National Vulnerability Database

Subscribe to National Vulnerability Database feed
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
Updated: 17 hours 38 min ago

CVE-2018-6953

Tue, 02/13/2018 - 15:29
In CCN-lite 2, the Parser of NDNTLV does not verify whether a certain component's length field matches the actual component length, which has a resultant buffer overflow and out-of-bounds memory accesses.
Categories: Security News

CVE-2018-6954

Tue, 02/13/2018 - 15:29
systemd-tmpfiles in systemd through 237 mishandles symlinks present in non-terminal path components, which allows local users to obtain ownership of arbitrary files via vectors involving creation of a directory and a file under that directory, and later replacing that directory with a symlink. This occurs even if the fs.protected_symlinks sysctl is turned on.
Categories: Security News

CVE-2015-9252

Tue, 02/13/2018 - 14:29
An issue was discovered in QPDF before 7.0.0. Endless recursion causes stack exhaustion in QPDFTokenizer::resolveLiteral() in QPDFTokenizer.cc, related to the QPDF::resolve function in QPDF.cc.
Categories: Security News

CVE-2016-10713

Tue, 02/13/2018 - 14:29
An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access within pch_write_line() in pch.c can possibly lead to DoS via a crafted input file.
Categories: Security News

CVE-2017-18183

Tue, 02/13/2018 - 14:29
An issue was discovered in QPDF before 7.0.0. There is an infinite loop in the QPDFWriter::enqueueObject() function in libqpdf/QPDFWriter.cc.
Categories: Security News

CVE-2017-18184

Tue, 02/13/2018 - 14:29
An issue was discovered in QPDF before 7.0.0. There is a stack-based out-of-bounds read in the function iterate_rc4 in QPDF_encryption.cc.
Categories: Security News

CVE-2017-18185

Tue, 02/13/2018 - 14:29
An issue was discovered in QPDF before 7.0.0. There is a large heap-based out-of-bounds read in the Pl_Buffer::write function in Pl_Buffer.cc. It is caused by an integer overflow in the PNG filter.
Categories: Security News

CVE-2017-18186

Tue, 02/13/2018 - 14:29
An issue was discovered in QPDF before 7.0.0. There is an infinite loop due to looping xref tables in QPDF.cc.
Categories: Security News

CVE-2018-6951

Tue, 02/13/2018 - 14:29
An issue was discovered in GNU patch through 2.7.6. There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of service in the intuit_diff_type function in pch.c, aka a "mangled rename" issue.
Categories: Security News

CVE-2018-6952

Tue, 02/13/2018 - 14:29
A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6.
Categories: Security News

CVE-2018-6928

Tue, 02/13/2018 - 12:29
PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term.
Categories: Security News

CVE-2018-6948

Tue, 02/13/2018 - 12:29
In CCN-lite 2, the function ccnl_prefix_to_str_detailed can cause a buffer overflow, when writing a prefix to the buffer buf. The maximal size of the prefix is CCNL_MAX_PREFIX_SIZE; the buffer has the size CCNL_MAX_PREFIX_SIZE. However, when NFN is enabled, additional characters are written to the buffer (e.g., the "NFN" and "R2C" tags). Therefore, sending an NFN-R2C packet with a prefix of size CCNL_MAX_PREFIX_SIZE can cause an overflow of buf inside ccnl_prefix_to_str_detailed.
Categories: Security News

CVE-2018-0487

Tue, 02/13/2018 - 10:29
ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0 allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via a crafted certificate chain that is mishandled during RSASSA-PSS signature verification within a TLS or DTLS session.
Categories: Security News

CVE-2018-0488

Tue, 02/13/2018 - 10:29
ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0, when the truncated HMAC extension and CBC are used, allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption) via a crafted application packet within a TLS or DTLS session.
Categories: Security News

CVE-2018-6911

Tue, 02/13/2018 - 09:29
The VBWinExec function in Node\AspVBObj.dll in Advantech WebAccess 8.3.0 allows remote attackers to execute arbitrary OS commands via a single argument (aka the command parameter).
Categories: Security News

CVE-2018-6292

Tue, 02/13/2018 - 08:29
Remote Code Execution in Saperion Web Client version 7.5.2 83166.
Categories: Security News

CVE-2018-6293

Tue, 02/13/2018 - 08:29
Arbitrary File Read in Saperion Web Client version 7.5.2 83166.
Categories: Security News

CVE-2018-1297

Tue, 02/13/2018 - 07:29
When using Distributed Test only (RMI based), Apache JMeter 2.x and 3.x uses an unsecured RMI connection. This could allow an attacker to get Access to JMeterEngine and send unauthorized code.
Categories: Security News

CVE-2018-6930

Tue, 02/13/2018 - 00:29
A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote attacker to cause a denial of service (application crash) via a maliciously crafted pict file.
Categories: Security News

CVE-2018-6942

Tue, 02/13/2018 - 00:29
An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.
Categories: Security News

Pages