Security News

CVE-2018-18467

National Vulnerability Database - Tue, 10/23/2018 - 17:30
An issue was discovered in Daniel Gultsch Conversations 2.3.4. It is possible to spoof a custom message to an existing opened conversation by sending an intent.
Categories: Security News

CVE-2018-18475

National Vulnerability Database - Tue, 10/23/2018 - 17:30
Zoho ManageEngine OpManager before 12.3 build 123214 allows Unrestricted Arbitrary File Upload.
Categories: Security News

CVE-2018-16235

National Vulnerability Database - Tue, 10/23/2018 - 17:30
Telligent Community 6.x, 7.x, 8.x, 9.x, and 10.x up to 10.1.10.11792 has XSS via the Feed RSS widget.
Categories: Security News

CVE-2018-17444

National Vulnerability Database - Tue, 10/23/2018 - 17:30
A Directory Traversal issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.
Categories: Security News

CVE-2018-17445

National Vulnerability Database - Tue, 10/23/2018 - 17:30
A Command Injection issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.
Categories: Security News

CVE-2018-17446

National Vulnerability Database - Tue, 10/23/2018 - 17:30
A SQL Injection issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.
Categories: Security News

CVE-2018-17447

National Vulnerability Database - Tue, 10/23/2018 - 17:30
An Information Exposure Through Log Files issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.
Categories: Security News

CVE-2018-17448

National Vulnerability Database - Tue, 10/23/2018 - 17:30
An Incorrect Access Control issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.
Categories: Security News

CVE-2018-17873

National Vulnerability Database - Tue, 10/23/2018 - 17:30
An incorrect access control vulnerability in the FTP configuration of WiFiRanger devices with firmware version 7.0.8rc3 and earlier allows an attacker with adjacent network access to read the SSH Private Key and log in to the root account.
Categories: Security News

CVE-2018-17877

National Vulnerability Database - Tue, 10/23/2018 - 17:30
A lottery smart contract implementation for Greedy 599, an Ethereum gambling game, generates a random value that is predictable via an external contract call. The developer used the extcodesize() function to prevent a malicious contract from being called, but the attacker can bypass it by writing the core code in the constructor of their exploit code. Therefore, it allows attackers to always win and get rewards.
Categories: Security News

CVE-2018-17968

National Vulnerability Database - Tue, 10/23/2018 - 17:30
A gambling smart contract implementation for RuletkaIo, an Ethereum gambling game, generates a random value that is predictable by an external contract call. The developer wrote a random() function that uses a block timestamp and block hash from the Ethereum blockchain. This can be predicted by writing the same random function code in an exploit contract to determine the deadSeat value.
Categories: Security News

CVE-2018-12901

National Vulnerability Database - Tue, 10/23/2018 - 17:30
A vulnerability in the conferencing component of Mitel ST 14.2, versions GA29 (19.49.9400.0) and earlier, could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation for the signin.php page. A successful exploit could allow an attacker to execute arbitrary scripts.
Categories: Security News

CVE-2018-15497

National Vulnerability Database - Tue, 10/23/2018 - 17:30
The Mitel MiVoice 5330e VoIP device is affected by memory corruption flaws in the SIP/SDP packet handling functionality. An attacker can exploit this issue remotely, by sending a particular pattern of SIP/SDP packets, to cause a denial of service state in the affected devices and probably remote code execution.
Categories: Security News

CVE-2018-16226

National Vulnerability Database - Tue, 10/23/2018 - 17:30
A vulnerability in the web admin component of Mitel MiVoice Office 400, versions R5.0 HF3 (v8839a1) and earlier, could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack, due to insufficient validation for the start.asp page. A successful exploit could allow the attacker to execute arbitrary scripts to access sensitive browser-based information.
Categories: Security News

CVE-2017-18349

National Vulnerability Database - Tue, 10/23/2018 - 16:29
parseObject in Fastjson before 1.2.25, as used in FastjsonEngine in Pippo 1.11.0 and other products, allows remote attackers to execute arbitrary code via a crafted JSON request, as demonstrated by a crafted rmi:// URI in the dataSourceName field of HTTP POST data to the Pippo /json URI, which is mishandled in AjaxApplication.java.
Categories: Security News

CVE-2018-14806

National Vulnerability Database - Tue, 10/23/2018 - 16:29
Advantech WebAccess 8.3.1 and earlier has a path traversal vulnerability which may allow an attacker to execute arbitrary code.
Categories: Security News

CVE-2018-14816

National Vulnerability Database - Tue, 10/23/2018 - 16:29
Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabilities that have been identified, which may allow an attacker to execute arbitrary code.
Categories: Security News

CVE-2018-14820

National Vulnerability Database - Tue, 10/23/2018 - 16:29
Advantech WebAccess 8.3.1 and earlier has a .dll component that is susceptible to external control of file name or path vulnerability, which may allow an arbitrary file deletion when processing.
Categories: Security News

CVE-2018-14828

National Vulnerability Database - Tue, 10/23/2018 - 16:29
Advantech WebAccess 8.3.1 and earlier has an improper privilege management vulnerability, which may allow an attacker to access those files and perform actions at a system administrator level.
Categories: Security News

CVE-2018-18628

National Vulnerability Database - Tue, 10/23/2018 - 16:29
An issue was discovered in Pippo 1.11.0. The function SerializationSessionDataTranscoder.decode() calls ObjectInputStream.readObject() to deserialize a SessionData object without checking the object types. An attacker can create a malicious object, base64 encode it, and place it in the PIPPO_SESSION field of a cookie. Sending this cookie may lead to remote code execution.
Categories: Security News

Pages