NVD Vulnerabilities

Subscribe to NVD Vulnerabilities feed
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
Updated: 4 hours 46 min ago

CVE-2018-12648

Fri, 06/22/2018 - 09:29
The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Support.hpp in Exempi 2.4.5 has a NULL pointer dereference.
Categories: NVD

CVE-2018-12641

Fri, 06/22/2018 - 08:29
An issue was discovered in arm_pt in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. Stack Exhaustion occurs in the C++ demangling functions provided by libiberty, and there are recursive stack frames: demangle_arm_hp_template, demangle_class_name, demangle_fund_type, do_type, do_arg, demangle_args, and demangle_nested_args. This can occur during execution of nm-new.
Categories: NVD

CVE-2018-12642

Fri, 06/22/2018 - 08:29
Froxlor through 0.9.39.5 has Incorrect Access Control for tickets not owned by the current user.
Categories: NVD

CVE-2018-12633

Thu, 06/21/2018 - 20:29
An issue was discovered in the Linux kernel through 4.17.2. vbg_misc_device_ioctl() in drivers/virt/vboxguest/vboxguest_linux.c reads the same user data twice with copy_from_user. The header part of the user data is double-fetched, and a malicious user thread can tamper with the critical variables (hdr.size_in and hdr.size_out) in the header between the two fetches because of a race condition, leading to severe kernel errors, such as buffer over-accesses. This bug can cause a local denial of service and information leakage.
Categories: NVD

CVE-2018-12634

Thu, 06/21/2018 - 20:29
CirCarLife Scada v4.2.4 allows remote attackers to obtain sensitive information via a direct request for the html/log or services/system/info.html URI.
Categories: NVD

CVE-2018-12635

Thu, 06/21/2018 - 20:29
CirCarLife Scada v4.2.4 allows unauthorized upgrades via requests to the html/upgrade.html and services/system/firmware.upgrade URIs.
Categories: NVD

CVE-2018-12630

Thu, 06/21/2018 - 18:29
NEWMARK (aka New Mark) NMCMS 2.1 allows SQL Injection via the sect_id parameter to the /catalog URI.
Categories: NVD

CVE-2018-12631

Thu, 06/21/2018 - 18:29
Redatam7 (formerly Redatam WebServer) allows remote attackers to read arbitrary files via /redbin/rpwebutilities.exe/text?LFN=../ directory traversal.
Categories: NVD

CVE-2018-12632

Thu, 06/21/2018 - 18:29
Redatam7 (formerly Redatam WebServer) allows remote attackers to discover the installation path via an invalid LFN parameter to the /redbin/rpwebutilities.exe/text URI.
Categories: NVD

CVE-2018-12581

Thu, 06/21/2018 - 16:29
An issue was discovered in js/designer/move.js in phpMyAdmin before 4.8.2. A Cross-Site Scripting vulnerability has been found where an attacker can use a crafted database name to trigger an XSS attack when that database is referenced from the Designer feature.
Categories: NVD

CVE-2018-12613

Thu, 06/21/2018 - 16:29
An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an attacker can include (view and potentially execute) files on the server. The vulnerability comes from a portion of code where pages are redirected and loaded within phpMyAdmin, and an improper test for whitelisted pages. An attacker must be authenticated, except in the "$cfg['AllowArbitraryServer'] = true" case (where an attacker can specify any host he/she is already in control of, and execute arbitrary code on phpMyAdmin) and the "$cfg['ServerDefault'] = 0" case (which bypasses the login requirement and runs the vulnerable code without any authentication).
Categories: NVD

CVE-2018-3665

Thu, 06/21/2018 - 16:29
System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel.
Categories: NVD

CVE-2018-7679

Thu, 06/21/2018 - 15:29
Micro Focus Solutions Business Manager versions prior to 11.4 when ASP.NET is configured with execute permission on the virtual directories and does not validate the contents of user avatar images, could lead to remote code execution.
Categories: NVD

CVE-2018-7680

Thu, 06/21/2018 - 15:29
Micro Focus Solutions Business Manager versions prior to 11.4 can reflect back HTTP header values.
Categories: NVD

CVE-2018-7681

Thu, 06/21/2018 - 15:29
Micro Focus Solutions Business Manager versions prior to 11.4 allows JavaScript to be embedded in URLs placed in "Favorites" folder. If the user has certain administrative privileges then this vulnerability can impact other users in the system.
Categories: NVD

CVE-2018-7683

Thu, 06/21/2018 - 15:29
Micro Focus Solutions Business Manager versions prior to 11.4 might reveal certain sensitive information in server log files.
Categories: NVD

CVE-2018-12617

Thu, 06/21/2018 - 14:29
qmp_guest_file_read in qga/commands-posix.c and qga/commands-win32.c in qemu-ga (aka QEMU Guest Agent) in QEMU 2.12.50 has an integer overflow causing a g_malloc0() call to trigger a segmentation fault when trying to allocate a large memory chunk. The vulnerability can be exploited by sending a crafted QMP command (including guest-file-read with a large count value) to the agent via the listening socket.
Categories: NVD

CVE-2018-12526

Thu, 06/21/2018 - 11:29
Telesquare SDT-CS3B1 and SDT-CW3B1 devices through 1.2.0 have a default factory account. Remote attackers can obtain access to the device via TELNET using a hardcoded account.
Categories: NVD

CVE-2018-1253

Thu, 06/21/2018 - 11:29
RSA Authentication Manager Operation Console, versions 8.3 P1 and earlier, contains a stored cross-site scripting vulnerability. A malicious Operations Console administrator could potentially exploit this vulnerability to store arbitrary HTML or JavaScript code through the web interface. When other Operations Console administrators open the affected page, the injected scripts could potentially be executed in their browser.
Categories: NVD

CVE-2018-1254

Thu, 06/21/2018 - 11:29
RSA Authentication Manager Security Console, versions 8.3 P1 and earlier, contains a reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim Security Console administrator to supply malicious HTML or JavaScript code to a vulnerable web application, which is then reflected back to the victim and executed by the web browser.
Categories: NVD