| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
3601 |
CVE-2018-6434 |
384 |
|
|
2018-11-08 |
2018-12-12 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
A vulnerability in the web management interface of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow attackers to intercept or manipulate a user's session ID. |
|
3602 |
CVE-2018-6413 |
119 |
|
DoS Overflow |
2018-04-18 |
2018-05-23 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
There is a buffer overflow in the Hikvision Camera DS-2CD9111-S of V4.1.2 build 160203 and before, and this vulnerability allows remote attackers to launch a denial of service attack (service interruption) via a crafted network setting interface request. |
|
3603 |
CVE-2018-6412 |
200 |
|
+Info |
2018-01-31 |
2018-03-11 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
In the function sbusfb_ioctl_helper() in drivers/video/fbdev/sbuslib.c in the Linux kernel through 4.15, an integer signedness error allows arbitrary information leakage for the FBIOPUTCMAP_SPARC and FBIOGETCMAP_SPARC commands. |
|
3604 |
CVE-2018-6409 |
22 |
|
Dir. Trav. |
2018-05-26 |
2018-06-29 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
An issue was discovered in Appnitro MachForm before 4.2.3. The module in charge of serving stored files gets the path from the database. Modifying the name of the file to serve on the corresponding ap_form table leads to a path traversal vulnerability via the download.php q parameter. |
|
3605 |
CVE-2018-6397 |
22 |
|
Dir. Trav. |
2018-01-30 |
2018-02-15 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Directory Traversal exists in the Picture Calendar 3.1.4 component for Joomla! via the list.php folder parameter. |
|
3606 |
CVE-2018-6389 |
399 |
|
DoS |
2018-02-06 |
2018-03-05 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
In WordPress through 4.9.2, unauthenticated attackers can cause a denial of service (resource consumption) by using the large list of registered .js files (from wp-includes/script-loader.php) to construct a series of requests to load every file many times. |
|
3607 |
CVE-2018-6347 |
20 |
|
|
2018-12-31 |
2019-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
An issue in the Proxygen handling of HTTP2 parsing of headers/trailers can lead to a denial-of-service attack. This affects Proxygen prior to v2018.12.31.00. |
|
3608 |
CVE-2018-6346 |
388 |
|
|
2018-12-31 |
2019-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A potential denial-of-service issue in the Proxygen handling of invalid HTTP2 priority settings (specifically a circular dependency). This affects Proxygen prior to v2018.12.31.00. |
|
3609 |
CVE-2018-6344 |
119 |
|
DoS Overflow |
2018-12-31 |
2019-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A heap corruption in WhatsApp can be caused by a malformed RTP packet being sent after a call is established. The vulnerability can be used to cause denial of service. It affects WhatsApp for Android prior to v2.18.293, WhatsApp for iOS prior to v2.18.93, and WhatsApp for Windows Phone prior to v2.18.172. |
|
3610 |
CVE-2018-6343 |
20 |
|
DoS |
2018-12-31 |
2019-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Proxygen fails to validate that a secondary auth manager is set before dereferencing it. That can cause a denial of service issue when parsing a Certificate/CertificateRequest HTTP2 Frame over a fizz (TLS 1.3) transport. This issue affects Proxygen releases starting from v2018.10.29.00 until the fix in v2018.11.19.00. |
|
3611 |
CVE-2018-6337 |
119 |
|
Overflow |
2018-12-31 |
2019-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
folly::secureRandom will re-use a buffer between parent and child processes when fork() is called. That will result in multiple forked children producing repeat (or similar) results. This affects HHVM 3.26 prior to 3.26.3 and the folly library between v2017.12.11.00 and v2018.08.09.00. |
|
3612 |
CVE-2018-6335 |
20 |
|
|
2018-12-31 |
2019-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A Malformed h2 frame can cause 'std::out_of_range' exception when parsing priority meta data. This behavior can lead to denial-of-service. This affects all supported versions of HHVM (3.25.2, 3.24.6, and 3.21.10 and below) when using the proxygen server to handle HTTP2 requests. |
|
3613 |
CVE-2018-6324 |
601 |
|
|
2018-02-15 |
2018-03-15 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
F-Secure Radar (on-premises) before 2018-02-15 has an Unvalidated Redirect via the ReturnUrl parameter that triggers upon a user login. |
|
3614 |
CVE-2018-6305 |
|
|
DoS |
2018-03-13 |
2018-06-13 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Denial of service in Gemalto's Sentinel LDK RTE version before 7.65 |
|
3615 |
CVE-2018-6304 |
119 |
|
DoS Overflow |
2018-03-13 |
2018-06-13 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Stack overflow in custom XML-parser in Gemalto's Sentinel LDK RTE version before 7.65 leads to remote denial of service |
|
3616 |
CVE-2018-6303 |
|
|
DoS |
