozilla Firefox and Firefox ESR

Mozilla developers and community members reported memory safety bugs present in Firefox 62 and Firefox ESR 60.2.

7.5
2019-02-28 CVE-2019-9227 Baigo Code Injection vulnerability in Baigo CMS 2.1.1

An issue was discovered in baigo CMS 2.1.1.

7.5
2019-02-28 CVE-2019-9215 Live555 Improper Input Validation vulnerability in Live555 Streaming Media

In Live555 before 2019.02.27, malformed headers lead to invalid memory access in the parseAuthorizationHeader function.

7.5
2019-02-27 CVE-2019-9212 Antfin Incomplete Blacklist vulnerability in Antfin Sofa-Hessian

** DISPUTED ** SOFA-Hessian through 4.0.2 allows remote attackers to execute arbitrary commands via a crafted serialized Hessian object because blacklisting of com.caucho.naming.QName and com.sun.org.apache.xpath.internal.objects.XString is mishandled, related to Resin Gadget.

7.5
2019-02-26 CVE-2019-9195 Grin Path Traversal vulnerability in Grin

util/src/zip.rs in Grin before 1.0.2 mishandles suspicious files.

7.5
2019-02-26 CVE-2019-9194 Std42 OS Command Injection vulnerability in Std42 Elfinder

elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.

7.5
2019-02-26 CVE-2019-9184 J2Store SQL Injection vulnerability in J2Store

SQL injection vulnerability in the J2Store plugin 3.x before 3.3.7 for Joomla! allows remote attackers to execute arbitrary SQL commands via the product_option[] parameter.

7.5
2019-02-26 CVE-2019-9169 GNU
Netapp
Out-Of-Bounds Read vulnerability in multiple products

In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match.

7.5
2019-02-25 CVE-2019-6266 Cordaware Improper Certificate Validation vulnerability in Cordaware Bestinformed

Cordaware bestinformed Microsoft Windows client before 6.2.1.0 is affected by insecure SSL certificate verification and insecure access patterns.

7.5
2019-02-25 CVE-2018-13904 Qualcomm Improper Input Validation vulnerability in Qualcomm products

Improper input validation in SCM handler to access storage in TZ can lead to unauthorized access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 410/12, SD 675, SD 712 / SD 710 / SD 670, SD 8CX, SXR1130.

7.5
2019-02-25 CVE-2018-11945 Qualcomm Out-Of-Bounds Write vulnerability in Qualcomm products

Improper input validation in wireless service messaging module for data received from broadcast messages can lead to heap overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in versions MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130.

7.5
2019-02-25 CVE-2018-20033 Flexera Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Flexera Flexnet Publisher

A Remote Code Execution vulnerability in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and earlier could allow a remote attacker to corrupt the memory by allocating / deallocating memory, loading lmgrd or the vendor daemon and causing the heartbeat between lmgrd and the vendor daemon to stop.

7.5
2019-02-25 CVE-2019-9125 D Link Missing Authentication FOR Critical Function vulnerability in D-Link Dir-878 Firmware 1.12B01

An issue was discovered on D-Link DIR-878 1.12B01 devices.

7.5
2019-02-25 CVE-2019-9124 D Link Improper Authentication vulnerability in D-Link Dir-878 Firmware 1.12B01

An issue was discovered on D-Link DIR-878 1.12B01 devices.

7.5
2019-02-25 CVE-2019-9123 D Link Weak Password Requirements vulnerability in D-Link Dir-825 Rev.B Firmware 2.10

An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices.

7.5
2019-02-25 CVE-2019-9115 Irisnet Improper Input Validation vulnerability in Irisnet Irisnet-Crypto

In irisnet-crypto before 1.1.7 for IRISnet, the util/utils.js file allows code execution because of unsafe eval usage.

7.5
2019-03-01 CVE-2018-8790 Checkpoint Unspecified vulnerability in Checkpoint Zonealarm

Check Point ZoneAlarm version 15.3.064.17729 and below expose a WCF service that can allow a local low privileged user to execute arbitrary code as SYSTEM.

7.2
2019-02-28 CVE-2019-2000 Google USE After Free vulnerability in Google Android

In several functions of binder.c, there is possible memory corruption due to a use after free.

7.2
2019-02-28 CVE-2019-1999 Google Double Free vulnerability in Google Android

In binder_alloc_free_page of binder_alloc.c, there is a possible double free due to improper locking.

7.2
2019-02-28 CVE-2019-1993 Google Integer Overflow OR Wraparound vulnerability in Google Android 8.0/8.1/9.0

In register_app of btif_hd.cc, there is a possible memory corruption due to an integer overflow.

