CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In February 2018

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
351 CVE-2018-6544 674 DoS 2018-02-02 2019-10-03
4.3
None Remote Medium Not required None None Partial
pdf_load_obj_stm in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 could reference the object stream recursively and therefore run out of error stack, which allows remote attackers to cause a denial of service via a crafted PDF document.
352 CVE-2018-6543 190 DoS Overflow 2018-02-02 2019-10-31
6.8
None Remote Medium Not required Partial Partial Partial
In GNU Binutils 2.30, there's an integer overflow in the function load_specific_debug_section() in objdump.c, which results in `malloc()` with 0 size. A crafted ELF file allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.
353 CVE-2018-6542 2018-02-02 2019-10-03
4.3
None Remote Medium Not required None None Partial
In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trailer seek value) caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c.
354 CVE-2018-6541 DoS 2018-02-02 2020-06-28
4.3
None Remote Medium Not required None None Partial
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address (when handling disk64_trailer local entries) in __zzip_fetch_disk_trailer (zzip/zip.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.
355 CVE-2018-6540 DoS 2018-02-02 2020-06-28
4.3
None Remote Medium Not required None None Partial
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.
356 CVE-2018-6537 119 Exec Code Overflow 2018-02-02 2018-02-15
7.5
None Remote Low Not required Partial Partial Partial
A buffer overflow vulnerability in the control protocol of Flexense SyncBreeze Enterprise v10.4.18 allows remote attackers to execute arbitrary code by sending a crafted packet to TCP port 9121.
357 CVE-2018-6536 732 Exec Code 2018-02-02 2019-10-03
4.9
None Local Low Not required None None Complete
An issue was discovered in Icinga 2.x through 2.8.1. The daemon creates an icinga2.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for icinga2.pid modification before a root script executes a "kill `cat /pathname/icinga2.pid`" command, as demonstrated by icinga2.init.d.cmake.
358 CVE-2018-6535 2018-02-27 2019-10-03
4.3
None Remote Medium Not required Partial None None
An issue was discovered in Icinga 2.x through 2.8.1. The lack of a constant-time password comparison function can disclose the password to an attacker.
359 CVE-2018-6534 476 2018-02-27 2018-03-16
4.3
None Remote Medium Not required None None Partial
An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash.
360 CVE-2018-6533 Exec Code 2018-02-27 2019-10-03
7.2
None Local Low Not required Complete Complete Complete
An issue was discovered in Icinga 2.x through 2.8.1. By editing the init.conf file, Icinga 2 can be run as root. Following this the program can be used to run arbitrary code as root. This was fixed by no longer using init.conf to determine account information for any root-executed code (a larger issue than CVE-2017-16933).
361 CVE-2018-6532 400 2018-02-27 2018-03-23
5.0
None Remote Low Not required None None Partial
An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted (authenticated and unauthenticated) requests, an attacker can exhaust a lot of memory on the server side, triggering the OOM killer.
362 CVE-2018-6526 200 +Info 2018-02-02 2018-04-08
5.0
None Remote Low Not required Partial None None
view_all_bug_page.php in MantisBT 2.10.0-development before 2018-02-02 allows remote attackers to discover the full path via an invalid filter parameter, related to a filter_ensure_valid_filter call in current_user_api.php.
363 CVE-2018-6525 20 DoS 2018-02-02 2018-02-21
6.1
None Local Low Not required Partial Partial Complete
In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKFsAv.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x220458.
364 CVE-2018-6524 20 DoS 2018-02-02 2018-02-21
6.1
None Local Low Not required Partial Partial Complete
In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKFsAv.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x220c20.
365 CVE-2018-6523 20 DoS 2018-02-02 2018-02-21
6.1
None Local Low Not required Partial Partial Complete
In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKFsAv.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x22045c.
366 CVE-2018-6522 20 DoS 2018-02-02 2018-02-21
6.1
None Local Low Not required Partial Partial Complete
In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKRgFtXp.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x220408.
367 CVE-2018-6521 Bypass 2018-02-02 2019-10-03
7.5
None Remote Low Not required Partial Partial Partial
The sqlauth module in SimpleSAMLphp before 1.15.2 relies on the MySQL utf8 charset, which truncates queries upon encountering four-byte characters. There might be a scenario in which this allows remote attackers to bypass intended access restrictions.
368 CVE-2018-6520 601 Bypass 2018-02-02 2018-02-15
5.8
None Remote Medium Not required Partial Partial None
SimpleSAMLphp before 1.15.2 allows remote attackers to bypass an open redirect protection mechanism via crafted authority data in a URL.
369 CVE-2018-6519 74 DoS 2018-02-02 2018-10-03
5.0
None Remote Low Not required None None Partial
The SAML2 library before 1.10.4, 2.x before 2.3.5, and 3.x before 3.1.1 in SimpleSAMLphp has a Regular Expression Denial of Service vulnerability for fraction-of-seconds data in a timestamp.
