CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In July 2018

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
151 CVE-2018-14446 787 DoS Overflow 2018-07-20 2020-08-24
6.8
None Remote Medium Not required Partial Partial Partial
MP4Integer32Property::Read in atom_avcC.cpp in MP4v2 2.1.0 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted MP4 file.
152 CVE-2018-14445 835 DoS 2018-07-20 2019-10-03
4.3
None Remote Medium Not required None None Partial
In Bento4 v1.5.1-624, AP4_File::ParseStream in Ap4File.cpp allows remote attackers to cause a denial of service (infinite loop) via a crafted MP4 file.
153 CVE-2018-14444 125 Overflow 2018-07-20 2018-09-17
5.0
None Remote Low Not required None None Partial
libdxfrw 0.6.3 has an Integer Overflow in dwgCompressor::decompress18 in dwgutil.cpp, leading to an out-of-bounds read and application crash.
154 CVE-2018-14443 119 DoS Overflow 2018-07-20 2018-08-23
4.3
None Remote Medium Not required None None Partial
get_first_owned_object in dwg.c in GNU LibreDWG 0.5.1036 allows remote attackers to cause a denial of service (SEGV).
155 CVE-2018-14442 416 Exec Code 2018-07-20 2018-09-17
7.5
None Remote Low Not required Partial Partial Partial
Foxit Reader before 9.2 and PhantomPDF before 9.2 have a Use-After-Free that leads to Remote Code Execution, aka V-88f4smlocs.
156 CVE-2018-14441 434 2018-07-20 2018-09-14
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. admin/admin/fileUploadAction_fileUpload.action allows arbitrary file upload, as demonstrated by a .jsp file with the image/jpeg content type.
157 CVE-2018-14440 89 Sql 2018-07-20 2018-09-14
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. SQL injection exists via the admin/noticeManageAction_queryNotice.action noticeInfo parameter.
158 CVE-2018-14439 682 2018-07-20 2018-09-17
5.0
None Remote Low Not required None Partial None
espritblock eos4j, an unofficial SDK for EOS, through 2018-07-12 mishandles floating-point numbers with more than four digits after the decimal point, which might allow attackers to trigger currency transfers of unintended amounts.
159 CVE-2018-14438 20 2018-07-20 2018-09-17
5.0
None Remote Low Not required None Partial None
In Wireshark through 2.6.2, the create_app_running_mutex function in wsutil/file_util.c calls SetSecurityDescriptorDacl to set a NULL DACL, which allows attackers to modify the access control arbitrarily.
160 CVE-2018-14437 772 2018-07-20 2019-10-03
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-4 has a memory leak in parse8BIM in coders/meta.c.
161 CVE-2018-14436 772 2018-07-20 2019-10-03
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-4 has a memory leak in ReadMIFFImage in coders/miff.c.
162 CVE-2018-14435 772 2018-07-20 2019-10-03
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c.
163 CVE-2018-14434 772 2018-07-20 2019-10-03
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.8-4 has a memory leak for a colormap in WriteMPCImage in coders/mpc.c.
164 CVE-2018-14432 200 Bypass +Info 2018-07-31 2021-08-04
3.5
None Remote Medium ??? Partial None None
In the Federation component of OpenStack Keystone before 11.0.4, 12.0.0, and 13.0.0, an authenticated "GET /v3/OS-FEDERATION/projects" request may bypass intended access restrictions on listing projects. An authenticated user may discover projects they have no authority to access, leaking all projects in the deployment and their attributes. Only Keystone with the /v3/OS-FEDERATION endpoint enabled via policy.json is affected.
165 CVE-2018-14430 79 XSS 2018-07-25 2018-09-20
4.3
None Remote Medium Not required None Partial None
The Mondula Multi Step Form plugin through 1.2.5 for WordPress allows XSS via the fw_data [id][1], fw_data [id][2], fw_data [id][3], fw_data [id][4], or email field of the contact form, exploitable with an fw_send_email action to wp-admin/admin-ajax.php.
166 CVE-2018-14423 369 DoS 2018-07-19 2020-09-09
5.0
None Remote Low Not required None None Partial
Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in lib/openjp3d/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (application crash).
167 CVE-2018-14422 79 XSS 2018-07-20 2018-09-17
4.3
None Remote Medium Not required None Partial None
blog/index.php in SansCMS 0.7 has XSS via the q parameter.
168 CVE-2018-14421 352 Exec Code CSRF 2018-07-20 2018-09-14
6.8
None Remote Medium Not required Partial Partial Partial
SeaCMS v6.61 allows Remote Code execution by placing PHP code in a movie picture address (aka v_pic) to /admin/admin_video.php (aka /backend/admin_video.php). The code is executed by visiting /details/index.php. This can also be exploited through CSRF.