7.2
2019-02-27 CVE-2019-5670 Nvidia
Microsoft
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Nvidia GPU Driver

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiEscape in which the software uses a sequential operation to read from or write to a buffer, but it uses an incorrect length value that causes it to access memory that is outside of the bounds of the buffer which may lead to denial of service, escalation of privileges, code execution or information disclosure.

7.2
2019-02-27 CVE-2019-5669 Nvidia
Microsoft
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Nvidia GPU Driver

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiEscape in which the software uses a sequential operation to read from or write to a buffer, but it uses an incorrect length value that causes it to access memory that is outside of the bounds of the buffer, which may lead to denial of service or escalation of privileges.

7.2
2019-02-27 CVE-2019-5668 Nvidia
Microsoft
Null Pointer Dereference vulnerability in Nvidia GPU Driver

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiSubmitCommandVirtual in which the application dereferences a pointer that it expects to be valid, but is NULL, which may lead to denial of service or escalation of privileges.

7.2
2019-02-27 CVE-2019-5667 Nvidia
Microsoft
Null Pointer Dereference vulnerability in Nvidia GPU Driver

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiSetRootPageTable in which the application dereferences a pointer that it expects to be valid, but is NULL, which may lead to code execution, denial of service or escalation of privileges.

7.2
2019-02-27 CVE-2019-5666 Nvidia
Microsoft
Improper Validation of Array Index vulnerability in Nvidia GPU Driver

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) create context command DDI DxgkDdiCreateContext in which the product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array, which may lead to denial of service or escalation of privileges.

7.2
2019-02-27 CVE-2019-5665 Nvidia
Microsoft
Link Following vulnerability in Nvidia GPU Driver

NVIDIA Windows GPU Display driver contains a vulnerability in the 3D vision component in which the stereo service software, when opening a file, does not check for hard links.

7.2
2019-02-25 CVE-2018-13905 Qualcomm USE After Free vulnerability in Qualcomm products

KGSL syncsource lock not handled properly during syncsource cleanup can lead to use after free issue in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9206, MDM9607, MDM9650, MSM8909W, QCS605, SD 210/SD 212/SD 205, SD 439 / SD 429, SD 712 / SD 710 / SD 670, SD 820A, SD 845 / SD 850, SD 855, SDM439, SDM660, SDX24.

7.2
2019-02-25 CVE-2018-13900 Qualcomm USE After Free vulnerability in Qualcomm products

Use-after-free vulnerability will occur as there is no protection for the route table`s rule in IPA driver in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in versions MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24.

7.2
2019-02-25 CVE-2018-11931 Qualcomm Improper Input Validation vulnerability in Qualcomm products

Improper access to HLOS is possible while transferring memory to CPZ in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in versions MDM9150, MDM9206, MDM9607, MDM9650, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.

7.2
2019-02-25 CVE-2018-11289 Qualcomm Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Qualcomm products

Data truncation during higher to lower type conversion which causes less memory allocation than desired can lead to a buffer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in versions IPQ8074, MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCA8081, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.

7.2
2019-02-25 CVE-2019-9112 Micode Integer Overflow OR Wraparound vulnerability in Micode Xiaomi Perseus-P-Oss

The msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the count argument in _sde_debugfs_conn_cmd_tx_write in drivers/gpu/drm/msm/sde/sde_connector.c.

7.1
2019-02-25 CVE-2019-9111 Micode Integer Overflow OR Wraparound vulnerability in Micode Xiaomi Perseus-P-Oss

The msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the count argument in sde_evtlog_filter_write in drivers/gpu/drm/msm/sde_dbg.c.

7.1
2019-02-25 CVE-2018-20787 Micode Integer Overflow OR Wraparound vulnerability in Micode Xiaomi Perseus-P-Oss

The ft5x46 touchscreen driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the size argument in tpdbg_write in drivers/input/touchscreen/ft5x46/ft5x46_ts.c.

7.1

99 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2019-03-03 CVE-2019-9549 Popojicms Cross-Site Request Forgery (CSRF) vulnerability in Popojicms 2.0.1

An issue was discovered in PopojiCMS v2.0.1.

6.8
2019-03-01 CVE-2019-9545 Freedesktop Improper Input Validation vulnerability in Freedesktop Poppler 0.74.0

An issue was discovered in Poppler 0.74.0.

6.8
2019-03-01 CVE-2019-9544 Axiosys Out-Of-Bounds Write vulnerability in Axiosys Bento4 1.5.1628

An issue was discovered in Bento4 1.5.1-628.

6.8
2019-03-01 CVE-2019-9543 Freedesktop Improper Input Validation vulnerability in Freedesktop Poppler 0.74.0

An issue was discovered in Poppler 0.74.0.

