News aggregator

CVE-2018-12659

National Vulnerability Database - Fri, 06/22/2018 - 11:29
SLiMS 8 Akasia 8.3.1 allows remote attackers to bypass the CSRF protection mechanism and obtain admin access by omitting the csrf_token parameter.
Categories: Security News

CVE-2018-12649

National Vulnerability Database - Fri, 06/22/2018 - 10:29
An issue was discovered in app/Controller/UsersController.php in MISP 2.4.92. An adversary can bypass the brute-force protection by using a PUT HTTP method instead of a POST HTTP method in the login part, because this protection was only covering POST requests.
Categories: Security News

CVE-2018-1655

National Vulnerability Database - Fri, 06/22/2018 - 10:29
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains a vulnerability in the rmsock command that may be used to expose kernel memory. IBM X-Force ID: 144748.
Categories: Security News

CVE-2017-2668

National Vulnerability Database - Fri, 06/22/2018 - 09:29
389-ds-base before versions 1.3.5.17 and 1.3.6.10 is vulnerable to an invalid pointer dereference in the way LDAP bind requests are handled. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service.
Categories: Security News

CVE-2017-7466

National Vulnerability Database - Fri, 06/22/2018 - 09:29
Ansible before version 2.3 has an input validation vulnerability in the handling of data sent from client systems. An attacker with control over a client system being managed by Ansible, and the ability to send facts back to the Ansible server, could use this flaw to execute arbitrary code on the Ansible server using the Ansible server privileges.
Categories: Security News

CVE-2018-12648

National Vulnerability Database - Fri, 06/22/2018 - 09:29
The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Support.hpp in Exempi 2.4.5 has a NULL pointer dereference.
Categories: Security News

CVE-2018-12641

National Vulnerability Database - Fri, 06/22/2018 - 08:29
An issue was discovered in arm_pt in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. Stack Exhaustion occurs in the C++ demangling functions provided by libiberty, and there are recursive stack frames: demangle_arm_hp_template, demangle_class_name, demangle_fund_type, do_type, do_arg, demangle_args, and demangle_nested_args. This can occur during execution of nm-new.
Categories: Security News

CVE-2018-12642

National Vulnerability Database - Fri, 06/22/2018 - 08:29
Froxlor through 0.9.39.5 has Incorrect Access Control for tickets not owned by the current user.
Categories: Security News

CVE-2018-12633

National Vulnerability Database - Thu, 06/21/2018 - 20:29
An issue was discovered in the Linux kernel through 4.17.2. vbg_misc_device_ioctl() in drivers/virt/vboxguest/vboxguest_linux.c reads the same user data twice with copy_from_user. The header part of the user data is double-fetched, and a malicious user thread can tamper with the critical variables (hdr.size_in and hdr.size_out) in the header between the two fetches because of a race condition, leading to severe kernel errors, such as buffer over-accesses. This bug can cause a local denial of service and information leakage.
Categories: Security News

CVE-2018-12634

National Vulnerability Database - Thu, 06/21/2018 - 20:29
CirCarLife Scada v4.2.4 allows remote attackers to obtain sensitive information via a direct request for the html/log or services/system/info.html URI.
Categories: Security News

CVE-2018-12635

National Vulnerability Database - Thu, 06/21/2018 - 20:29
CirCarLife Scada v4.2.4 allows unauthorized upgrades via requests to the html/upgrade.html and services/system/firmware.upgrade URIs.
Categories: Security News

CVE-2018-12630

National Vulnerability Database - Thu, 06/21/2018 - 18:29
NEWMARK (aka New Mark) NMCMS 2.1 allows SQL Injection via the sect_id parameter to the /catalog URI.
Categories: Security News

CVE-2018-12631

National Vulnerability Database - Thu, 06/21/2018 - 18:29
Redatam7 (formerly Redatam WebServer) allows remote attackers to read arbitrary files via /redbin/rpwebutilities.exe/text?LFN=../ directory traversal.
Categories: Security News

CVE-2018-12632

National Vulnerability Database - Thu, 06/21/2018 - 18:29
Redatam7 (formerly Redatam WebServer) allows remote attackers to discover the installation path via an invalid LFN parameter to the /redbin/rpwebutilities.exe/text URI.
Categories: Security News

CVE-2018-12581

National Vulnerability Database - Thu, 06/21/2018 - 16:29
An issue was discovered in js/designer/move.js in phpMyAdmin before 4.8.2. A Cross-Site Scripting vulnerability has been found where an attacker can use a crafted database name to trigger an XSS attack when that database is referenced from the Designer feature.
Categories: Security News

CVE-2018-12613

National Vulnerability Database - Thu, 06/21/2018 - 16:29
An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an attacker can include (view and potentially execute) files on the server. The vulnerability comes from a portion of code where pages are redirected and loaded within phpMyAdmin, and an improper test for whitelisted pages. An attacker must be authenticated, except in the "$cfg['AllowArbitraryServer'] = true" case (where an attacker can specify any host he/she is already in control of, and execute arbitrary code on phpMyAdmin) and the "$cfg['ServerDefault'] = 0" case (which bypasses the login requirement and runs the vulnerable code without any authentication).
Categories: Security News

CVE-2018-3665

National Vulnerability Database - Thu, 06/21/2018 - 16:29
System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel.
Categories: Security News

CVE-2018-7679

National Vulnerability Database - Thu, 06/21/2018 - 15:29
Micro Focus Solutions Business Manager versions prior to 11.4 when ASP.NET is configured with execute permission on the virtual directories and does not validate the contents of user avatar images, could lead to remote code execution.
Categories: Security News

CVE-2018-7680

National Vulnerability Database - Thu, 06/21/2018 - 15:29
Micro Focus Solutions Business Manager versions prior to 11.4 can reflect back HTTP header values.
Categories: Security News

CVE-2018-7681

National Vulnerability Database - Thu, 06/21/2018 - 15:29
Micro Focus Solutions Business Manager versions prior to 11.4 allows JavaScript to be embedded in URLs placed in "Favorites" folder. If the user has certain administrative privileges then this vulnerability can impact other users in the system.
Categories: Security News

Pages