169 CVE-2018-14420 352 CSRF 2018-07-20 2018-09-14
6.8
None Remote Medium Not required Partial Partial Partial
MetInfo 6.0.0 allows a CSRF attack to add a user account via a doaddsave action to admin/index.php, as demonstrated by an admin/index.php?anyid=47&n=admin&c=admin_admin&a=doaddsave URI.
170 CVE-2018-14419 79 XSS 2018-07-20 2018-09-14
3.5
None Remote Medium ??? None Partial None
MetInfo 6.0.0 allows XSS via a modified name of the navigation bar on the home page.
171 CVE-2018-14418 89 Sql 2018-07-20 2018-09-17
7.5
None Remote Low Not required Partial Partial Partial
In Msvod Cms v10, SQL Injection exists via an images/lists?cid= URI.
172 CVE-2018-14415 79 XSS 2018-07-20 2018-09-17
4.3
None Remote Medium Not required None Partial None
An issue was discovered in idreamsoft iCMS before 7.0.10. XSS exists via the fourth and fifth input elements on the admincp.php?app=prop&do=add screen.
173 CVE-2018-14404 476 DoS 2018-07-19 2020-09-10
5.0
None Remote Low Not required None None Partial
A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval() function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case. Applications processing untrusted XSL format inputs with the use of the libxml2 library may be vulnerable to a denial of service attack due to a crash of the application.
174 CVE-2018-14403 704 2018-07-19 2019-11-17
7.5
None Remote Low Not required Partial Partial Partial
MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access.
175 CVE-2018-14402 787 2018-07-19 2018-09-17
5.0
None Remote Low Not required None None Partial
axmldec 1.2.0 has an out-of-bounds write in the jitana::axml_parser::parse_start_namespace function in lib/jitana/util/axml_parser.cpp.
176 CVE-2018-14401 125 2018-07-19 2018-09-17
5.0
None Remote Low Not required None None Partial
CopyData in AxmlParser.c in AXML Parser through 2018-01-04 has an out-of-bounds read.
177 CVE-2018-14399 94 Exec Code 2018-07-19 2018-09-17
7.5
None Remote Low Not required Partial Partial Partial
libs\classes\attachment.class.php in PHPCMS 9.6.0 allows remote attackers to upload and execute arbitrary PHP code via a .txt?.php#.jpg URI in the SRC attribute of an IMG element within info[content] JSON data to the index.php?m=member&c=index&a=register URI.
178 CVE-2018-14395 369 DoS 2018-07-19 2021-02-05
4.3
None Remote Medium Not required None None Partial
libavformat/movenc.c in FFmpeg 3.2 and 4.0.2 allows attackers to cause a denial of service (application crash caused by a divide-by-zero error) with a user crafted audio file when converting to the MOV audio format.
179 CVE-2018-14394 369 DoS 2018-07-19 2019-01-08
4.3
None Remote Medium Not required None None Partial
libavformat/movenc.c in FFmpeg before 4.0.2 allows attackers to cause a denial of service (application crash caused by a divide-by-zero error) with a user crafted Waveform audio file.
180 CVE-2018-14392 79 XSS 2018-07-19 2018-09-13
4.3
None Remote Medium Not required None Partial None
The New Threads plugin before 1.2 for MyBB has XSS.
181 CVE-2018-14389 89 Sql 2018-07-18 2018-09-12
7.5
None Remote Low Not required Partial Partial Partial
joyplus-cms 1.6.0 has SQL Injection via the manager/admin_ajax.php val parameter.
182 CVE-2018-14388 79 XSS 2018-07-18 2018-09-12
3.5
None Remote Medium ??? None Partial None
joyplus-cms 1.6.0 has XSS via the manager/admin_ajax.php can_search_device array parameter.
183 CVE-2018-14387 384 2018-07-18 2018-09-19
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in WonderCMS before 2.5.2. An attacker can create a new session on a web application and record the associated session identifier. The attacker then causes the victim to authenticate against the server using the same session identifier. The attacker can access the user's account through the active session. The Session Fixation attack fixes a session on the victim's browser, so the attack starts before the user logs in.
184 CVE-2018-14382 79 XSS 2018-07-18 2018-09-12
4.3
None Remote Medium Not required None Partial None
InstantCMS 2.10.1 has /redirect?url= XSS.
185 CVE-2018-14381 601 2018-07-18 2018-09-14
5.8
None Remote Medium Not required Partial Partial None
Pagekit before 1.0.14 has a /user/login?redirect= open redirect vulnerability.
186 CVE-2018-14380 79 XSS 2018-07-18 2018-09-14
4.3
None Remote Medium Not required None Partial None
In Graylog before 2.4.6, XSS was possible in typeahead components, related to components/common/TypeAheadInput.jsx and components/search/QueryInput.ts.
