News aggregator

CVE-2018-7926

National Vulnerability Database - Tue, 11/13/2018 - 14:29
Huawei Watch 2 with versions and earlier than OWDD.180707.001.E1 have an improper authorization vulnerability. Due to improper permission configuration for specific operations, an attacker who obtained the Huawei ID bound to the watch can bypass permission verification to perform specific operations and modify some data on the watch.
Categories: Security News

CVE-2018-6260

National Vulnerability Database - Tue, 11/13/2018 - 12:29
NVIDIA graphics driver contains a vulnerability that may allow access to application data processed on the GPU through a side channel exposed by the GPU performance counters. Local user access is required. This is not a network or remote attack vector.
Categories: Security News

CVE-2018-16850

National Vulnerability Database - Tue, 11/13/2018 - 10:29
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.
Categories: Security News

CVE-2018-17187

National Vulnerability Database - Tue, 11/13/2018 - 10:29
The Apache Qpid Proton-J transport includes an optional wrapper layer to perform TLS, enabled by use of the 'transport.ssl(...)' methods. Unless a verification mode was explicitly configured, client and server modes previously defaulted as documented to not verifying a peer certificate, with options to configure this explicitly or select a certificate verification mode with or without hostname verification being performed. The latter hostname verifying mode was not implemented in Apache Qpid Proton-J versions 0.3 to 0.29.0, with attempts to use it resulting in an exception. This left only the option to verify the certificate is trusted, leaving such a client vulnerable to Man In The Middle (MITM) attack. Uses of the Proton-J protocol engine which do not utilise the optional transport TLS wrapper are not impacted, e.g. usage within Qpid JMS. Uses of Proton-J utilising the optional transport TLS wrapper layer that wish to enable hostname verification must be upgraded to version 0.30.0 or later and utilise the VerifyMode#VERIFY_PEER_NAME configuration, which is now the default for client mode usage unless configured otherwise.
Categories: Security News

CVE-2018-1792

National Vulnerability Database - Tue, 11/13/2018 - 10:29
IBM WebSphere MQ 8.0.0.0 through 8.0.0.10, 9.0.0.0 through 9.0.0.5, 9.0.1 through 9.0.5, and 9.1.0.0 could allow a local user to inject code that could be executed with root privileges. IBM X-Force ID: 148947.
Categories: Security News

CVE-2018-1808

National Vulnerability Database - Tue, 11/13/2018 - 10:29
IBM WebSphere Commerce 9.0.0.0 through 9.0.0.6 could allow some server-side code injection due to inadequate input control. IBM X-Force ID: 149828.
Categories: Security News

CVE-2018-15452

National Vulnerability Database - Tue, 11/13/2018 - 09:29
A vulnerability in the DLL loading component of Cisco Advanced Malware Protection (AMP) for Endpoints on Windows could allow an authenticated, local attacker to disable system scanning services or take other actions to prevent detection of unauthorized intrusions. To exploit this vulnerability, the attacker would need to have administrative credentials on the Windows system. The vulnerability is due to the improper validation of resources loaded by a system process at run time. An attacker could exploit this vulnerability by crafting a malicious DLL file and placing it in a specific location on the targeted system. A successful exploit could allow the attacker to disable the targeted system's scanning services and ultimately prevent the system from being protected from further intrusion. There are no workarounds that address this vulnerability.
Categories: Security News

CVE-2018-15771

National Vulnerability Database - Tue, 11/13/2018 - 09:29
Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an information disclosure vulnerability. A malicious boxmgmt user may potentially be able to determine the existence of any system file via Boxmgmt CLI.
Categories: Security News

CVE-2018-15772

National Vulnerability Database - Tue, 11/13/2018 - 09:29
Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an uncontrolled resource consumption vulnerability. A malicious boxmgmt user may potentially be able to consume large amount of CPU bandwidth to make the system slow or to determine the existence of any system file via Boxmgmt CLI.
Categories: Security News

CVE-2018-15795

National Vulnerability Database - Tue, 11/13/2018 - 09:29
Pivotal CredHub Service Broker, versions prior to 1.1.0, uses a guessable form of random number generation in creating service broker's UAA client. A remote malicious user may guess the client secret and obtain or modify credentials for users of the CredHub Service.
Categories: Security News

CVE-2018-18591

National Vulnerability Database - Tue, 11/13/2018 - 08:29
A potential unauthorized disclosure of data vulnerability has been identified in Micro Focus Service Manager versions: 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51. The vulnerability could be exploited to release unauthorized disclosure of data.
Categories: Security News

CVE-2018-19246

National Vulnerability Database - Tue, 11/13/2018 - 04:29
PHP-Proxy 5.1.0 allows remote attackers to read local files if the default "pre-installed version" (intended for users who lack shell access to their web server) is used. This occurs because the aeb067ca0aa9a3193dce3a7264c90187 app_key value from the default config.php is in place, and this value can be easily used to calculate the authorization data needed for local file inclusion.
Categories: Security News

CVE-2018-19244

National Vulnerability Database - Tue, 11/13/2018 - 01:29
An XML External Entity (XXE) vulnerability exists in the Charles 4.2.7 import/export setup option. If a user imports a "Charles Settings.xml" file from an attacker, an intranet network may be accessed and information may be leaked.
Categories: Security News

Vuln: Adobe Acrobat and Reader CVE-2018-15979 Information Disclosure Vulnerability

SecurityFocus Vulnerabilities - Tue, 11/13/2018 - 00:00
Adobe Acrobat and Reader CVE-2018-15979 Information Disclosure Vulnerability
Categories: Security News

Vuln: Adobe Photoshop CC CVE-2018-15980 Information Disclosure Vulnerability

SecurityFocus Vulnerabilities - Tue, 11/13/2018 - 00:00
Adobe Photoshop CC CVE-2018-15980 Information Disclosure Vulnerability
Categories: Security News

Vuln: SAP Basis CVE-2018-2478 Remote Code Execution Vulnerability

SecurityFocus Vulnerabilities - Tue, 11/13/2018 - 00:00
SAP Basis CVE-2018-2478 Remote Code Execution Vulnerability
Categories: Security News

CVE-2018-19220

National Vulnerability Database - Mon, 11/12/2018 - 15:29
An issue was discovered in LAOBANCMS 2.0. It allows remote attackers to execute arbitrary PHP code via the host parameter to the install/ URI.
Categories: Security News

CVE-2018-19221

National Vulnerability Database - Mon, 11/12/2018 - 15:29
An issue was discovered in LAOBANCMS 2.0. It allows SQL Injection via the admin/login.php guanliyuan parameter.
Categories: Security News

CVE-2018-19222

National Vulnerability Database - Mon, 11/12/2018 - 15:29
An issue was discovered in LAOBANCMS 2.0. It allows a /install/mysql_hy.php?riqi=0&i=0 attack to reset the admin password, even if install.txt exists.
Categories: Security News

CVE-2018-19223

National Vulnerability Database - Mon, 11/12/2018 - 15:29
An issue was discovered in LAOBANCMS 2.0. It allows XSS via the first input field to the admin/type.php?id=1 URI.
Categories: Security News

Pages