6.8
2019-02-28 CVE-2019-6555 Hornerautomation Improper Input Validation vulnerability in Hornerautomation Cscape 9.70/9.80

Cscape, 9.80 SP4 and prior.

6.8
2019-02-28 CVE-2018-18496 Mozilla
Microsoft
Improper Restriction of Rendered UI Layers OR Frames vulnerability in Mozilla Firefox

When the RSS Feed preview about:feeds page is framed within another page, it can be used in concert with scripted content for a clickjacking attack that confuses users into downloading and executing an executable file from a temporary directory.

6.8
2019-02-28 CVE-2018-12406 Mozilla
Canonical
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

Mozilla developers and community members reported memory safety bugs present in Firefox 63.

6.8
2019-02-28 CVE-2018-12389 Mozilla
Debian
Canonical
Redhat
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

Mozilla developers and community members reported memory safety bugs present in Firefox ESR 60.2.

6.8
2019-02-28 CVE-2018-12388 Mozilla
Canonical
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

Mozilla developers and community members reported memory safety bugs present in Firefox 62.

6.8
2019-02-27 CVE-2019-9210 Advancemame
Debian
Canonical
Fedoraproject
Out-Of-Bounds Read vulnerability in multiple products

In AdvanceCOMP 2.1, png_compress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size, which results in an attempted memcpy to write into a buffer that is too small.

6.8
2019-02-26 CVE-2019-9200 Freedesktop
Debian
Canonical
Out-Of-Bounds Write vulnerability in multiple products

A heap-based buffer underwrite exists in ImageStream::getLine() located at Stream.cc in Poppler 0.74.0 that can (for example) be triggered by sending a crafted PDF file to the pdfimages binary.

6.8
2019-02-26 CVE-2019-9199 Podofo Project
Fedoraproject
Null Pointer Dereference vulnerability in multiple products

PoDoFo::Impose::PdfTranslator::setSource() in pdftranslator.cpp in PoDoFo 0.9.6 has a NULL pointer dereference that can (for example) be triggered by sending a crafted PDF file to the podofoimpose binary.

6.8
2019-02-26 CVE-2019-9182 Zzzcms Cross-Site Request Forgery (CSRF) vulnerability in Zzzcms Zzzphp 1.6.1

There is a CSRF in ZZZCMS zzzphp V1.6.1 via a /admin015/save.php?act=editfile request.

6.8
2019-02-25 CVE-2019-9152 Hdfgroup Out-Of-Bounds Read vulnerability in Hdfgroup Hdf5 1.10.4

An issue was discovered in the HDF HDF5 1.10.4 library.

6.8
2019-02-25 CVE-2019-9151 Hdfgroup Out-Of-Bounds Read vulnerability in Hdfgroup Hdf5 1.10.4

An issue was discovered in the HDF HDF5 1.10.4 library.

6.8
2019-02-25 CVE-2019-9144 Exiv2 Uncontrolled Recursion vulnerability in Exiv2 0.27

An issue was discovered in Exiv2 0.27.

6.8
2019-02-25 CVE-2019-9143 Exiv2 Uncontrolled Recursion vulnerability in Exiv2 0.27

An issue was discovered in Exiv2 0.27.

6.8
2019-02-25 CVE-2019-9116 Sublimetext
Microsoft
Untrusted Search Path vulnerability in Sublimetext Sublime Text 3 3.1.1

** DISPUTED ** DLL hijacking is possible in Sublime Text 3 version 3.1.1 build 3176 on 32-bit Windows platforms because a Trojan horse api-ms-win-core-fibers-l1-1-1.dll or api-ms-win-core-localization-l1-2-1.dll file may be loaded if a victim uses sublime_text.exe to open a .txt file within an attacker's %LOCALAPPDATA%\Temp\sublime_text folder.

6.8
2019-02-25 CVE-2019-9114 Libming Out-Of-Bounds Write vulnerability in Libming Ming 0.4.8

Ming (aka libming) 0.4.8 has an out of bounds write vulnerability in the function strcpyext() in the decompile.c file in libutil.a.

6.8
2019-02-25 CVE-2019-9113 Libming Null Pointer Dereference vulnerability in Libming Ming 0.4.8

Ming (aka libming) 0.4.8 has a NULL pointer dereference in the function getString() in the decompile.c file in libutil.a.

6.8
2019-02-25 CVE-2018-5839 Qualcomm Improper Privilege Management vulnerability in Qualcomm products

Improperly configured memory protection allows read/write access to modem image from HLOS kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9150, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS605, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SXR1130.

6.6
2019-02-26 CVE-2019-9181 Schoolcms Unrestricted Upload of File With Dangerous Type vulnerability in Schoolcms 2.3.1

SchoolCMS version 2.3.1 allows file upload via the logo upload feature at admin.php?m=admin&c=site&a=save by using the .jpg extension, changing the Content-Type to image/php, and placing PHP code after the JPEG data.