2018-03-13 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Denial of service by uploading malformed firmware in Hanwha Techwin Smartcams |
|
3617 |
CVE-2018-6302 |
|
|
DoS |
2018-03-13 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Denial of service by blocking of new camera registration on the cloud server in Hanwha Techwin Smartcams |
|
3618 |
CVE-2018-6301 |
|
|
|
2018-03-13 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Arbitrary camera access and monitoring via cloud in Hanwha Techwin Smartcams |
|
3619 |
CVE-2018-6300 |
|
|
|
2018-03-13 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Remote password change in Hanwha Techwin Smartcams |
|
3620 |
CVE-2018-6296 |
|
|
|
2018-03-13 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
An undocumented (hidden) capability for switching the web interface in Hanwha Techwin Smartcams |
|
3621 |
CVE-2018-6293 |
200 |
|
+Info |
2018-02-13 |
2018-03-06 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Arbitrary File Read in Saperion Web Client version 7.5.2 83166. |
|
3622 |
CVE-2018-6246 |
200 |
|
+Info |
2018-05-10 |
2018-06-14 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
In Android before the 2018-05-05 security patch level, NVIDIA Widevine Trustlet contains a vulnerability in Widevine TA where the software reads data past the end, or before the beginning, of the intended buffer, which may lead to Information Disclosure. This issue is rated as moderate. Android: A-69383916. Reference: N-CVE-2018-6246. |
|
3623 |
CVE-2018-6223 |
287 |
|
|
2018-03-15 |
2018-04-04 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
A missing authentication for appliance registration vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to manipulate the registration process of the product to reset configuration parameters. |
|
3624 |
CVE-2018-6218 |
426 |
|
|
2018-02-16 |
2018-08-30 |
5.1 |
None |
Remote |
High |
Not required |
Partial |
Partial |
Partial |
|
A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module (UMH) could allow an attacker to run arbitrary code on a vulnerable system. |
|
3625 |
CVE-2018-6200 |
601 |
|
|
2018-01-24 |
2018-02-08 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
vBulletin 3.x.x and 4.2.x through 4.2.5 has an open redirect via the redirector.php url parameter. |
|
3626 |
CVE-2018-6197 |
476 |
|
|
2018-01-24 |
2019-04-04 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c. |
|
3627 |
CVE-2018-6196 |
835 |
|
|
2018-01-24 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value. |
|
3628 |
CVE-2018-6188 |
200 |
|
+Info |
2018-02-04 |
2018-03-15 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
django.contrib.auth.forms.AuthenticationForm in Django 2.0 before 2.0.2, and 1.11.8 and 1.11.9, allows remote attackers to obtain potentially sensitive information by leveraging data exposure from the confirm_login_allowed() method, as demonstrated by discovering whether a user account is inactive. |
|
3629 |
CVE-2018-6185 |
310 |
|
|
2019-06-07 |
2019-06-11 |
5.5 |
None |
Remote |
Low |
Single system |
None |
Partial |
Partial |
|
In Cloudera Navigator Key Trustee KMS 5.12 and 5.13, incorrect default ACL values allow remote access to purge and undelete API calls on encryption zone keys. The Navigator Key Trustee KMS includes 2 API calls in addition to those in Apache Hadoop KMS: purge and undelete. The KMS ACL values for these commands are keytrustee.kms.acl.PURGE and keytrustee.kms.acl.UNDELETE respectively. The default value for the ACLs in Key Trustee KMS 5.12.0 and 5.13.0 is "*" which allows anyone with knowledge of the name of an encryption zone key and network access to the Key Trustee KMS to make those calls against known encryption zone keys. This can result in the recovery of a previously deleted, but not purged, key (undelete) or the deletion of a key in active use (purge) resulting in loss of access to encrypted HDFS data. |
|
3630 |
CVE-2018-6184 |
22 |
|
Dir. Trav. |
2018-01-24 |
2018-02-12 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
ZEIT Next.js 4 before 4.2.3 has Directory Traversal under the /_next request namespace. |
|
3631 |
CVE-2018-6180 |
287 |
|
|
2018-02-08 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
A flaw in the profile section of Online Voting System 1.0 allows an unauthenticated user to set an arbitrary password for other accounts. |
|
3632 |
CVE-2018-6158 |
362 |
|
|
2019-01-09 |
2019-01-14 |
5.1 |
None |
Remote |
High |
Not required |
Partial |
Partial |
Partial |
|
A race condition in Oilpan in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
|
3633 |
CVE-2018-6138 |
20 |
|
Bypass |
2019-06-27 |
2019-06-28 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
Insufficient policy enforcement in Extensions API in Google Chrome prior to 67.0.3396.62 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. |
|
3634 |
CVE-2018-6101 |
20 |
|
Exec Code |
2018-12-04 |
2019-01-09 |
5.1 |
None |
Remote |
High |
Not required |
Partial |
Partial |
Partial |
|
