| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
2301 |
CVE-2018-6588 |
79 |
|
XSS |
2018-03-29 |
2018-04-18 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
CA API Developer Portal 3.5 up to and including 3.5 CR5 has a reflected cross-site scripting vulnerability related to the apiExplorer. |
|
2302 |
CVE-2018-6587 |
79 |
|
XSS |
2018-03-29 |
2018-04-18 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
CA API Developer Portal 3.5 up to and including 3.5 CR6 has a reflected cross-site scripting vulnerability related to the widgetID variable. |
|
2303 |
CVE-2018-6586 |
79 |
|
XSS |
2018-03-29 |
2018-04-18 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
CA API Developer Portal 3.5 up to and including 3.5 CR6 has a stored cross-site scripting vulnerability related to profile picture processing. |
|
2304 |
CVE-2018-6561 |
79 |
|
XSS |
2018-02-02 |
2018-02-15 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element. |
|
2305 |
CVE-2018-6560 |
19 |
|
|
2018-02-02 |
2018-09-26 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In dbus-proxy/flatpak-proxy.c in Flatpak before 0.8.9, and 0.9.x and 0.10.x before 0.10.3, crafted D-Bus messages to the host can be used to break out of the sandbox, because whitespace handling in the proxy is not identical to whitespace handling in the daemon. |
|
2306 |
CVE-2018-6558 |
264 |
|
+Priv |
2018-08-23 |
2018-10-30 |
4.9 |
None |
Remote |
Medium |
Single system |
None |
Partial |
Partial |
|
The pam_fscrypt module in fscrypt before 0.2.4 may incorrectly restore primary and supplementary group IDs to the values associated with the root user, which allows attackers to gain privileges via a successful login through certain applications that use Linux-PAM (aka pam). |
|
2307 |
CVE-2018-6557 |
59 |
|
DoS |
2018-08-21 |
2018-11-21 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
|
The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1ubuntu2.2, and Ubuntu 18.10 before 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled. |
|
2308 |
CVE-2018-6554 |
399 |
|
DoS |
2018-09-04 |
2018-10-25 |
4.9 |
None |
Local |
Low |
Not required |
None |
None |
Complete |
|
Memory leak in the irda_bind function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows local users to cause a denial of service (memory consumption) by repeatedly binding an AF_IRDA socket. |
|
2309 |
CVE-2018-6553 |
264 |
|
|
2018-08-10 |
2018-10-10 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
The CUPS AppArmor profile incorrectly confined the dnssd backend due to use of hard links. A local attacker could possibly use this issue to escape confinement. This flaw affects versions prior to 2.2.7-1ubuntu2.1 in Ubuntu 18.04 LTS, prior to 2.2.4-7ubuntu3.1 in Ubuntu 17.10, prior to 2.1.3-4ubuntu0.5 in Ubuntu 16.04 LTS, and prior to 1.7.2-0ubuntu1.10 in Ubuntu 14.04 LTS. |
|
2310 |
CVE-2018-6545 |
79 |
|
XSS |
2018-02-02 |
2018-02-14 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Ipswitch MoveIt v8.1 is vulnerable to a Stored Cross-Site Scripting (XSS) vulnerability, as demonstrated by human.aspx. Attackers can leverage this vulnerability to send malicious messages to other users in order to steal session cookies and launch client-side attacks. |
|
2311 |
CVE-2018-6544 |
399 |
|
DoS |
2018-02-02 |
2018-11-27 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
pdf_load_obj_stm in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 could reference the object stream recursively and therefore run out of error stack, which allows remote attackers to cause a denial of service via a crafted PDF document. |
|
2312 |
CVE-2018-6542 |
399 |
|
|
2018-02-02 |
2018-02-14 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trailer seek value) caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c. |
|
2313 |
CVE-2018-6541 |
399 |
|
DoS |
2018-02-02 |
2018-07-04 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address (when handling disk64_trailer local entries) in __zzip_fetch_disk_trailer (zzip/zip.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file. |