6.5
2019-02-25 CVE-2018-20063 Gurock Unrestricted Upload of File With Dangerous Type vulnerability in Gurock Testrail 5.6.0.3853

An issue was discovered in Gurock TestRail 5.6.0.3853.

6.5
2019-02-25 CVE-2019-9122 D Link Unspecified vulnerability in D-Link Dir-825 Rev.B Firmware 2.10

An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices.

6.5
2019-03-01 CVE-2019-9483 Amazon Inadequate Encryption Strength vulnerability in Amazon Ring Video Doorbell Firmware

Amazon Ring Doorbell before 3.4.7 mishandles encryption, which allows attackers to obtain audio and video data, or insert spoofed video that does not correspond to the actual person at the door.

6.4
2019-02-26 CVE-2019-7392 CA Improper Authentication vulnerability in CA Privileged Access Manager

An improper authentication vulnerability in CA Privileged Access Manager 3.x Web-UI jk-manager and jk-status allows a remote attacker to gain sensitive information or alter configuration.

6.4
2019-02-26 CVE-2019-6592 F5 Improper Certificate Validation vulnerability in F5 products

On BIG-IP 14.1.0-14.1.0.1, TMM may restart and produce a core file when validating SSL certificates in client SSL or server SSL profiles.

6.4
2019-02-25 CVE-2018-11932 Qualcomm Improper Input Validation vulnerability in Qualcomm products

Improper input validation can lead RW access to secure subsystem from HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9650, MDM9655, MSM8996AU, QCS605, SD 410/12, SD 615/16/SD 415, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SXR1130.

6.4
2019-02-25 CVE-2018-20790 Tecrail Path Traversal vulnerability in Tecrail Responsive Filemanager 9.13.4

tecrail Responsive FileManager 9.13.4 allows remote attackers to delete an arbitrary file as a consequence of a paths[0] path traversal mitigation bypass through the delete_file action in execute.php.

6.4
2019-02-25 CVE-2018-20789 Tecrail Path Traversal vulnerability in Tecrail Responsive Filemanager 9.13.4

tecrail Responsive FileManager 9.13.4 allows remote attackers to delete an arbitrary directory as a consequence of a paths[0] path traversal mitigation bypass through the delete_folder action in execute.php.

6.4
2019-02-28 CVE-2019-3582 Mcafee Unspecified vulnerability in Mcafee Endpoint Security

Privilege Escalation vulnerability in Microsoft Windows client in McAfee Endpoint Security (ENS) 10.6.1 and earlier allows local users to gain elevated privileges via a specific set of circumstances.

6.1
2019-02-25 CVE-2019-1683 Cisco Improper Certificate Validation vulnerability in Cisco products

A vulnerability in the certificate handling component of the Cisco SPA112, SPA525, and SPA5X5 Series IP Phones could allow an unauthenticated, remote attacker to listen to or control some aspects of a Transport Level Security (TLS)-encrypted Session Initiation Protocol (SIP) conversation.

5.8
2019-03-01 CVE-2019-9547 Spdk Improper Input Validation vulnerability in Spdk Storage Performance Development KIT

In Storage Performance Development Kit (SPDK) before 19.01, a malicious vhost client (i.e., virtual machine) could carefully construct a circular descriptor chain that would result in a partial denial of service in the SPDK vhost target, because the vhost target did not properly detect such chains.

5.0
2019-03-01 CVE-2018-20799 Netgate Unspecified vulnerability in Netgate Pfsense 2.4.4

In pfSense 2.4.4_1, blocking of source IP addresses on the basis of failed HTTPS authentication is inconsistent with blocking of source IP addresses on the basis of failed SSH authentication (the behavior does not match the sshguard documentation), which might make it easier for attackers to bypass intended access restrictions.

5.0
2019-03-01 CVE-2018-20798 Netgate Incorrect Permission Assignment FOR Critical Resource vulnerability in Netgate Pfsense 2.4.4

The expiretable configuration in pfSense 2.4.4_1 establishes block durations that are incompatible with the block durations implemented by sshguard, which might make it easier for attackers to bypass intended access restrictions.

5.0
2019-03-01 CVE-2019-9484 Carel Missing Authentication FOR Critical Function vulnerability in Carel Pcoweb Card Firmware

The Glen Dimplex Deutschland GmbH implementation of the Carel pCOWeb configuration tool allows remote attackers to obtain access via an HTTP session on port 10000, as demonstrated by reading the modem password (which is 1234), or reconfiguring "party mode" or "vacation mode."

