Security News

CVE-2018-19072

National Vulnerability Database - Wed, 11/07/2018 - 13:29
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. /mnt/mtd/app has 0777 permissions, allowing local users to replace an archive file (within that directory) to control what is extracted to RAM at boot time.
Categories: Security News

CVE-2018-19073

National Vulnerability Database - Wed, 11/07/2018 - 13:29
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. They allow attackers to execute arbitrary OS commands via shell metacharacters in the modelName, by leveraging /mnt/mtd/app/config/ProductConfig.xml write access.
Categories: Security News

CVE-2018-19068

National Vulnerability Database - Wed, 11/07/2018 - 13:29
An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The CGIProxy.fcgi?cmd=setTelnetSwitch feature is authorized for hidden factory credentials.
Categories: Security News

CVE-2018-19069

National Vulnerability Database - Wed, 11/07/2018 - 13:29
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The CGIProxy.fcgi?cmd=setTelnetSwitch feature is authorized for the root user with a password of toor.
Categories: Security News

CVE-2018-19070

National Vulnerability Database - Wed, 11/07/2018 - 13:29
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. They allow remote attackers to execute arbitrary OS commands via shell metacharacters in the usrName parameter of a CGIProxy.fcgi addAccount action.
Categories: Security News

CVE-2018-19065

National Vulnerability Database - Wed, 11/07/2018 - 13:29
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The exported device configuration is encrypted with the hardcoded BpP+2R9*Q password in some cases.
Categories: Security News

CVE-2018-19066

National Vulnerability Database - Wed, 11/07/2018 - 13:29
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The exported device configuration is encrypted with the hardcoded Pxift* password in some cases.
Categories: Security News

CVE-2018-19067

National Vulnerability Database - Wed, 11/07/2018 - 13:29
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. There is a hardcoded Ak47@99 password for the factory~ account.
Categories: Security News

CVE-2018-19063

National Vulnerability Database - Wed, 11/07/2018 - 13:29
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The admin account has a blank password.
Categories: Security News

CVE-2018-19064

National Vulnerability Database - Wed, 11/07/2018 - 13:29
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The ftpuser1 account has a blank password, which cannot be changed.
Categories: Security News

CVE-2018-19061

National Vulnerability Database - Wed, 11/07/2018 - 12:29
DedeCMS 5.7 SP2 has SQL Injection via the dede\co_do.php ids parameter.
Categories: Security News

CVE-2018-19060

National Vulnerability Database - Wed, 11/07/2018 - 11:29
An issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating a filename of an embedded file before constructing a save path.
Categories: Security News

CVE-2018-18590

National Vulnerability Database - Wed, 11/07/2018 - 11:29
A potential remote code execution and information disclosure vulnerability exists in Micro Focus Operations Bridge containerized suite versions 2017.11, 2018.02, 2018.05, 2018.08. This vulnerability could allow for information disclosure.
Categories: Security News

CVE-2018-19058

National Vulnerability Database - Wed, 11/07/2018 - 11:29
An issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to denial of service because EmbFile::save2 in FileSpec.cc lacks a stream check before saving an embedded file.
Categories: Security News

CVE-2018-19059

National Vulnerability Database - Wed, 11/07/2018 - 11:29
An issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSpec.cc, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating embedded files before save attempts.
Categories: Security News

CVE-2018-19056

National Vulnerability Database - Wed, 11/07/2018 - 10:29
pandao Editor.md 1.5.0 has DOM XSS via input starting with a "<<" substring, which is mishandled during construction of an A element.
Categories: Security News

CVE-2018-19057

National Vulnerability Database - Wed, 11/07/2018 - 10:29
SimpleMDE 1.11.2 has XSS via an onerror attribute of a crafted IMG element, or via certain input with [ and ( characters, which is mishandled during construction of an A element.
Categories: Security News

CVE-2018-16843

National Vulnerability Database - Wed, 11/07/2018 - 09:29
nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the 'http2' option of the 'listen' directive is used in a configuration file.
Categories: Security News

CVE-2018-16844

National Vulnerability Database - Wed, 11/07/2018 - 09:29
nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the 'http2' option of the 'listen' directive is used in a configuration file.
Categories: Security News

CVE-2018-16845

National Vulnerability Database - Wed, 11/07/2018 - 09:29
nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.
Categories: Security News

Pages