187 CVE-2018-14379 704 DoS Mem. Corr. 2018-07-18 2019-11-17
6.8
None Remote Medium Not required Partial Partial Partial
MP4Atom::factory in mp4atom.cpp in MP4v2 2.0.0 incorrectly uses the MP4ItemAtom data type in a certain case where MP4DataAtom is required, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted MP4 file, because access to the data structure has different expectations about layout as a result of this type confusion.
188 CVE-2018-14378 Overflow 2018-07-17 2018-07-31
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in LibTIFF 4.0.9. A buffer overflow can occur via an invalid or empty tif argument to TIFFWriteBufferSetup in tif_write.c, and it can be exploited (at a minimum) via the following high-level library API function: TIFFWriteTile.
189 CVE-2018-14375 Overflow 2018-07-17 2018-07-31
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in LibTIFF 4.0.9. A buffer overflow vulnerability can occur via an invalid or empty tif argument to TIFFRGBAImageOK in tif_getimage.c, and it can be exploited (at a minimum) via the following high-level library API functions: TIFFReadRGBAImage, TIFFRGBAImageOK, and TIFFRGBAImageBegin.
190 CVE-2018-14374 Overflow 2018-07-17 2018-07-31
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in LibTIFF 4.0.9. A buffer overflow can occur via an empty fmt argument to unixErrorHandler in tif_unix.c, and it can be exploited (at a minimum) via the following high-level library API functions: TIFFClientOpen, TIFFFdOpen, TIFFRawStripSize, TIFFCheckTile, TIFFComputeStrip, TIFFReadRawTile, TIFFUnRegisterCODEC, and TIFFWriteEncodedTile.
191 CVE-2018-14373 Overflow 2018-07-17 2018-07-31
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in LibTIFF 4.0.9. In TIFFFindField in tif_dirinfo.c, the structure tif is being dereferenced without first checking that the structure is not empty and has the requested fields (tif_foundfield). In the call sequences following from the affected library functions (TIFFVGetField, TIFFVGetFieldDefaulted, TIFFVStripSize, TIFFScanlineSize, TIFFTileSize, TIFFGetFieldDefaulted, and TIFFGetField), this sanitization of the tif structure is never being done and, hence, using them with an invalid or empty tif structure will trigger a buffer overflow, leading to a crash.
192 CVE-2018-14371 22 Dir. Trav. 2018-07-18 2018-09-17
5.0
None Remote Low Not required Partial None None
The getLocalePrefix function in ResourceManager.java in Eclipse Mojarra before 2.3.7 is affected by Directory Traversal via the loc parameter. A remote attacker can download configuration files or Java bytecodes from applications.
193 CVE-2018-14370 125 2018-07-19 2020-03-20
5.0
None Remote Low Not required None None Partial
In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/airpdcap.c via bounds checking that prevents a buffer over-read.
194 CVE-2018-14369 20 2018-07-19 2020-03-20
5.0
None Remote Low Not required None None Partial
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the HTTP2 dissector could crash. This was addressed in epan/dissectors/packet-http2.c by verifying that header data was found before proceeding to header decompression.
195 CVE-2018-14368 835 2018-07-19 2020-03-20
7.8
None Remote Low Not required None None Complete
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the Bazaar protocol dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-bzr.c by properly handling items that are too long.
196 CVE-2018-14367 252 2018-07-19 2020-03-20
5.0
None Remote Low Not required None None Partial
In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the CoAP protocol dissector could crash. This was addressed in epan/dissectors/packet-coap.c by properly checking for a NULL condition.
197 CVE-2018-14364 22 Exec Code Dir. Trav. 2018-07-18 2018-09-15
7.5
None Remote Low Not required Partial Partial Partial
GitLab Community and Enterprise Edition before 10.7.7, 10.8.x before 10.8.6, and 11.x before 11.0.4 allows Directory Traversal with write access and resultant remote code execution via the GitLab projects import component.
198 CVE-2018-14363 22 Dir. Trav. 2018-07-17 2020-05-21
5.0
None Remote Low Not required None Partial None
An issue was discovered in NeoMutt before 2018-07-16. newsrc.c does not properly restrict '/' characters that may have unsafe interaction with cache pathnames.
199 CVE-2018-14362 119 Overflow 2018-07-17 2020-05-19
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c does not forbid characters that may have unsafe interaction with message-cache pathnames, as demonstrated by a '/' character.
200 CVE-2018-14361 20 2018-07-17 2020-05-19
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in NeoMutt before 2018-07-16. nntp.c proceeds even if memory allocation fails for messages data.
Total number of vulnerabilities : 2175   Page : 1 2 3 4 (This Page)5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.