Security News

CVE-2018-18396

National Vulnerability Database - Fri, 10/19/2018 - 10:29
Remote Code Execution in Moxa ThingsPro IIoT Gateway and Device Management Software Solutions version 2.1.
Categories: Security News

CVE-2018-15312

National Vulnerability Database - Fri, 10/19/2018 - 09:29
On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, a reflected Cross-Site Scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an authenticated user to execute JavaScript for the currently logged-in user.
Categories: Security News

CVE-2018-15313

National Vulnerability Database - Fri, 10/19/2018 - 09:29
On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page.
Categories: Security News

CVE-2018-15314

National Vulnerability Database - Fri, 10/19/2018 - 09:29
On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page.
Categories: Security News

CVE-2018-15315

National Vulnerability Database - Fri, 10/19/2018 - 09:29
On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a reflected Cross Site Scripting (XSS) vulnerability in an undisclosed Configuration Utility page.
Categories: Security News

CVE-2018-15316

National Vulnerability Database - Fri, 10/19/2018 - 09:29
In F5 BIG-IP APM 13.0.0-13.1.1.1, APM Client 7.1.5-7.1.6, and/or Edge Client 7101-7160, the BIG-IP APM Edge Client component loads the policy library with user permission and bypassing the endpoint checks.
Categories: Security News

CVE-2018-4013

National Vulnerability Database - Fri, 10/19/2018 - 09:29
An exploitable code execution vulnerability exists in the HTTP packet-parsing functionality of the LIVE555 RTSP server library version 0.92. A specially crafted packet can cause a stack-based buffer overflow, resulting in code execution. An attacker can send a packet to trigger this vulnerability.
Categories: Security News

CVE-2017-18348

National Vulnerability Database - Fri, 10/19/2018 - 04:29
Splunk Enterprise 6.6.x, when configured to run as root but drop privileges to a specific non-root account, allows local users to gain privileges by leveraging access to that non-root account to modify $SPLUNK_HOME/etc/splunk-launch.conf and insert Trojan horse programs into $SPLUNK_HOME/bin, because the non-root setup instructions state that chown should be run across all of $SPLUNK_HOME to give non-root access.
Categories: Security News

Vuln: cURL CVE-2018-1000300 Heap Buffer Overflow Vulnerability

SecurityFocus Vulnerabilities - Fri, 10/19/2018 - 00:00
cURL CVE-2018-1000300 Heap Buffer Overflow Vulnerability
Categories: Security News

Vuln: Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability

SecurityFocus Vulnerabilities - Fri, 10/19/2018 - 00:00
Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability
Categories: Security News

Vuln: Apache Struts CVE-2016-1182 Security Bypass Vulnerability

SecurityFocus Vulnerabilities - Fri, 10/19/2018 - 00:00
Apache Struts CVE-2016-1182 Security Bypass Vulnerability
Categories: Security News

CVE-2018-11079

National Vulnerability Database - Thu, 10/18/2018 - 18:29
Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains a Plaintext Password Storage vulnerability. Database credentials are stored in plaintext in a configuration file. An authenticated malicious user with access to the configuration file may obtain the exposed password to gain access to the application database.
Categories: Security News

CVE-2018-11080

National Vulnerability Database - Thu, 10/18/2018 - 18:29
Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains Improper File Permission Vulnerabilities. The application contains multiple configuration files with world-readable permissions that could allow an authenticated malicious user to utilize the file contents to potentially elevate their privileges.
Categories: Security News

CVE-2018-15756

National Vulnerability Database - Thu, 10/18/2018 - 18:29
Spring Framework, version 5.1, versions 5.0.x prior to 5.0.10, versions 4.3.x prior to 4.3.20, and older unsupported versions on the 4.2.x branch provide support for range requests when serving static resources through the ResourceHttpRequestHandler, or starting in 5.0 when an annotated controller returns an org.springframework.core.io.Resource. A malicious user (or attacker) can add a range header with a high number of ranges, or with wide ranges that overlap, or both, for a denial of service attack. This vulnerability affects applications that depend on either spring-webmvc or spring-webflux. Such applications must also have a registration for serving static resources (e.g. JS, CSS, images, and others), or have an annotated controller that returns an org.springframework.core.io.Resource. Spring Boot applications that depend on spring-boot-starter-web or spring-boot-starter-webflux are ready to serve static resources out of the box and are therefore vulnerable.
Categories: Security News

CVE-2018-15758

National Vulnerability Database - Thu, 10/18/2018 - 18:29
Spring Security OAuth, versions 2.3 prior to 2.3.4, and 2.2 prior to 2.2.3, and 2.1 prior to 2.1.3, and 2.0 prior to 2.0.16, and older unsupported versions could be susceptible to a privilege escalation under certain conditions. A malicious user or attacker can craft a request to the approval endpoint that can modify the previously saved authorization request and lead to a privilege escalation on the subsequent approval. This scenario can happen if the application is configured to use a custom approval endpoint that declares AuthorizationRequest as a controller method argument. This vulnerability exposes applications that meet all of the following requirements: Act in the role of an Authorization Server (e.g. @EnableAuthorizationServer) and use a custom Approval Endpoint that declares AuthorizationRequest as a controller method argument. This vulnerability does not expose applications that: Act in the role of an Authorization Server and use the default Approval Endpoint, act in the role of a Resource Server only (e.g. @EnableResourceServer), act in the role of a Client only (e.g. @EnableOAuthClient).
Categories: Security News

CVE-2018-15765

National Vulnerability Database - Thu, 10/18/2018 - 18:29
Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains an Information Exposure vulnerability. The log file contents store sensitive data including executed commands to generate authentication tokens which may prove useful to an attacker for crafting malicious authentication tokens for querying the application and subsequent attacks.
Categories: Security News

CVE-2018-18485

National Vulnerability Database - Thu, 10/18/2018 - 17:29
An issue was discovered in PHPSHE 1.7. admin.php?mod=db&act=del allows remote attackers to delete arbitrary files via directory traversal sequences in the dbname parameter. This can be leveraged to reload the product by deleting install.lock.
Categories: Security News

CVE-2018-18486

National Vulnerability Database - Thu, 10/18/2018 - 17:29
An issue was discovered in PHPSHE 1.7. SQL injection exists via the admin.php?mod=user&act=del user_id[] parameter.
Categories: Security News

CVE-2018-18487

National Vulnerability Database - Thu, 10/18/2018 - 17:29
In \lib\admin\action\dataaction.class.php in Gxlcms v2.0, the database backup filename generation uses mt_rand() unsafely, resulting in predictable database backup file locations.
Categories: Security News

CVE-2018-18488

National Vulnerability Database - Thu, 10/18/2018 - 17:29
In \lib\admin\action\dataaction.class.php in Gxlcms v2.0, SQL Injection exists via the ids[] parameter.
Categories: Security News

Pages