370 CVE-2018-6508 134 2018-02-09 2018-05-24
6.0
None Remote Medium ??? Partial Partial Partial
Puppet Enterprise 2017.3.x prior to 2017.3.3 are vulnerable to a remote execution bug when a specially crafted string was passed into the facter_task or puppet_conf tasks. This vulnerability only affects tasks in the affected modules, if you are not using puppet tasks you are not affected by this vulnerability.
371 CVE-2018-6506 79 XSS 2018-02-12 2018-03-06
3.5
None Remote Medium ??? None Partial None
Cross-Site Scripting (XSS) exists in the Add Forum feature in the Administrative Panel in miniBB 3.2.2 via crafted use of an onload attribute of an SVG element in the supertitle field.
372 CVE-2018-6489 611 2018-02-22 2018-03-20
7.5
None Remote Low Not required Partial Partial Partial
XML External Entity (XXE) vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32. This vulnerability can be exploited to allow XML External Entity (XXE)
373 CVE-2018-6488 94 Exec Code 2018-02-22 2019-10-09
7.5
None Remote Low Not required Partial Partial Partial
Arbitrary Code Execution vulnerability in Micro Focus Universal CMDB, version 4.10, 4.11, 4.12. This vulnerability could be remotely exploited to allow Arbitrary Code Execution.
374 CVE-2018-6487 200 +Info 2018-02-20 2019-10-09
5.0
None Remote Low Not required Partial None None
Remote Disclosure of Information in Micro Focus Universal CMDB Foundation Software, version numbers 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 4.10, 4.11. This vulnerability could be remotely exploited to allow disclosure of information.
375 CVE-2018-6486 611 2018-02-02 2019-10-09
7.5
None Remote Low Not required Partial Partial Partial
XML External Entity (XXE) vulnerability in Micro Focus Fortify Audit Workbench (AWB) and Micro Focus Fortify Software Security Center (SSC), versions 16.10, 16.20, 17.10. This vulnerability could be exploited to allow a XML External Entity (XXE) injection.
376 CVE-2018-6485 787 Overflow 2018-02-01 2020-08-24
7.5
None Remote Low Not required Partial Partial Partial
An integer overflow in the implementation of the posix_memalign in memalign functions in the GNU C Library (aka glibc or libc6) 2.26 and earlier could cause these functions to return a pointer to a heap area that is too small, potentially leading to heap corruption.
377 CVE-2018-6484 DoS 2018-02-01 2020-06-28
4.3
None Remote Medium Not required None None Partial
In ZZIPlib 0.13.67, there is a memory alignment error and bus error in the __zzip_fetch_disk_trailer function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.
378 CVE-2018-6481 119 Exec Code Overflow 2018-02-27 2020-09-22
7.5
None Remote Low Not required Partial Partial Partial
A buffer overflow vulnerability in the control protocol of Disk Savvy Enterprise v10.4.18 allows remote attackers to execute arbitrary code by sending a crafted packet to TCP port 9124.
379 CVE-2018-6470 200 +Info 2018-02-01 2021-09-08
5.0
None Remote Low Not required Partial None None
Nibbleblog 4.0.5 on macOS defaults to having .DS_Store in each directory, causing DS_Store information to leak.
380 CVE-2018-6469 79 XSS 2018-02-06 2018-02-28
4.3
None Remote Medium Not required None Partial None
A cross-site scripting (XSS) vulnerability in flickrRSS.php in the flickrRSS plugin 5.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the flickrRSS_tags parameter to wp-admin/options-general.php.
381 CVE-2018-6468 79 XSS 2018-02-06 2018-02-28
4.3
None Remote Medium Not required None Partial None
A cross-site scripting (XSS) vulnerability in flickrRSS.php in the flickrRSS plugin 5.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the flickrRSS_id parameter to wp-admin/options-general.php.
382 CVE-2018-6467 352 CSRF 2018-02-06 2018-02-28
6.8
None Remote Medium Not required Partial Partial Partial
The flickrRSS plugin 5.3.1 for WordPress has CSRF via wp-admin/options-general.php.
383 CVE-2018-6466 79 XSS 2018-02-06 2018-02-28
4.3
None Remote Medium Not required None Partial None
A cross-site scripting (XSS) vulnerability in flickrRSS.php in the flickrRSS plugin 5.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the flickrRSS_set parameter to wp-admin/options-general.php.
384 CVE-2018-6461 426 +Priv 2018-02-05 2018-03-13
9.3
None Remote Medium Not required Complete Complete Complete
March Hare WINCVS before 2.8.01 build 6610, and CVS Suite before 2009R2 build 6610, contains an Insecure Library Loading vulnerability in the wincvs2.exe or wincvs.exe file, which may allow local users to gain privileges via a Trojan horse Python or TCL DLL file in the current working directory.
