NVD

CVE-2018-1061

NVD Vulnerabilities - Tue, 06/19/2018 - 08:29
python before versions 2.7.15, 3.4.9, 3.5.6 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.
Categories: NVD

CVE-2018-1073

NVD Vulnerabilities - Tue, 06/19/2018 - 08:29
The web console login form in ovirt-engine before version 4.2.3 returned different errors for non-existent users and invalid passwords, allowing an attacker to discover the names of valid user accounts.
Categories: NVD

CVE-2018-12557

NVD Vulnerabilities - Tue, 06/19/2018 - 01:29
An issue was discovered in Zuul 3.x before 3.1.0. If nodes become offline during the build, the no_log attribute of a task is ignored. If the unreachable error occurred in a task used with a loop variable (e.g., with_items), the contents of the loop items would be printed in the console. This could lead to accidentally leaking credentials or secrets.
Categories: NVD

CVE-2018-12559

NVD Vulnerabilities - Tue, 06/19/2018 - 01:29
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The mount target path check in mounter.cpp `mpOk()` is insufficient. A regular user can consequently mount a CIFS filesystem anywhere (e.g., outside of the /home directory tree) by passing directory traversal sequences such as a home/../usr substring.
Categories: NVD

CVE-2018-12560

NVD Vulnerabilities - Tue, 06/19/2018 - 01:29
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. Arbitrary unmounts can be performed by regular users via directory traversal sequences such as a home/../sys/kernel substring.
Categories: NVD

CVE-2018-12561

NVD Vulnerabilities - Tue, 06/19/2018 - 01:29
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. A regular user can inject additional mount options such as file_mode= by manipulating (for example) the domain parameter of the samba URL.
Categories: NVD

CVE-2018-12562

NVD Vulnerabilities - Tue, 06/19/2018 - 01:29
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The wrapper script 'mount.cifs.wrapper' uses the shell to forward the arguments to the actual mount.cifs binary. The shell evaluates wildcards (such as in an injected string:/home/../tmp/* string).
Categories: NVD

CVE-2018-12563

NVD Vulnerabilities - Tue, 06/19/2018 - 01:29
An issue was discovered in Linaro LAVA before 2018.5.post1. Because of support for file: URLs, a user can force lava-server-gunicorn to download any file from the filesystem if it's readable by lavaserver and valid yaml.
Categories: NVD

CVE-2018-12564

NVD Vulnerabilities - Tue, 06/19/2018 - 01:29
An issue was discovered in Linaro LAVA before 2018.5.post1. Because of support for URLs in the submit page, a user can forge an HTTP request that will force lava-server-gunicorn to return any file on the server that is readable by lavaserver and valid yaml.
Categories: NVD

CVE-2018-12565

NVD Vulnerabilities - Tue, 06/19/2018 - 01:29
An issue was discovered in Linaro LAVA before 2018.5.post1. Because of use of yaml.load() instead of yaml.safe_load() when parsing user data, remote code execution can occur.
Categories: NVD

CVE-2018-10617

NVD Vulnerabilities - Mon, 06/18/2018 - 15:29
Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length heap buffer where a value larger than the buffer can be read from a .dpa file into the buffer, causing the buffer to be overwritten. This may allow remote code execution or cause the application to crash.
Categories: NVD

CVE-2018-10621

NVD Vulnerabilities - Mon, 06/18/2018 - 15:29
Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length stack buffer where a value larger than the buffer can be read from a .dpa file into the buffer, causing the buffer to be overwritten. This may allow remote code execution or cause the application to crash.
Categories: NVD

CVE-2018-10623

NVD Vulnerabilities - Mon, 06/18/2018 - 15:29
Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior performs read operations on a memory buffer where the position can be determined by a value read from a .dpa file. This may cause improper restriction of operations within the bounds of the memory buffer, allow remote code execution, alter the intended control flow, allow reading of sensitive information, or cause the application to crash.
Categories: NVD

CVE-2015-4664

NVD Vulnerabilities - Mon, 06/18/2018 - 14:29
An improper input validation vulnerability in CA Privileged Access Manager 2.4.4.4 and earlier allows remote attackers to execute arbitrary commands.
Categories: NVD

CVE-2018-9021

NVD Vulnerabilities - Mon, 06/18/2018 - 14:29
An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows remote attackers to execute arbitrary commands with specially crafted requests.
Categories: NVD

CVE-2018-9022

NVD Vulnerabilities - Mon, 06/18/2018 - 14:29
An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows remote attackers to execute arbitrary code or commands by poisoning a configuration file.
Categories: NVD

CVE-2018-9023

NVD Vulnerabilities - Mon, 06/18/2018 - 14:29
An input validation vulnerability in CA Privileged Access Manager 2.x allows unprivileged users to execute arbitrary commands by passing specially crafted arguments to the update_crld script.
Categories: NVD

CVE-2018-9024

NVD Vulnerabilities - Mon, 06/18/2018 - 14:29
An improper authentication vulnerability in CA Privileged Access Manager 2.x allows attackers to spoof IP addresses in a log file.
Categories: NVD

CVE-2018-9025

NVD Vulnerabilities - Mon, 06/18/2018 - 14:29
An input validation vulnerability in CA Privileged Access Manager 2.x allows remote attackers to poison log files with specially crafted input.
Categories: NVD

CVE-2018-9026

NVD Vulnerabilities - Mon, 06/18/2018 - 14:29
A session fixation vulnerability in CA Privileged Access Manager 2.x allows remote attackers to hijack user sessions with a specially crafted request.
Categories: NVD