NVD Vulnerabilities

Subscribe to NVD Vulnerabilities feed
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
Updated: 1 hour 12 min ago

CVE-2018-1957

Mon, 12/10/2018 - 09:29
IBM WebSphere Application Server 9 could allow sensitive information to be available caused by mishandling of data by the application based on an incorrect return by the httpServletRequest#authenticate() API when an unprotected URI is accessed. IBM X-Force ID: 153629.
Categories: NVD

CVE-2016-10502

Mon, 12/10/2018 - 09:29
While generating trusted application id, An integer overflow can occur giving the trusted application an invalid identity in Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 835 and SDA660.
Categories: NVD

CVE-2018-20009

Mon, 12/10/2018 - 04:29
DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider.php SSL Provider Name or SSL Provider URL field.
Categories: NVD

CVE-2018-20010

Mon, 12/10/2018 - 04:29
DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider-account.php username field.
Categories: NVD

CVE-2018-20011

Mon, 12/10/2018 - 04:29
DomainMOD 4.11.01 has XSS via the assets/add/category.php Category Name or Stakeholder field.
Categories: NVD

CVE-2018-20012

Mon, 12/10/2018 - 04:29
PHPCMF 4.1.3 has XSS via the first input field to the index.php?s=member&c=register&m=index URI.
Categories: NVD

CVE-2018-20015

Mon, 12/10/2018 - 04:29
YzmCMS v5.2 has admin/role/add.html CSRF.
Categories: NVD

CVE-2018-20017

Mon, 12/10/2018 - 04:29
SEMCMS 3.5 has XSS via the first text box to the SEMCMS_Main.php URI.
Categories: NVD

CVE-2018-20018

Mon, 12/10/2018 - 04:29
S-CMS V3.0 has SQL injection via the S_id parameter, as demonstrated by the /1/?type=productinfo&S_id=140 URI.
Categories: NVD

CVE-2018-20004

Mon, 12/10/2018 - 01:29
An issue has been found in Mini-XML (aka mxml) 2.12. It is a stack-based buffer overflow in mxml_write_node in mxml-file.c via vectors involving a double-precision floating point number and the '<order type="real">' substring, as demonstrated by testmxml.
Categories: NVD

CVE-2018-20005

Mon, 12/10/2018 - 01:29
An issue has been found in Mini-XML (aka mxml) 2.12. It is a use-after-free in mxmlWalkNext in mxml-search.c, as demonstrated by mxmldoc.
Categories: NVD

CVE-2018-20006

Mon, 12/10/2018 - 01:29
An issue was discovered in PHPok v5.0.055. There is a Stored XSS vulnerability via the title parameter to api.php?c=post&f=save (reachable via the index.php?id=book URI).
Categories: NVD

CVE-2018-20000

Sun, 12/09/2018 - 21:29
Apereo Bedework bw-webdav before 4.0.3 allows XXE attacks, as demonstrated by an invite-reply document that reads a local file, related to webdav/servlet/common/MethodBase.java and webdav/servlet/common/PostRequestPars.java.
Categories: NVD

CVE-2018-20001

Sun, 12/09/2018 - 21:29
In Libav 12.3, there is a floating point exception in the range_decode_culshift function (called from range_decode_bits) in libavcodec/apedec.c that will lead to remote denial of service via crafted input.
Categories: NVD

CVE-2018-20002

Sun, 12/09/2018 - 21:29
The _bfd_generic_read_minisymbols function in syms.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31, has a memory leak via a crafted ELF file, leading to a denial of service (memory consumption), as demonstrated by nm.
Categories: NVD

CVE-2018-19991

Sun, 12/09/2018 - 19:29
VeryNginx 0.3.3 allows remote attackers to bypass the Web Application Firewall feature because there is no error handler (for get_uri_args or get_post_args) to block the API misuse described in CVE-2018-9230.
Categories: NVD

CVE-2018-19653

Sun, 12/09/2018 - 14:29
HashiCorp Consul 0.5.1 through 1.4.0 can use cleartext agent-to-agent RPC communication because the verify_outgoing setting is improperly documented. NOTE: the vendor has provided reconfiguration steps that do not require a software upgrade.
Categories: NVD

CVE-2018-19982

Sun, 12/09/2018 - 14:29
An issue was discovered on KT MC01507L Z-Wave S0 devices. It occurs because HPKP is not implemented. The communication architecture is APP > Server > Controller (HUB) > Node (products which are controlled by HUB). The prerequisite is that the attacker is on the same network as the target HUB, and can use IP Changer to change destination IP addresses (of all packets whose destination IP address is Server) to a proxy-server IP address. This allows sniffing of cleartext between Server and Controller. The cleartext command data is transmitted to Controller using the proxy server's fake certificate, and it is able to control each Node of the HUB. Also, by operating HUB in Z-Wave Pairing Mode, it is possible to obtain the Z-Wave network key.
Categories: NVD

CVE-2018-19983

Sun, 12/09/2018 - 14:29
An issue was discovered on Sigma Design Z-Wave S0 through S2 devices. An attacker first prepares a Z-Wave frame-transmission program (e.g., Z-Wave PC Controller, OpenZWave, CC1110, etc.). Next, the attacker conducts a DoS attack against the Z-Wave S0 Security version product by continuously sending divided "Nonce Get (0x98 0x81)" frames. The reason for dividing the "Nonce Get" frame is that, in security version S0, when a node receives a "Nonce Get" frame, the node produces a random new nonce and sends it to the Src node of the received "Nonce Get" frame. After the nonce value is generated and transmitted, the node transitions to wait mode. At this time, when "Nonce Get" is received again, the node discards the previous nonce value and generates a random nonce again. Therefore, because the frame is encrypted with previous nonce value, the received normal frame cannot be decrypted.
Categories: NVD

CVE-2018-19980

Sat, 12/08/2018 - 13:29
Anker Nebula Capsule Pro NBUI_M1_V2.1.9 devices allow attackers to cause a denial of service (reboot of the underlying Android 7.1.2 operating system) via a crafted application that sends data to WifiService.
Categories: NVD