5.0
2019-02-28 CVE-2018-12403 Mozilla
Canonical
If a site is loaded over a HTTPS connection but loads a favicon resource over HTTP, the mixed content warning is not displayed to users.
5.0
2019-02-28 CVE-2018-12401 Mozilla
Canonical
Improper Input Validation vulnerability in multiple products

Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string.

5.0
2019-02-28 CVE-2018-12400 Mozilla
Google
Information Exposure vulnerability in Mozilla Firefox

In private browsing mode on Firefox for Android, favicons are cached in the cache/icons folder as they are in non-private mode.

5.0
2019-02-28 CVE-2018-12395 Mozilla
Debian
Canonical
Redhat
Unspecified vulnerability in Mozilla Firefox and Firefox ESR

By rewriting the Host: request headers using the webRequest API, a WebExtension can bypass domain restrictions through domain fronting.

5.0
2019-02-28 CVE-2018-12393 Mozilla
Debian
Canonical
Redhat
Integer Overflow OR Wraparound vulnerability in multiple products

A potential vulnerability was found in 32-bit builds where an integer overflow during the conversion of scripts to an internal UTF-16 representation could result in allocating a buffer too small for the conversion.

5.0
2019-02-28 CVE-2019-1997 Google USE of Insufficiently Random Values vulnerability in Google Android

In random_get_bytes of random.c, there is a possible degradation of randomness due to an insecure default value.

5.0
2019-02-28 CVE-2019-3598 Mcafee Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Mcafee Agent

Buffer Access with Incorrect Length Value in McAfee Agent (MA) 5.x allows remote unauthenticated users to potentially cause a denial of service via specifically crafted UDP packets.

5.0
2019-02-28 CVE-2019-9214 Wireshark
Debian
Null Pointer Dereference vulnerability in multiple products

In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the RPCAP dissector could crash.

5.0
2019-02-28 CVE-2019-9209 Wireshark
Debian
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and related dissectors could crash.

5.0
2019-02-28 CVE-2019-9208 Wireshark
Debian
Null Pointer Dereference vulnerability in multiple products

In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the TCAP dissector could crash.

5.0
2019-02-27 CVE-2019-4061 IBM Information Exposure vulnerability in IBM Bigfix Platform

IBM BigFix Platform 9.2 and 9.5 could allow an attacker to query the relay remotely and gather information about the updates and fixlets deployed to the associated sites due to not enabling authenticated access.

5.0
2019-02-27 CVE-2019-5491 Netapp Unspecified vulnerability in Netapp Clustered Data Ontap 9.0/9.1/9.3

Clustered Data ONTAP versions prior to 9.1P15 and 9.3 prior to 9.3P7 are susceptible to a vulnerability which discloses sensitive information to an unauthenticated user.

5.0
2019-02-26 CVE-2019-9192 GNU Uncontrolled Recursion vulnerability in GNU Glibc

** DISPUTED ** In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by '(|)(\\1\\1)*' in grep, a different issue than CVE-2018-20796.

5.0
2019-02-26 CVE-2018-20796 GNU
Netapp
Uncontrolled Recursion vulnerability in multiple products

In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by '(\227|)(\\1\\1|t1|\\\2537)+' in grep.

5.0
2019-02-26 CVE-2009-5155 GNU
Netapp
Data Processing Errors vulnerability in multiple products

In the GNU C Library (aka glibc or libc6) before 2.28, parse_reg_exp in posix/regcomp.c misparses alternatives, which allows attackers to cause a denial of service (assertion failure and application exit) or trigger an incorrect result by attempting a regular-expression match.

5.0
2019-02-25 CVE-2018-11935 Qualcomm Improper Input Validation vulnerability in Qualcomm products

Improper input validation might result in incorrect app id returned to the caller Instead of returning failure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9607, MDM9650, MDM9655, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 615/16/SD 415, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM630, SDM660, SXR1130.

5.0
2019-02-25 CVE-2018-20795 Tecrail Path Traversal vulnerability in Tecrail Responsive Filemanager 9.13.4

tecrail Responsive FileManager 9.13.4 allows remote attackers to read arbitrary files via path traversal with the path parameter, through the copy_cut action in ajax_calls.php and the paste_clipboard action in execute.php.

5.0
2019-02-25 CVE-2018-20794 Tecrail Path Traversal vulnerability in Tecrail Responsive Filemanager 9.13.4

tecrail Responsive FileManager 9.13.4 allows remote attackers to write to an arbitrary image file (jpg/jpeg/png) via path traversal with the path parameter, through the save_img action in ajax_calls.php.

5.0
2019-02-25 CVE-2018-20793 Tecrail Path Traversal vulnerability in Tecrail Responsive Filemanager 9.13.4

tecrail Responsive FileManager 9.13.4 allows remote attackers to write to an arbitrary file as a consequence of a paths[0] path traversal mitigation bypass, through the create_file action in execute.php.

