| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 61038 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| 4.9 | 2018-03-30 | CVE-2018-9151 | cve | A NULL pointer dereference bug in the function ObReferenceObjectByHandle in the Kingsoft Internet Security 9+ kernel driver KWatch3.sys allows local non-privileged users to cras... |
| 4.6 | 2018-03-30 | CVE-2018-7566 | cve | The Linux kernel 4.15 has a Buffer Overflow via an SNDRV_SEQ_IOCTL_SET_CLIENT_POOL ioctl write operation to /dev/snd/seq by a local user. |
| 4.3 | 2018-03-30 | CVE-2018-7203 | cve | Cross-site scripting (XSS) vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to inject arbitrary web script or HTML via the friendlyname parameter to rpc... |
| 5.8 | 2018-03-30 | CVE-2018-9146 | cve | In Exiv2 0.26, there is an out-of-bounds read in Exiv2::IptcData::printStructure in image.cpp, a different vulnerability than CVE-2017-17724. It could result in denial of servic... |
| 4.3 | 2018-03-30 | CVE-2018-9145 | cve | In the DataBuf class in include/exiv2/types.hpp in Exiv2 0.26, an issue exists in the constructor with an initial buffer size. A large size value may lead to a SIGABRT during an... |
| 5.8 | 2018-03-30 | CVE-2018-9144 | cve | In Exiv2 0.26, there is an out-of-bounds read in Exiv2::Internal::binaryToString in image.cpp. It could result in denial of service or information disclosure. |
| 4.3 | 2018-03-30 | CVE-2018-9140 | cve | On Samsung mobile devices with M(6.0) software, the Email application allows XSS via an event attribute and arbitrary file loading via a src attribute, aka SVE-2017-10747. |
| 6.8 | 2018-03-30 | CVE-2018-9135 | cve | In ImageMagick 7.0.7-24 Q16, there is a heap-based buffer over-read in IsWEBPImageLossless in coders/webp.c. |
| 4.3 | 2018-03-30 | CVE-2018-9133 | cve | ImageMagick 7.0.7-26 Q16 has excessive iteration in the DecodeLabImage and EncodeLabImage functions (coders/tiff.c), which results in a hang (tens of minutes) with a tiny PoC fi... |
| 4.3 | 2018-03-30 | CVE-2018-9132 | cve | libming 0.4.8 has a NULL pointer dereference in the getInt function of the decompile.c file. Remote attackers could leverage this vulnerability to cause a denial of service via ... |
| 4.3 | 2018-03-30 | CVE-2018-9130 | cve | IBOS 4.4.3 has XSS via a company full name. |
| 4.3 | 2018-03-29 | DSA-4157 | Debian | openssl security update |
| 4.7 | 2018-03-29 | USN-3531-3 | Ubuntu | intel-microcode update |
| 4.3 | 2018-03-29 | CVE-2018-6588 | cve | CA API Developer Portal 3.5 up to and including 3.5 CR5 has a reflected cross-site scripting vulnerability related to the apiExplorer. |
| 4.3 | 2018-03-29 | CVE-2018-6587 | cve | CA API Developer Portal 3.5 up to and including 3.5 CR6 has a reflected cross-site scripting vulnerability related to the widgetID variable. |
| 4.3 | 2018-03-29 | CVE-2018-6586 | cve | CA API Developer Portal 3.5 up to and including 3.5 CR6 has a stored cross-site scripting vulnerability related to profile picture processing. |
| 4 | 2018-03-28 | CVE-2018-0196 | cve | A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to write arbitrary files to the operating system ... |
| 4.3 | 2018-03-28 | CVE-2018-7676 | cve | The NetIQ Identity Manager, in versions prior to 4.7, userapp with log / trace enabled may leak sensitive information. |
| 5.8 | 2018-03-28 | CVE-2018-7674 | cve | The NetIQ Identity Manager user console, in versions prior to 4.7, is susceptible to URL redirection. |
| 6.8 | 2018-03-28 | CVE-2018-9107 | cve | CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcyMailing extension before 5.9.6 for Joomla! via a value that is mishan... |
| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 61038 |
