National Vulnerability Database

Subscribe to National Vulnerability Database feed
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
Updated: 16 hours 1 min ago

CVE-2018-6974

Tue, 10/16/2018 - 15:29
VMware ESXi (6.7 before ESXi670-201810101-SG, 6.5 before ESXi650-201808401-BG, and 6.0 before ESXi600-201808401-BG), Workstation (14.x before 14.1.3) and Fusion (10.x before 10.1.3) contain an out-of-bounds read vulnerability in SVGA device. This issue may allow a guest to execute code on the host.
Categories: Security News

CVE-2018-18389

Tue, 10/16/2018 - 14:29
Due to incorrect access control in Neo4j Enterprise Database Server 3.4.x before 3.4.9, the setting of LDAP for authentication with STARTTLS, and System Account for authorization, allows an attacker to log into the server by sending any valid username with an arbitrary password.
Categories: Security News

CVE-2018-18384

Tue, 10/16/2018 - 12:50
Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12.
Categories: Security News

CVE-2018-18385

Tue, 10/16/2018 - 12:50
Asciidoctor v1.5.7.1 allows remote attackers to cause a denial of service (infinite loop), as demonstrated by web applications that deliver untrusted input to this product, because Parser#next_block misuses a "while true" statement.
Categories: Security News

CVE-2018-10839

Tue, 10/16/2018 - 10:29
Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network. A user inside guest could use this flaw to crash the Qemu process resulting in DoS.
Categories: Security News

CVE-2018-13399

Tue, 10/16/2018 - 09:29
The Microsoft Windows Installer for Atlassian Fisheye and Crucible before version 4.6.1 allows local attackers to escalate privileges because of weak permissions on the installation directory.
Categories: Security News

CVE-2018-18381

Tue, 10/16/2018 - 03:29
Z-BlogPHP 1.5.2.1935 (Zero) has a stored XSS Vulnerability in zb_system/function/c_system_admin.php via the Content-Type header during the uploading of image attachments.
Categories: Security News

CVE-2018-18382

Tue, 10/16/2018 - 03:29
Advanced HRM 1.6 allows Remote Code Execution via PHP code in a .php file to the user/update-user-avatar URI, which can be accessed through an "Update Profile" "Change Picture" (aka user/edit-profile) action.
Categories: Security News

CVE-2018-18374

Mon, 10/15/2018 - 21:29
XSS exists in the MetInfo 6.1.2 admin/index.php page via the anyid parameter.
Categories: Security News

CVE-2018-18375

Mon, 10/15/2018 - 21:29
goform/getProfileList in Orange AirBox Y858_FL_01.16_04 allows attackers to extract APN data (name, number, username, and password) via the rand parameter.
Categories: Security News

CVE-2018-18376

Mon, 10/15/2018 - 21:29
goform/getWlanClientInfo in Orange AirBox Y858_FL_01.16_04 allows remote attackers to discover information about currently connected devices (hostnames, IP addresses, MAC addresses, and connection time) via the rand parameter.
Categories: Security News

CVE-2018-18377

Mon, 10/15/2018 - 21:29
goform/setReset on Orange AirBox Y858_FL_01.16_04 devices allows attackers to reset a router to factory settings, which can be used to login using the default admin:admin credentials.
Categories: Security News

CVE-2018-17534

Mon, 10/15/2018 - 15:29
Teltonika RUT9XX routers with firmware before 00.04.233 provide a root terminal on a serial interface without proper access control. This allows attackers with physical access to execute arbitrary commands with root privileges.
Categories: Security News

CVE-2018-17980

Mon, 10/15/2018 - 15:29
NoMachine before 5.3.27 and 6.x before 6.3.6 allows attackers to gain privileges via a Trojan horse wintab32.dll file located in the same directory as a .nxs file, as demonstrated by a scenario where the .nxs file and the DLL are in the current working directory, and the Trojan horse code is executed. (The directory could, in general, be on a local filesystem or a network share.).
Categories: Security News

CVE-2018-18259

Mon, 10/15/2018 - 15:29
Stored XSS has been discovered in version 1.0.12 of the LUYA CMS software via /admin/api-cms-nav/create-page.
Categories: Security News

CVE-2018-18260

Mon, 10/15/2018 - 15:29
In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The profile image in the User settings section can be run in the update / upload area via /admin/media/upload?actions=false.
Categories: Security News

CVE-2018-17532

Mon, 10/15/2018 - 15:29
Teltonika RUT9XX routers with firmware before 00.04.233 are prone to multiple unauthenticated OS command injection vulnerabilities in autologin.cgi and hotspotlogin.cgi due to insufficient user input sanitization. This allows remote attackers to execute arbitrary commands with root privileges.
Categories: Security News

CVE-2018-17533

Mon, 10/15/2018 - 15:29
Teltonika RUT9XX routers with firmware before 00.05.01.1 are prone to cross-site scripting vulnerabilities in hotspotlogin.cgi due to insufficient user input sanitization.
Categories: Security News

CVE-2017-5934

Mon, 10/15/2018 - 15:29
Cross-site scripting (XSS) vulnerability in the link dialogue in GUI editor in MoinMoin before 1.9.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Categories: Security News

CVE-2018-15538

Mon, 10/15/2018 - 15:29
Agentejo Cockpit has multiple Cross-Site Scripting vulnerabilities.
Categories: Security News

Pages