|
2314 |
CVE-2018-6540 |
399 |
|
DoS |
2018-02-02 |
2018-07-04 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file. |
|
2315 |
CVE-2018-6536 |
264 |
|
Exec Code |
2018-02-02 |
2018-02-28 |
4.9 |
None |
Local |
Low |
Not required |
None |
None |
Complete |
|
An issue was discovered in Icinga 2.x through 2.8.1. The daemon creates an icinga2.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for icinga2.pid modification before a root script executes a "kill `cat /pathname/icinga2.pid`" command, as demonstrated by icinga2.init.d.cmake. |
|
2316 |
CVE-2018-6535 |
310 |
|
|
2018-02-27 |
2018-03-16 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
An issue was discovered in Icinga 2.x through 2.8.1. The lack of a constant-time password comparison function can disclose the password to an attacker. |
|
2317 |
CVE-2018-6534 |
476 |
|
|
2018-02-27 |
2018-03-16 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
An issue was discovered in Icinga 2.x through 2.8.1. By sending specially crafted messages, an attacker can cause a NULL pointer dereference, which can cause the product to crash. |
|
2318 |
CVE-2018-6529 |
79 |
|
XSS |
2018-03-06 |
2018-03-27 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
XSS vulnerability in htdocs/webinc/js/bsc_sms_inbox.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to read a cookie via a crafted Treturn parameter to soap.cgi. |
|
2319 |
CVE-2018-6528 |
79 |
|
XSS |
2018-03-06 |
2018-03-27 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
XSS vulnerability in htdocs/webinc/body/bsc_sms_send.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to read a cookie via a crafted receiver parameter to soap.cgi. |
|
2320 |
CVE-2018-6527 |
79 |
|
XSS |
2018-03-06 |
2018-03-27 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
XSS vulnerability in htdocs/webinc/js/adv_parent_ctrl_map.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote attackers to read a cookie via a crafted deviceid parameter to soap.cgi. |
|
2321 |
CVE-2018-6502 |
79 |
|
XSS |
2018-09-20 |
2018-11-06 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
A potential Reflected Cross-Site Scripting (XSS) Security vulnerability has been identified in ArcSight Management Center (ArcMC) in all versions prior to 2.81. This vulnerability could be exploited to allow for Reflected Cross-site Scripting (XSS). |
|
2322 |
CVE-2018-6501 |
284 |
|
|
2018-09-20 |
2018-11-08 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
|
Potential security vulnerability of Insufficient Access Controls has been identified in ArcSight Management Center (ArcMC) for versions prior to 2.81. This vulnerability could be exploited to allow for insufficient access controls. |
|
2323 |
CVE-2018-6492 |
79 |
|
XSS |
2018-05-22 |
2018-06-22 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Persistent Cross-Site Scripting, and non-persistent HTML Injection in HP Network Operations Management Ultimate, version 2017.07, 2017.11, 2018.02 and in Network Automation, version 10.00, 10.10, 10.11, 10.20, 10.30, 10.40, 10.50. This vulnerability could be remotely exploited to allow persistent cross-site scripting, and non-persistent HTML Injection. |
|
2324 |
CVE-2018-6484 |
399 |
|
DoS |
2018-02-01 |
2018-07-04 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
In ZZIPlib 0.13.67, there is a memory alignment error and bus error in the __zzip_fetch_disk_trailer function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file. |
|
2325 |
CVE-2018-6469 |
79 |
|
XSS |
2018-02-06 |
2018-02-28 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
A cross-site scripting (XSS) vulnerability in flickrRSS.php in the flickrRSS plugin 5.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the flickrRSS_tags parameter to wp-admin/options-general.php. |
|
2326 |
CVE-2018-6468 |
79 |
|
XSS |
2018-02-06 |