385 CVE-2018-6459 347 DoS 2018-02-20 2020-03-30
5.0
None Remote Low Not required None None Partial
The rsa_pss_params_parse function in libstrongswan/credentials/keys/signature_params.c in strongSwan 5.6.1 allows remote attackers to cause a denial of service via a crafted RSASSA-PSS signature that lacks a mask generation function parameter.
386 CVE-2018-6396 89 Sql 2018-02-17 2018-03-05
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the Google Map Landkarten through 4.2.3 component for Joomla! via the cid or id parameter in a layout=form_markers action, or the map parameter in a layout=default action.
387 CVE-2018-6394 89 Sql 2018-02-17 2018-03-02
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the InviteX 3.0.5 component for Joomla! via the invite_type parameter in a view=invites action.
388 CVE-2018-6389 400 DoS 2018-02-06 2019-03-01
5.0
None Remote Low Not required None None Partial
In WordPress through 4.9.2, unauthenticated attackers can cause a denial of service (resource consumption) by using the large list of registered .js files (from wp-includes/script-loader.php) to construct a series of requests to load every file many times.
389 CVE-2018-6373 89 Sql 2018-02-17 2020-10-19
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the Fastball 2.5 component for Joomla! via the season parameter in a view=player action.
390 CVE-2018-6372 89 Sql 2018-02-17 2018-03-05
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the JB Bus 2.3 component for Joomla! via the order_number parameter.
391 CVE-2018-6370 89 Sql 2018-02-17 2018-03-05
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the NeoRecruit 4.1 component for Joomla! via the (1) PATH_INFO or (2) name of a .html file under the all-offers/ URI.
392 CVE-2018-6368 89 Sql 2018-02-17 2018-03-05
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in the JomEstate PRO through 3.7 component for Joomla! via the id parameter in a task=detailed action.
393 CVE-2018-6356 22 Dir. Trav. 2018-02-20 2018-03-19
4.0
None Remote Low ??? Partial None None
Jenkins before 2.107 and Jenkins LTS before 2.89.4 did not properly prevent specifying relative paths that escape a base directory for URLs accessing plugin resource files. This allowed users with Overall/Read permission to download files from the Jenkins master they should not have access to. On Windows, any file accessible to the Jenkins master process could be downloaded. On other operating systems, any file within the Jenkins home directory accessible to the Jenkins master process could be downloaded.
394 CVE-2018-6324 601 2018-02-16 2018-03-15
5.8
None Remote Medium Not required Partial Partial None
F-Secure Radar (on-premises) before 2018-02-15 has an Unvalidated Redirect via the ReturnUrl parameter that triggers upon a user login.
395 CVE-2018-6319 476 DoS 2018-02-02 2019-10-03
4.9
None Local Low Not required None None Complete
In Sophos Tester Tool 3.2.0.7 Beta, the driver accepts a special DeviceIoControl code that doesn't check its argument. This argument is a memory address: if a caller passes a NULL pointer or a random invalid address, the driver will cause a Blue Screen of Death. If a program or malware does this at boot time, it can cause a persistent denial of service on the machine.
396 CVE-2018-6318 426 2018-02-02 2018-02-15
9.3
None Remote Medium Not required Complete Complete Complete
In Sophos Tester Tool 3.2.0.7 Beta, the driver loads (in the context of the application used to test an exploit or ransomware) the DLL using a payload that runs from NTDLL.DLL (so, it's run in userland), but the driver doesn't perform any validation of this DLL (not its signature, not its hash, etc.). A person can change this DLL in a local way, or with a remote connection, to a malicious DLL with the same name -- and when the product is used, this malicious DLL will be loaded, aka a DLL Hijacking attack.
397 CVE-2018-6317 134 DoS 2018-02-02 2018-02-15
6.4
None Remote Low Not required Partial None Partial
The remote management interface in Claymore Dual Miner 10.5 and earlier is vulnerable to an unauthenticated format string vulnerability, allowing remote attackers to read memory or cause a denial of service.
398 CVE-2018-6316 863 Bypass 2018-02-15 2019-10-03
6.0
None Remote Medium ??? Partial Partial Partial
Ivanti Endpoint Security (formerly HEAT Endpoint Management and Security Suite) 8.5 Update 1 and earlier allows an authenticated user with low privileges and access to the local network to bypass application whitelisting when using the Application Control module on Ivanti Endpoint Security in lockdown mode.
399 CVE-2018-6293 200 +Info 2018-02-13 2018-03-06
5.0
None Remote Low Not required Partial None None
Arbitrary File Read in Saperion Web Client version 7.5.2 83166.
400 CVE-2018-6292 Exec Code 2018-02-13 2019-10-03
10.0
None Remote Low Not required Complete Complete Complete
Remote Code Execution in Saperion Web Client version 7.5.2 83166.
Total number of vulnerabilities : 1328   Page : 1 2 3 4 5 6 7 8 (This Page)9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.