Security News

CVE-2018-16398

National Vulnerability Database - Mon, 09/03/2018 - 15:29
In Twistlock AuthZ Broker 0.1, regular expressions are mishandled, as demonstrated by containers/aa/pause?aaa=\/start to bypass a policy in which "docker start" is allowed but "docker pause" is not allowed.
Categories: Security News

CVE-2018-16402

National Vulnerability Database - Mon, 09/03/2018 - 15:29
libelf/elf_end.c in elfutils 0.173 allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact because it tries to decompress twice.
Categories: Security News

CVE-2018-16403

National Vulnerability Database - Mon, 09/03/2018 - 15:29
libdw in elfutils 0.173 checks the end of the attributes list incorrectly in dwarf_getabbrev in dwarf_getabbrev.c and dwarf_hasattr in dwarf_hasattr.c, leading to a heap-based buffer over-read and an application crash.
Categories: Security News

CVE-2018-16405

National Vulnerability Database - Mon, 09/03/2018 - 15:29
An issue was discovered in Mayan EDMS before 3.0.2. The Appearance app sets window.location directly, leading to XSS.
Categories: Security News

CVE-2018-16406

National Vulnerability Database - Mon, 09/03/2018 - 15:29
An issue was discovered in Mayan EDMS before 3.0.2. The Cabinets app has XSS via a crafted cabinet label.
Categories: Security News

CVE-2018-16407

National Vulnerability Database - Mon, 09/03/2018 - 15:29
An issue was discovered in Mayan EDMS before 3.0.3. The Tags app has XSS because tag label values are mishandled.
Categories: Security News

CVE-2018-16397

National Vulnerability Database - Mon, 09/03/2018 - 11:29
In LimeSurvey before 3.14.7, an admin user can leverage a "file upload" question to read an arbitrary file,
Categories: Security News

CVE-2018-16391

National Vulnerability Database - Mon, 09/03/2018 - 10:29
Several buffer overflows when handling responses from a Muscle Card in muscle_list_files in libopensc/card-muscle.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact.
Categories: Security News

CVE-2018-16392

National Vulnerability Database - Mon, 09/03/2018 - 10:29
Several buffer overflows when handling responses from a TCOS Card in tcos_select_file in libopensc/card-tcos.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact.
Categories: Security News

CVE-2018-16393

National Vulnerability Database - Mon, 09/03/2018 - 10:29
Several buffer overflows when handling responses from a Gemsafe V1 Smartcard in gemsafe_get_cert_len in libopensc/pkcs15-gemsafeV1.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact.
Categories: Security News

Vuln: ImageMagick Multiple Heap Buffer Overflow Vulnerabilities

SecurityFocus Vulnerabilities - Mon, 09/03/2018 - 00:00
ImageMagick Multiple Heap Buffer Overflow Vulnerabilities
Categories: Security News

Vuln: Mozilla Network Security Service CVE-2018-12384 Information Disclosure Vulnerability

SecurityFocus Vulnerabilities - Mon, 09/03/2018 - 00:00
Mozilla Network Security Service CVE-2018-12384 Information Disclosure Vulnerability
Categories: Security News

Vuln: GNOME GLib 'gmarkup.c' Remote Denial of Service Vulnerability

SecurityFocus Vulnerabilities - Mon, 09/03/2018 - 00:00
GNOME GLib 'gmarkup.c' Remote Denial of Service Vulnerability
Categories: Security News

CVE-2018-16382

National Vulnerability Database - Sun, 09/02/2018 - 22:29
Netwide Assembler (NASM) 2.14rc15 has a buffer over-read in x86/regflags.c.
Categories: Security News

CVE-2018-16384

National Vulnerability Database - Sun, 09/02/2018 - 22:29
A SQL injection bypass (aka PL1 bypass) exists in OWASP ModSecurity Core Rule Set (owasp-modsecurity-crs) through v3.1.0-rc3 via {`a`b} where a is a special function name (such as "if") and b is the SQL statement to be executed.
Categories: Security News

CVE-2018-16385

National Vulnerability Database - Sun, 09/02/2018 - 22:29
ThinkPHP before 5.1.23 allows SQL Injection via the public/index/index/test/index query string.
Categories: Security News

CVE-2018-16387

National Vulnerability Database - Sun, 09/02/2018 - 22:29
An issue was discovered in Elefant CMS before 2.0.5. There is a CSRF vulnerability that can add an account via user/add.
Categories: Security News

CVE-2018-16375

National Vulnerability Database - Sun, 09/02/2018 - 20:29
An issue was discovered in OpenJPEG 2.3.0. Missing checks for header_info.height and header_info.width in the function pnmtoimage in bin/jpwl/convert.c can lead to a heap-based buffer overflow.
Categories: Security News

CVE-2018-16376

National Vulnerability Database - Sun, 09/02/2018 - 20:29
An issue was discovered in OpenJPEG 2.3.0. A heap-based buffer overflow was discovered in the function t2_encode_packet in lib/openmj2/t2.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly unspecified other impact.
Categories: Security News

CVE-2018-16379

National Vulnerability Database - Sun, 09/02/2018 - 20:29
Ogma CMS 0.4 Beta has XSS via the "Footer Text footer" field on the "Theme/Theme Options" screen.
Categories: Security News

Pages