2018-02-28 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
A cross-site scripting (XSS) vulnerability in flickrRSS.php in the flickrRSS plugin 5.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the flickrRSS_id parameter to wp-admin/options-general.php. |
|
2327 |
CVE-2018-6466 |
79 |
|
XSS |
2018-02-06 |
2018-02-28 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
A cross-site scripting (XSS) vulnerability in flickrRSS.php in the flickrRSS plugin 5.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the flickrRSS_set parameter to wp-admin/options-general.php. |
|
2328 |
CVE-2018-6465 |
79 |
|
XSS |
2018-01-31 |
2018-02-15 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
The PropertyHive plugin before 1.4.15 for WordPress has XSS via the body parameter to includes/admin/views/html-preview-applicant-matches-email.php. |
|
2329 |
CVE-2018-6464 |
79 |
|
XSS |
2018-01-31 |
2018-02-14 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Simditor v2.3.11 allows XSS via crafted use of svg/onload=alert in a TEXTAREA element, as demonstrated by Firefox 54.0.1. |
|
2330 |
CVE-2018-6405 |
399 |
|
DoS |
2018-01-30 |
2018-06-13 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. The previous pointer is lost, which leads to a memory leak. This allows remote attackers to cause a denial of service. |
|
2331 |
CVE-2018-6400 |
264 |
|
DoS +Priv |
2018-03-12 |
2018-04-10 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
Kingsoft WPS Office Free 10.2.0.5978 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of \\.\pipe\WPSCloudSvr\WpsCloudSvr -- an "insecurely created named pipe." Ensures full access to Everyone users group. |
|
2332 |
CVE-2018-6392 |
125 |
|
DoS |
2018-01-29 |
2018-07-27 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
The filter_slice function in libavfilter/vf_transpose.c in FFmpeg through 3.4.1 allows remote attackers to cause a denial of service (out-of-array access) via a crafted MP4 file. |
|
2333 |
CVE-2018-6390 |
119 |
|
DoS Overflow |
2018-01-29 |
2018-02-15 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
The WStr::assign function in kso.dll in Kingsoft WPS Office 10.1.0.7106 and 10.2.0.5978 does not validate the size of the source memory block before an _copy call, which allows remote attackers to cause a denial of service (access violation and application crash) via a crafted (a) web page, (b) office document, or (c) .rtf file. |
|
2334 |
CVE-2018-6382 |
89 |
|
Sql Bypass |
2018-01-30 |
2018-04-07 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
** DISPUTED ** MantisBT 2.10.0 allows local users to conduct SQL Injection attacks via the vendor/adodb/adodb-php/server.php sql parameter in a request to the 127.0.0.1 IP address. NOTE: the vendor disputes the significance of this report because server.php is intended to execute arbitrary SQL statements on behalf of authenticated users from 127.0.0.1, and the issue does not have an authentication bypass. |
|
2335 |
CVE-2018-6381 |
119 |
|
Overflow |
2018-01-29 |
2018-07-04 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
In ZZIPlib 0.13.67, there is a segmentation fault caused by invalid memory access in the zzip_disk_fread function (zzip/mmapped.c) because the size variable is not validated against the amount of file->stored data. |
|
2336 |
CVE-2018-6380 |
79 |
|
XSS |
2018-01-30 |
2018-02-13 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
In Joomla! before 3.8.4, lack of escaping in the module chromes leads to XSS vulnerabilities in the module system. |
|
2337 |
CVE-2018-6379 |
79 |
|
XSS |
2018-01-30 |
2018-02-13 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
In Joomla! before 3.8.4, inadequate input filtering in the Uri class (formerly JUri) leads to an XSS vulnerability. |
|
2338 |
CVE-2018-6378 |
79 |
|
XSS |
2018-05-22 |
2018-06-22 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
In Joomla! Core before 3.8.8, inadequate filtering of file and folder names leads to various XSS attack vectors in the media manager. |