5.0
2019-02-25 CVE-2018-20792 Tecrail Path Traversal vulnerability in Tecrail Responsive Filemanager 9.13.4

tecrail Responsive FileManager 9.13.4 allows remote attackers to read arbitrary file via path traversal with the path parameter, through the get_file action in ajax_calls.php.

5.0
2019-02-25 CVE-2019-9126 D Link Information Exposure vulnerability in D-Link Dir-825 Rev.B Firmware 2.10

An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices.

5.0
2019-02-28 CVE-2019-1998 Google Unspecified vulnerability in Google Android 9.0

In event_handler of keymaster_app.c, there is possible resource exhaustion due to a table being lost on reboot.

4.9
2019-02-27 CVE-2019-5671 Nvidia
Microsoft
Missing Release of Resource After Effective Lifetime vulnerability in Nvidia GPU Driver

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the software does not release a resource after its effective lifetime has ended, which may lead to denial of service.

4.9
2019-02-25 CVE-2018-11948 Qualcomm Improper Validation of Array Index vulnerability in Qualcomm products

Exceeding the limit of usage entries are not tracked and the information will be lost causing the content to lose continuity in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in versions MSM8996AU, QCS605, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.

4.9
2019-02-25 CVE-2018-11864 Qualcomm Improper Input Validation vulnerability in Qualcomm products

Bytes can be written to fuses from Secure region which can be read later by HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in versions IPQ8074, MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCA8081, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.

4.9
2019-02-25 CVE-2018-11845 Qualcomm Information Exposure vulnerability in Qualcomm products

Usage of non-time-constant comparison functions can lead to information leakage through side channel analysis in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in versions MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.

4.9
2019-02-25 CVE-2018-11820 Qualcomm Unspecified vulnerability in Qualcomm products

Use of non-time constant memcmp function creates side channel that leaks information and leads to cryptographic issues in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in versions IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MDM9655, MSM8996AU, QCA8081, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 800, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.

4.9
2019-02-25 CVE-2019-1689 Cisco Improper Input Validation vulnerability in Cisco Webex Teams

A vulnerability in the client application for iOS of Cisco Webex Teams could allow an authenticated, remote attacker to upload arbitrary files within the scope of the iOS application.

4.9
2019-02-25 CVE-2019-9162 Linux
Netapp
Improper Validation of Array Index vulnerability in multiple products

In the Linux kernel before 4.20.12, net/ipv4/netfilter/nf_nat_snmp_basic_main.c in the SNMP NAT module has insufficient ASN.1 length checks (aka an array index error), making out-of-bounds read and write operations possible, leading to an OOPS or local privilege escalation.

4.6
2019-02-25 CVE-2019-6265 Cordaware Unspecified vulnerability in Cordaware Bestinformed

The Scripting and AutoUpdate functionality in Cordaware bestinformed Microsoft Windows client versions before 6.2.1.0 are affected by insecure implementations which allow remote attackers to execute arbitrary commands and escalate privileges.

4.6
2019-02-25 CVE-2018-13914 Qualcomm Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Qualcomm products

Lack of input validation for data received from user space can lead to an out of bound array issue in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in version MDM9150, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 636, SD 820A, SD 835, SDM630, SDM660, SDX20.

4.6
2019-02-25 CVE-2018-13913 Qualcomm Improper Validation of Array Index vulnerability in Qualcomm products

Improper validation of array index can lead to unauthorized access while processing debugFS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in version MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 425, SD 439 / SD 429, SD 615/16/SD 415, SD 625, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24.

4.6
2019-02-25 CVE-2018-11938 Qualcomm Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Qualcomm products

Improper input validation for argument received from HLOS can lead to buffer overflows and unexpected behavior in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in versions IPQ8074, MDM9150, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCA8081, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.

4.6
2019-03-02 CVE-2019-8278 Invisioncommunity Cross-Site Scripting vulnerability in Invisioncommunity Invision Power Board 3.4.7/3.4.8

Stored XSS in Invision Power Board versions 3.3.1 - 3.4.8 leads to Remote Code Execution.

4.3
2019-02-28 CVE-2019-6547 Deltaww Out-Of-Bounds Read vulnerability in Deltaww Screeneditor 1.00.84

Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.84 and prior.

4.3
2019-02-28 CVE-2018-18499 Mozilla Origin Validation Error vulnerability in Mozilla Firefox and Firefox ESR

A same-origin policy violation allowing the theft of cross-origin URL entries when using a meta http-equiv="refresh" on a page to cause a redirection to another site using performance.getEntries().