A lack of host validation in DevTools in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code via a crafted HTML page, if the user is running a remote DevTools debugging server. |
|
3635 |
CVE-2018-6061 |
362 |
|
|
2018-11-14 |
2018-12-19 |
5.1 |
None |
Remote |
High |
Not required |
Partial |
Partial |
Partial |
|
A race in the handling of SharedArrayBuffers in WebAssembly in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
|
3636 |
CVE-2018-6034 |
125 |
|
|
2018-09-25 |
2018-11-13 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
None |
Partial |
|
Insufficient data validation in WebGL in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. |
|
3637 |
CVE-2018-6029 |
918 |
|
|
2018-01-23 |
2018-02-12 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The copy function in application/admin/controller/Article.php in NoneCms 1.3.0 allows remote attackers to access the content of internal and external network resources via Server Side Request Forgery (SSRF), because URL validation only considers whether the URL contains the "csdn" substring. |
|
3638 |
CVE-2018-6022 |
22 |
|
Dir. Trav. |
2018-01-23 |
2018-02-12 |
5.5 |
None |
Remote |
Low |
Single system |
None |
Partial |
Partial |
|
Directory traversal vulnerability in application/admin/controller/Main.php in NoneCms through 1.3.0 allows remote authenticated users to delete arbitrary files by leveraging back-office access to provide a ..\ in the param.path parameter. |
|
3639 |
CVE-2018-6015 |
200 |
|
+Info |
2018-01-26 |
2018-02-12 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
An issue was discovered in the "Email Subscribers & Newsletters" plugin before 3.4.8 for WordPress. Sending an HTTP POST request to a URI with /?es=export at the end, and adding option=view_all_subscribers in the body, allows downloading of a CSV data file with all subscriber data. |
|
3640 |
CVE-2018-6010 |
200 |
|
+Info |
2018-01-22 |
2018-02-09 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
In Yii Framework 2.x before 2.0.14, remote attackers could obtain potentially sensitive information from exception messages printed by the error handler in non-debug mode, related to base/ErrorHandler.php, log/Dispatcher.php, and views/errorHandler/exception.php. |
|
3641 |
CVE-2018-6008 |
200 |
|
+Info |
2018-01-29 |
2018-02-15 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Arbitrary File Download exists in the Jtag Members Directory 5.3.7 component for Joomla! via the download_file parameter. |
|
3642 |
CVE-2018-6003 |
674 |
|
|
2018-01-22 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
An issue was discovered in the _asn1_decode_simple_ber function in decoding.c in GNU Libtasn1 before 4.13. Unlimited recursion in the BER decoder leads to stack exhaustion and DoS. |
|
3643 |
CVE-2018-5968 |
184 |
|
Exec Code Bypass |
2018-01-21 |
2019-09-26 |
5.1 |
None |
Remote |
High |
Not required |
Partial |
Partial |
Partial |
|
FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 and CVE-2017-17485 deserialization flaws. This is exploitable via two different gadgets that bypass a blacklist. |
|
3644 |
CVE-2018-5954 |
400 |
|
DoS |
2018-01-25 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
phpFreeChat 1.7 and earlier allows remote attackers to cause a denial of service by sending a large number of connect commands. |
|
3645 |
CVE-2018-5897 |
125 |
|
|
2018-07-06 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
While reading the data from buffer in dci_process_ctrl_status() there can be buffer over-read problem if the len is not checked correctly in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05. |
|
3646 |
CVE-2018-5892 |
200 |
|
+Info |
2018-07-06 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The Touch Pal application can collect user behavior data without awareness by the user in Snapdragon Mobile and Snapdragon Wear. |
|
3647 |
CVE-2018-5886 |
125 |
|
|
2018-07-06 |
2018-08-29 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
A pointer in an ADSPRPC command is not properly validated in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android), which can lead to kernel memory being accessed. |
|
3648 |
CVE-2018-5837 |
338 |
|
|
2018-09-20 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
In Snapdragon (Automobile, Mobile, Wear) in version IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6574AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM710, Snapdragon_High_Med_2016, MAC address randomization performed during probe requests is not done properly due to a flawed RNG which produced repeating output much earlier than expected. |
|
3649 |
CVE-2018-5818 |
400 |
|
|
2019-02-20 |
2019-05-21 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
An error within the "parse_rollei()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to trigger an infinite loop. |
|
3650 |
CVE-2018-5817 |
704 |
|
|
2019-02-20 |
2019-05-21 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A type confusion error within the "unpacked_load_raw()" function within LibRaw versions prior to 0.19.1 (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop. |