|
2339 |
CVE-2018-6377 |
79 |
|
XSS |
2018-01-30 |
2018-02-13 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
In Joomla! before 3.8.4, inadequate input filtering in com_fields leads to an XSS vulnerability in multiple field types, i.e., list, radio, and checkbox |
|
2340 |
CVE-2018-6362 |
79 |
|
XSS |
2018-05-11 |
2018-06-13 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Easy Hosting Control Panel (EHCP) v0.37.12.b has XSS via the domainop action parameter, as demonstrated by reading the PHPSESSID cookie. |
|
2341 |
CVE-2018-6361 |
79 |
|
XSS |
2018-05-11 |
2018-06-13 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Easy Hosting Control Panel (EHCP) v0.37.12.b has XSS via the op parameter, as demonstrated by adding a backdoor FTP account. |
|
2342 |
CVE-2018-6356 |
22 |
|
Dir. Trav. |
2018-02-20 |
2018-03-19 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
Jenkins before 2.107 and Jenkins LTS before 2.89.4 did not properly prevent specifying relative paths that escape a base directory for URLs accessing plugin resource files. This allowed users with Overall/Read permission to download files from the Jenkins master they should not have access to. On Windows, any file accessible to the Jenkins master process could be downloaded. On other operating systems, any file within the Jenkins home directory accessible to the Jenkins master process could be downloaded. |
|
2343 |
CVE-2018-6355 |
79 |
|
XSS |
2018-01-30 |
2018-02-21 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
/goform/setLang on iBall 300M devices with "iB-WRB302N_1.0.1-Sep 8 2017" firmware has Unauthenticated Stored Cross Site Scripting via the lang parameter. |
|
2344 |
CVE-2018-6354 |
79 |
|
XSS |
2018-01-27 |
2018-02-15 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
templates/forms/thanks.html in Formspree before 2018-01-23 allows XSS related to the _next parameter. |
|
2345 |
CVE-2018-6352 |
400 |
|
DoS |
2018-01-27 |
2018-02-15 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
In PoDoFo 0.9.5, there is an Excessive Iteration in the PdfParser::ReadObjectsInternal function of base/PdfParser.cpp. Remote attackers could leverage this vulnerability to cause a denial of service through a crafted pdf file. |
|
2346 |
CVE-2018-6322 |
264 |
|
DoS +Priv |
2018-03-12 |
2018-04-11 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
Panda Global Protection 17.0.1 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of \.\pipe\PSANMSrvcPpal -- an "insecurely created named pipe." Ensures full access to Everyone users group. |
|
2347 |
CVE-2018-6321 |
428 |
|
+Priv |
2018-03-12 |
2018-04-10 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
Unquoted Windows search path vulnerability in the panda_url_filtering service in Panda Global Protection 17.0.1 allows local users to gain privileges via a malicious artefact. |
|
2348 |
CVE-2018-6319 |
20 |
|
DoS |
2018-02-02 |
2018-02-15 |
4.9 |
None |
Local |
Low |
Not required |
None |
None |
Complete |
|
In Sophos Tester Tool 3.2.0.7 Beta, the driver accepts a special DeviceIoControl code that doesn't check its argument. This argument is a memory address: if a caller passes a NULL pointer or a random invalid address, the driver will cause a Blue Screen of Death. If a program or malware does this at boot time, it can cause a persistent denial of service on the machine. |
|
2349 |
CVE-2018-6291 |
79 |
|
XSS |
2018-02-06 |
2018-02-23 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
WebConsole Cross-Site Scripting in Kaspersky Secure Mail Gateway version 1.1. |
|
2350 |
CVE-2018-6265 |
264 |
|
|
2018-11-27 |
2018-12-31 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
NVIDIA GeForce Experience contains a vulnerability in all versions prior to 3.16 during application installation on Windows 7 in elevated privilege mode, where a local user who initiates a browser session may obtain escalation of privileges on the browser. |