4.3
2019-02-28 CVE-2018-18497 Mozilla
Canonical
Limitations on the URIs allowed to WebExtensions by the browser.windows.create API can be bypassed when a pipe in the URL field is used within the extension to load multiple pages as a single argument.
4.3
2019-02-28 CVE-2018-18495 Mozilla
Canonical
Incorrect Permission Assignment FOR Critical Resource vulnerability in multiple products

WebExtension content scripts can be loaded into about: pages in some circumstances, in violation of the permissions granted to extensions.

4.3
2019-02-28 CVE-2018-18494 Mozilla
Debian
Canonical
Redhat
Origin Validation Error vulnerability in Mozilla Firefox and Firefox ESR

A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries().

4.3
2019-02-28 CVE-2018-12402 Mozilla
Canonical
Origin Validation Error vulnerability in multiple products

The internal WebBrowserPersist code does not use correct origin context for a resource being saved.

4.3
2019-02-28 CVE-2018-12399 Mozilla
Canonical
Improper Authentication vulnerability in multiple products

When a new protocol handler is registered, the API accepts a title argument which can be used to mislead users about which domain is registering the new protocol.

4.3
2019-02-28 CVE-2018-12398 Mozilla
Canonical
By using the reflected URL in some special resource URIs, such as chrome:, it is possible to inject stylesheets and bypass Content Security Policy (CSP).
4.3
2019-02-28 CVE-2018-12396 Mozilla
Debian
Canonical
Redhat
Incorrect Permission Assignment for Critical Resource vulnerability in Mozilla Firefox and Firefox ESR

A vulnerability where a WebExtension can run content scripts in disallowed contexts following navigation or other events.

4.3
2019-02-28 CVE-2019-3599 Mcafee Information Exposure vulnerability in Mcafee Agent

Information Disclosure vulnerability in Remote logging (which is disabled by default) in McAfee Agent (MA) 5.x allows remote unauthenticated users to access sensitive information via remote logging when it is enabled.

4.3
2019-02-28 CVE-2019-9226 Baigo Cross-Site Scripting vulnerability in Baigo CMS 2.1.1

An issue was discovered in baigo CMS 2.1.1.

4.3
2019-02-27 CVE-2019-1559 Openssl
Canonical
Debian
Netapp
F5
Tenable
Opensuse
Information Exposure Through Discrepancy vulnerability in multiple products

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is received with an invalid MAC.

4.3
2019-02-27 CVE-2019-9211 GNU
Fedoraproject
Suse
Reachable Assertion vulnerability in multiple products

There is a reachable assertion abort in the function write_long_string_missing_values() in data/sys-file-writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to denial of service.

4.3
2019-02-27 CVE-2019-8410 Maccms Cross-Site Scripting vulnerability in Maccms

Maccms 8.0 allows XSS via the inc/config/cache.php t_key parameter because template/paody/html/vod_type.html mishandles the keywords parameter, and a/tpl/module/db.php only filters the t_name parameter (not t_key).

4.3
2019-02-27 CVE-2018-20797 Podofo Project Buffer Errors vulnerability in Podofo Project Podofo 0.9.6

An issue was discovered in PoDoFo 0.9.6.

4.3
2019-02-26 CVE-2019-9191 Etsi Cryptographic Issues vulnerability in Etsi Enterprise Transport Security

The ETSI Enterprise Transport Security (ETS, formerly known as eTLS) protocol does not provide per-session forward secrecy.

4.3
2019-02-26 CVE-2019-6595 F5 Cross-Site Scripting vulnerability in F5 Big-Ip Access Policy Manager

Cross-site scripting (XSS) vulnerability in F5 BIG-IP Access Policy Manager (APM) 11.5.x and 11.6.x Admin Web UI.

4.3
2019-02-26 CVE-2019-6594 F5 Infinite Loop vulnerability in F5 products

On BIG-IP 11.5.1-11.6.3.2, 12.1.3.4-12.1.3.7, 13.0.0 HF1-13.1.1.1, and 14.0.0-14.0.0.2, Multi-Path TCP (MPTCP) does not protect against multiple zero length DATA_FINs in the reassembly queue, which can lead to an infinite loop in some circumstances.

4.3
2019-02-26 CVE-2019-6593 F5 Cryptographic Issues vulnerability in F5 products

On BIG-IP 11.5.1-11.5.4, 11.6.1, and 12.1.0, a virtual server configured with a Client SSL profile may be vulnerable to a chosen ciphertext attack against CBC ciphers.

4.3
2019-02-26 CVE-2019-9168 Woocommerce Cross-Site Scripting vulnerability in Woocommerce

WooCommerce before 3.5.5 allows XSS via a Photoswipe caption.

4.3
2019-02-25 CVE-2019-9145 Hsycms Cross-Site Scripting vulnerability in Hsycms 1.1

An issue was discovered in Hsycms V1.1.

