News aggregator

CVE-2018-10572

National Vulnerability Database - Mon, 04/30/2018 - 13:29
interface/patient_file/letter.php in OpenEMR before 5.0.1 allows remote authenticated users to bypass intended access restrictions via the newtemplatename and form_body parameters.
Categories: Security News

CVE-2018-10573

National Vulnerability Database - Mon, 04/30/2018 - 13:29
interface/fax/fax_dispatch.php in OpenEMR before 5.0.1 allows remote authenticated users to bypass intended access restrictions via the scan parameter.
Categories: Security News

CVE-2018-9310

National Vulnerability Database - Mon, 04/30/2018 - 13:29
An issue was discovered in MagniComp SysInfo before 10-H81 if setuid root (the default). This vulnerability allows any local user on a Linux/UNIX system to run SysInfo and obtain a root shell, which can be used to compromise the local system.
Categories: Security News

CVE-2018-10570

National Vulnerability Database - Mon, 04/30/2018 - 12:29
Frog CMS 0.9.5 has XSS in /install/index.php via the ['config']['admin_username'] field.
Categories: Security News

CVE-2017-9657

National Vulnerability Database - Mon, 04/30/2018 - 11:29
Under specific 802.11 network conditions, a partial re-association of the Philips IntelliVue MX40 Version B.06.18 WLAN monitor to the central monitoring station is possible. In this state, the central monitoring station can indicate the MX40 is not connected or associated to the central monitor, and thus should be operating in local monitoring mode (local audio-on, screen-on), but the MX40 WLAN itself can instead still be operating in telemetry mode (local audio-off, screen-off). If a patient experiences an alarm event and clinical staff expects the MX40 to provide local alarming when it is not available from the local device, a delay of treatment can occur. CVSS v3 base score: 6.5, CVSS vector string: AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. Philips has released software update, Version B.06.18, to fix the improper cleanup on thrown exception vulnerability, and implement mitigations to reduce the risk associated with the improper handling of exceptional conditions vulnerability. The software update implements messaging and alarming on the MX40 and at the central monitoring station, when the MX40 disconnects from the access point.
Categories: Security News

CVE-2017-9658

National Vulnerability Database - Mon, 04/30/2018 - 11:29
Certain 802.11 network management messages have been determined to invoke wireless access point blacklisting security defenses when not required, which can necessitate intervention by hospital staff to reset the device and reestablish a network connection to the Wi-Fi access point. During this state, the Philips IntelliVue MX40 Version B.06.18 can either connect to an alternative access point within signal range for association to a central monitoring station, or it can remain in local monitoring mode until the device is reset by hospital staff. CVSS v3 base score: 6.5, CVSS vector string: AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. Philips has released software update, Version B.06.18, to fix the improper cleanup on thrown exception vulnerability, and implement mitigations to reduce the risk associated with the improper handling of exceptional conditions vulnerability. The software update implements messaging and alarming on the MX40 and at the central monitoring station, when the MX40 disconnects from the access point.
Categories: Security News

CVE-2018-7891

National Vulnerability Database - Mon, 04/30/2018 - 11:29
The Milestone XProtect Video Management Software (Corporate, Expert, Professional+, Express+, Essential+) 2016 R1 (10.0.a) to 2018 R1 (12.1a) contains .NET Remoting endpoints that are vulnerable to deserialization attacks resulting in remote code execution.
Categories: Security News

CVE-2018-8839

National Vulnerability Database - Mon, 04/30/2018 - 11:29
Delta PMSoft versions 2.10 and prior have multiple stack-based buffer overflow vulnerabilities where a .ppm file can introduce a value larger than is readable by PMSoft's fixed-length stack buffer. This can cause the buffer to be overwritten, which may allow arbitrary code execution or cause the application to crash. CVSS v3 base score: 7.1; CVSS vector string: AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H. Delta Electronics recommends affected users update to at least PMSoft v2.11, which was made available as of March 22, 2018, or the latest available version.
Categories: Security News

