News aggregator

CVE-2018-12258

National Vulnerability Database - Tue, 06/12/2018 - 14:29
An issue was discovered on Momentum Axel 720P 5.1.8 devices. Custom Firmware Upgrade is possible via an SD Card. With physical access, an attacker can upgrade the firmware in under 60 seconds by inserting an SD card containing the firmware with name 'ezviz.dav' and rebooting.
Categories: Security News

CVE-2018-12259

National Vulnerability Database - Tue, 06/12/2018 - 14:29
An issue was discovered on Momentum Axel 720P 5.1.8 devices. Root access can be obtained via UART pins without any restrictions, which leads to full system compromise.
Categories: Security News

CVE-2018-12260

National Vulnerability Database - Tue, 06/12/2018 - 14:29
An issue was discovered on Momentum Axel 720P 5.1.8 devices. The root password can be obtained in cleartext by issuing the command 'showKey' from the root CLI. This password may be the same on all devices
Categories: Security News

CVE-2018-12261

National Vulnerability Database - Tue, 06/12/2018 - 14:29
An issue was discovered on Momentum Axel 720P 5.1.8 devices. All processes run as root.
Categories: Security News

CVE-2018-10470

National Vulnerability Database - Tue, 06/12/2018 - 13:29
Little Snitch versions 4.0 to 4.0.6 use the SecStaticCodeCheckValidityWithErrors() function without the kSecCSCheckAllArchitectures flag and therefore do not validate all architectures stored in a fat binary. An attacker can maliciously craft a fat binary containing multiple architectures that may cause a situation where Little Snitch treats the running process as having no code signature at all while erroneously indicating that the binary on disk does have a valid code signature. This could lead to users being confused about whether or not the code signature is valid.
Categories: Security News

CVE-2018-10507

National Vulnerability Database - Tue, 06/12/2018 - 13:29
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to take a series of steps to bypass or render the OfficeScan Unauthorized Change Prevention inoperable on vulnerable installations. An attacker must already have administrator privileges in order to exploit this vulnerability.
Categories: Security News

CVE-2018-10508

National Vulnerability Database - Tue, 06/12/2018 - 13:29
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to use a specially crafted URL to elevate account permissions on vulnerable installations. An attacker must already have at least guest privileges in order to exploit this vulnerability.
Categories: Security News

CVE-2018-10509

National Vulnerability Database - Tue, 06/12/2018 - 13:29
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to exploit it via a Browser Refresh attack on vulnerable installations. An attacker must be using a AD logon user account in order to exploit this vulnerability.
Categories: Security News

CVE-2018-1151

National Vulnerability Database - Tue, 06/12/2018 - 13:29
The web server on Western Digital TV Media Player 1.03.07 and TV Live Hub 3.12.13 allow unauthenticated remote attackers to execute arbitrary code or cause denial of service via crafted HTTP requests to toServerValue.cgi.
Categories: Security News

CVE-2018-12254

National Vulnerability Database - Tue, 06/12/2018 - 13:29
router.php in the Harmis Ek rishta (aka ek-rishta) 2.10 component for Joomla! allows SQL Injection via the PATH_INFO to a home/requested_user/Sent%20interest/ URI.
Categories: Security News

CVE-2018-5718

National Vulnerability Database - Tue, 06/12/2018 - 12:29
Improper restriction of write operations within the bounds of a memory buffer in snscore.sys in SoftControl/SafenSoft SysWatch, SoftControl/SafenSoft TPSecure, SoftControl/SafenSoft Enterprise Suite before version 4.4.1 allows local users to cause a denial of service (BSOD) or modify kernel-mode memory via loading of a forged DLL into an user-mode process.
Categories: Security News

CVE-2018-5803

National Vulnerability Database - Tue, 06/12/2018 - 12:29
In the Linux Kernel before version 4.15.8, 4.14.25, 4.9.87, 4.4.121, 4.1.51, and 3.2.102, an error in the "_sctp_make_chunk()" function (net/sctp/sm_make_chunk.c) when handling SCTP packets length can be exploited to cause a kernel crash.
Categories: Security News

CVE-2018-5814

National Vulnerability Database - Tue, 06/12/2018 - 12:29
In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and 4.4.133, multiple race condition errors when handling probe, disconnect, and rebind operations can be exploited to trigger a use-after-free condition or a NULL pointer dereference by sending multiple USB over IP packets.
Categories: Security News

CVE-2011-4182

National Vulnerability Database - Tue, 06/12/2018 - 11:29
Missing escaping of ESSID values in sysconfig of SUSE Linux Enterprise allows attackers controlling an access point to cause execute arbitrary code. Affected releases are sysconfig prior to 0.83.7-2.1.
Categories: Security News

CVE-2018-1103

National Vulnerability Database - Tue, 06/12/2018 - 11:29
Openshift Enterprise source-to-image before version 1.1.10 is vulnerable to an improper validation of user input. An attacker who could trick a user into using the command to copy files locally, from a pod, could override files outside of the target directory of the command.
Categories: Security News

CVE-2018-2424

National Vulnerability Database - Tue, 06/12/2018 - 11:29
SAP UI5 did not validate user input before adding it to the DOM structure. This may lead to malicious user-provided JavaScript code being added to the DOM that could steal user information. Software components affected are: SAP Hana Database 1.00, 2.00; SAP UI5 1.00; SAP UI5 (Java) 7.30, 7.31, 7.40, 7,50; SAP UI 7.40, 7.50, 7.51, 7.52, and version 2.0 of SAP UI for SAP NetWeaver 7.00
Categories: Security News

CVE-2018-2425

National Vulnerability Database - Tue, 06/12/2018 - 11:29
Under certain conditions, SAP Business One, 9.2, 9.3, for SAP HANA backup service allows an attacker to access information which would otherwise be restricted.
Categories: Security News

CVE-2018-2428

National Vulnerability Database - Tue, 06/12/2018 - 11:29
Under certain conditions SAP UI5 Handler allows an attacker to access information which would otherwise be restricted. Software components affected are: SAP Infrastructure 1.0, SAP UI 7.4, 7.5, 7.51, 7.52 and version 2.0 of SAP UI for SAP NetWeaver 7.00.
Categories: Security News

CVE-2017-3960

National Vulnerability Database - Tue, 06/12/2018 - 10:29
Exploitation of Authorization vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows authenticated users to gain elevated privileges via a crafted HTTP request parameter.
Categories: Security News

CVE-2017-3962

National Vulnerability Database - Tue, 06/12/2018 - 10:29
Password recovery exploitation vulnerability in the non-certificate-based authentication mechanism in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to crack user passwords via unsalted hashes.
Categories: Security News

Pages