4.3
2019-02-25 CVE-2019-9142 B3Log Cross-Site Scripting vulnerability in B3Log Symphony

An issue was discovered in b3log Symphony (aka Sym) before v3.4.7.

4.3
2019-02-25 CVE-2018-20791 Tecrail Cross-Site Scripting vulnerability in Tecrail Responsive Filemanager 9.13.4

tecrail Responsive FileManager 9.13.4 allows XSS via a media file upload with an XSS payload in the name, because of mishandling of the media_preview action.

4.3
2019-02-25 CVE-2018-20788 Micode Integer Overflow OR Wraparound vulnerability in Micode Xiaomi Perseus-P-Oss

drivers/leds/leds-aw2023.c in the led driver for custom Linux kernels on the Xiaomi Redmi 6pro daisy-o-oss phone has several integer overflows because of a left-shifting operation when the right-hand operand can be equal to or greater than the integer length.

4.3
2019-02-25 CVE-2019-9110 Wuzhicms Cross-Site Scripting vulnerability in Wuzhicms Wuzhi CMS 4.1.0

XSS exists in WUZHI CMS 4.1.0 via index.php?m=content&f=postinfo&v=listing&set_iframe=[XSS] to coreframe/app/content/postinfo.php.

4.3
2019-02-25 CVE-2019-9109 Wuzhicms Cross-Site Scripting vulnerability in Wuzhicms Wuzhi CMS 4.1.0

XSS exists in WUZHI CMS 4.1.0 via index.php?m=message&f=message&v=add&username=[XSS] to coreframe/app/message/message.php.

4.3
2019-02-25 CVE-2019-9108 Wuzhicms Cross-Site Scripting vulnerability in Wuzhicms 4.1.0

XSS exists in WUZHI CMS 4.1.0 via index.php?m=core&f=map&v=baidumap&x=[XSS]&y=[XSS] to coreframe/app/core/map.php.

4.3
2019-02-25 CVE-2019-9107 Wuzhicms Cross-Site Scripting vulnerability in Wuzhicms Wuzhi CMS 4.1.0

XSS exists in WUZHI CMS 4.1.0 via index.php?m=attachment&f=imagecut&v=init&imgurl=[XSS] to coreframe/app/attachment/imagecut.php.

4.3
2019-02-27 CVE-2018-1775 IBM Information Exposure vulnerability in IBM products

IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products versions 7.5 through 8.2 could allow an authenticated user to download arbitrary files from the operating system.

4.0

10 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2019-02-28 CVE-2018-12397 Mozilla
Redhat
Debian
Canonical
Information Exposure vulnerability in Mozilla Firefox and Firefox ESR

A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user.

3.6
2019-03-03 CVE-2019-9550 Dhcms Project Cross-Site Scripting vulnerability in Dhcms Project Dhcms 20170918

DhCms through 2017-09-18 has admin.php?r=admin/Index/index XSS.

3.5
2019-03-02 CVE-2019-8279 Vanillaforums Cross-Site Scripting vulnerability in Vanillaforums Vanilla Forums

Multiple stored XSS in Vanilla Forums before 2.5 allow remote attackers to inject arbitrary JavaScript code into any message on forum.

3.5
2019-03-01 CVE-2019-9482 Misp Information Exposure vulnerability in Misp 2.4.102

In MISP 2.4.102, an authenticated user can view sightings that they should not be eligible for.

3.5
2019-02-27 CVE-2018-20244 Apache Cross-Site Scripting vulnerability in Apache Airflow

In Apache Airflow before 1.10.2, a malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views.

3.5
2019-02-28 CVE-2019-1996 Google Out-Of-Bounds Read vulnerability in Google Android 8.0/8.1/9.0

In avrc_pars_browse_rsp of avrc_pars_ct.cc, there is a possible out of bounds read due to a missing bounds check.

3.3
2019-02-28 CVE-2019-2001 Google Information Exposure vulnerability in Google Android

The permissions on /proc/iomem were world-readable.

2.1
2019-02-28 CVE-2019-1995 Google Information Exposure vulnerability in Google Android

In ComposeActivityEmail of ComposeActivityEmail.java, there is a possible way to silently attach files to an email due to a confused deputy.

2.1
2019-02-27 CVE-2019-7006 Avaya Cryptographic Issues vulnerability in Avaya One-X Communicator 6.2

Avaya one-X Communicator uses weak cryptographic algorithms in the client authentication component that could allow a local attacker to decrypt sensitive information.

2.1
2019-02-25 CVE-2018-13912 Qualcomm Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Qualcomm products

Arbitrary write issue can occur when user provides kernel address in compat mode in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 425, SD 439 / SD 429, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24.

2.1