CVE-2017-17314

National Vulnerability Database - Mon, 04/30/2018 - 10:29
Huawei DP300 V500R002C00, RP200 V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an invalid memory access vulnerability. An unauthenticated attacker has to find a way to send malformed SCCP messages to the affected products. Due to insufficient input validation of some values in the messages, successful exploit may cause buffer error and some service abnormal.
Categories: Security News

CVE-2017-17318

National Vulnerability Database - Mon, 04/30/2018 - 10:29
Huawei MBB (Mobile Broadband) products E5771h-937 with the versions before E5771h-937TCPU-V200R001B328D62SP00C1133 and the versions before E5771h-937TCPU-V200R001B329D05SP00C1308 have a Denial of Service (DoS) vulnerability. When an attacker accessing device sends special http request to device, the webserver process will try to apply too much memory which can cause the device to become unable to respond. An attacker can launch a DoS attack by exploiting this vulnerability.
Categories: Security News

CVE-2018-1389

National Vulnerability Database - Mon, 04/30/2018 - 10:29
IBM API Connect 5.0.0.0 through 5.0.8.2 is impacted by generated LoopBack APIs for a Model using the BelongsTo/HasMany relationship allowing unauthorized modification of information. IBM X-Force ID: 138213.
Categories: Security News

CVE-2018-1430

National Vulnerability Database - Mon, 04/30/2018 - 10:29
IBM API Connect 5.0.0.0 through 5.0.8.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 139226.
Categories: Security News

CVE-2018-7901

National Vulnerability Database - Mon, 04/30/2018 - 10:29
RCS module in Huawei ALP-AL00B smart phones with software versions earlier than 8.0.0.129, BLA-AL00B smart phones with software versions earlier than 8.0.0.129 has a remote control vulnerability. An attacker can trick a user to install a malicious application. When the application connects with RCS for the first time, it needs user to manually click to agree. In addition, the attacker needs to obtain the key that RCS uses to authenticate the application. Successful exploitation may cause the attacker to control keyboard remotely.
Categories: Security News

CVE-2017-18262

National Vulnerability Database - Mon, 04/30/2018 - 09:29
Blackboard Learn (Since at least 17th of October 2017) has allowed Unvalidated Redirects on any signed-in user through its endpoints for handling Shibboleth logins, as demonstrated by a webapps/bb-auth-provider-shibboleth-BBLEARN/execute/shibbolethLogin?returnUrl= URI.
Categories: Security News

CVE-2018-0711

National Vulnerability Database - Mon, 04/30/2018 - 09:29
Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML.
Categories: Security News

CVE-2017-2591

National Vulnerability Database - Mon, 04/30/2018 - 08:29
389-ds-base before version 1.3.6 is vulnerable to an improperly NULL terminated array in the uniqueness_entry_to_config() function in the "attribute uniqueness" plugin of 389 Directory Server. An authenticated, or possibly unauthenticated, attacker could use this flaw to force an out-of-bound heap memory read, possibly triggering a crash of the LDAP service.
Categories: Security News

CVE-2018-10550

National Vulnerability Database - Mon, 04/30/2018 - 00:29
In Octopus Deploy before 2018.4.7, target and tenant tag variable scopes were not checked against the list of tenants the user has access to.
Categories: Security News

Vuln: Xen XSA-258 Information Disclosure Vulnerability

SecurityFocus Vulnerabilities - Mon, 04/30/2018 - 00:00
Xen XSA-258 Information Disclosure Vulnerability
Categories: Security News

Vuln: Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability

SecurityFocus Vulnerabilities - Mon, 04/30/2018 - 00:00
Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability
Categories: Security News

CVE-2018-10553

National Vulnerability Database - Sun, 04/29/2018 - 23:29
An issue was discovered in Nagios XI 5.4.13. A registered user is able to use directory traversal to read local files, as demonstrated by URIs beginning with index.php?xiwindow=./ and config/?xiwindow=../ substrings.
Categories: Security News

Pages