Security News

CVE-2018-19650

National Vulnerability Database - Wed, 12/05/2018 - 17:29
Local attackers can trigger a stack-based buffer overflow on vulnerable installations of Antiy-AVL ATool security management v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of IOCTL 0x80002000 by the IRPFile.sys Antiy-AVL ATool kernel driver. The bug is caused by failure to properly validate the length of the user-supplied data, which results in a kernel stack buffer overflow. An attacker can leverage this vulnerability to execute arbitrary code in the context of the kernel, which could lead to privilege escalation and a failed exploit could lead to denial of service.
Categories: Security News

CVE-2018-19753

National Vulnerability Database - Wed, 12/05/2018 - 17:29
Tarantella Enterprise before 3.11 allows Directory Traversal.
Categories: Security News

CVE-2018-19754

National Vulnerability Database - Wed, 12/05/2018 - 17:29
Tarantella Enterprise before 3.11 allows bypassing Access Control.
Categories: Security News

CVE-2018-1002101

National Vulnerability Database - Wed, 12/05/2018 - 16:29
In Kubernetes versions 1.9.0-1.9.9, 1.10.0-1.10.5, and 1.11.0-1.11.1, user input was handled insecurely while setting up volume mounts on Windows nodes, which could lead to command line argument injection.
Categories: Security News

CVE-2018-1002103

National Vulnerability Database - Wed, 12/05/2018 - 16:29
In Minikube versions 0.3.0-0.29.0, minikube exposes the Kubernetes Dashboard listening on the VM IP at port 30000. In VM environments where the IP is easy to predict, the attacker can use DNS rebinding to indirectly make requests to the Kubernetes Dashboard, create a new Kubernetes Deployment running arbitrary code. If minikube mount is in use, the attacker could also directly access the host filesystem.
Categories: Security News

CVE-2018-1002105

National Vulnerability Database - Wed, 12/05/2018 - 16:29
In all Kubernetes versions prior to v1.10.11, v1.11.5, and v1.12.3, incorrect handling of error responses to proxied upgrade requests in the kube-apiserver allowed specially crafted requests to establish a connection through the Kubernetes API server to backend servers, then send arbitrary requests over the same connection directly to the backend, authenticated with the Kubernetes API server's TLS credentials used to establish the backend connection.
Categories: Security News

CVE-2018-12155

National Vulnerability Database - Wed, 12/05/2018 - 16:29
Data leakage in cryptographic libraries for Intel IPP before 2019 update1 release may allow an authenticated user to potentially enable information disclosure via local access.
Categories: Security News

CVE-2018-19877

National Vulnerability Database - Wed, 12/05/2018 - 16:29
login.php in Adiscon LogAnalyzer before 4.1.7 has XSS via the Login Button Referer field.
Categories: Security News

CVE-2018-19876

National Vulnerability Database - Wed, 12/05/2018 - 15:29
cairo 1.16.0, in cairo_ft_apply_variations() in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMalloc, leading to an application crash with a "free(): invalid pointer" error.
Categories: Security News

CVE-2018-15773

National Vulnerability Database - Wed, 12/05/2018 - 13:29
Dell Encryption (formerly Dell Data Protection | Encryption) v10.1.0 and earlier contain an information disclosure vulnerability. A malicious user with physical access to the machine could potentially exploit this vulnerability to access the unencrypted RegBack folder that contains back-ups of sensitive system files.
Categories: Security News

CVE-2018-15797

National Vulnerability Database - Wed, 12/05/2018 - 13:29
Cloud Foundry NFS volume release, 1.2.x prior to 1.2.5, 1.5.x prior to 1.5.4, 1.7.x prior to 1.7.3, logs the cf admin username and password when running the nfsbrokerpush BOSH deploy errand. A remote authenticated user with access to BOSH can obtain the admin credentials for the Cloud Foundry Platform through the logs of the NFS volume deploy errand.
Categories: Security News

CVE-2017-1622

National Vulnerability Database - Wed, 12/05/2018 - 12:29
IBM QRadar SIEM 7.2.8 and 7.3 does not validate, or incorrectly validates, a certificate. This weakness might allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. IBM X-force ID: 133120.
Categories: Security News

CVE-2018-1568

National Vulnerability Database - Wed, 12/05/2018 - 12:29
IBM QRadar SIEM 7.2 and 7.3 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 143118.
Categories: Security News

CVE-2018-1648

National Vulnerability Database - Wed, 12/05/2018 - 12:29
IBM QRadar SIEM 7.2 and 7.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 144653.
Categories: Security News

CVE-2018-1650

National Vulnerability Database - Wed, 12/05/2018 - 12:29
IBM QRadar SIEM 7.2 and 7.3 uses hard-coded credentials which could allow an attacker to bypass the authentication configured by the administrator. IBM X-Force ID: 144656.
Categories: Security News

CVE-2018-1697

National Vulnerability Database - Wed, 12/05/2018 - 12:29
IBM Maximo Asset Management 7.6 could allow an authenticated user to enumerate usernames using a specially crafted HTTP request. IBM X-Force ID: 145966.
Categories: Security News

CVE-2018-1728

National Vulnerability Database - Wed, 12/05/2018 - 12:29
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 147707.
Categories: Security News

CVE-2018-1730

National Vulnerability Database - Wed, 12/05/2018 - 12:29
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 147709.
Categories: Security News

CVE-2018-1732

National Vulnerability Database - Wed, 12/05/2018 - 12:29
IBM QRadar SIEM 1.14.0 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 147810.
Categories: Security News

CVE-2018-1941

National Vulnerability Database - Wed, 12/05/2018 - 12:29
IBM Campaign 9.1.0 and 9.1.2 could allow a local user to obtain admini privileges due to the application not validating access permissions. IBM X-Force ID: 153382.
Categories: Security News

Pages