CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In June 2018

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2018-1002100 2018-06-01 2018-06-01
0.0
None ??? ??? ??? ??? ??? ???
In Kubernetes versions 1.5.x, 1.6.x, 1.7.x, 1.8.x, and prior to version 1.9.6, the kubectl cp command insecurely handles tar data returned from the container, and can be caused to overwrite arbitrary local files.
2 CVE-2018-1000203 2018-06-06 2018-06-06
0.0
None ??? ??? ??? ??? ??? ???
Soar Labs Soar Coin version up to and including git commit 4a2aa71ee21014e2880a3f7aad11091ed6ad434f (latest release as of Sept 2017) contains an intentional backdoor vulnerability in the function zero_fee_transaction() that can result in theft of Soar Coins by the "onlycentralAccount" (Soar Labs) after payment is processed.
3 CVE-2018-1000202 XSS 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A persisted cross-site scripting vulnerability exists in Jenkins Groovy Postbuild Plugin 2.3.1 and older in various Jelly files that allows attackers able to control build badge content to define JavaScript that would be executed in another user's browser when that other user performs some UI actions.
4 CVE-2018-1000200 2018-06-05 2018-06-07
0.0
None ??? ??? ??? ??? ??? ???
The Linux Kernel versions 4.14, 4.15, and 4.16 has a null pointer dereference which can result in an out of memory (OOM) killing of large mlocked processes. The issue arises from an oom killed process's final thread calling exit_mmap(), which calls munlock_vma_pages_all() for mlocked vmas.This can happen synchronously with the oom reaper's unmap_page_range() since the vma's VM_LOCKED bit is cleared before munlocking (to determine if any other vmas share the memory and are mlocked).
5 CVE-2018-1000198 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A XML external entity processing vulnerability exists in Jenkins Black Duck Hub Plugin 3.1.0 and older in PostBuildScanDescriptor.java that allows attackers with Overall/Read permission to make Jenkins process XML eternal entities in an XML document.
6 CVE-2018-1000197 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
An improper authorization vulnerability exists in Jenkins Black Duck Hub Plugin 3.0.3 and older in PostBuildScanDescriptor.java that allows users with Overall/Read permission to read and write the Black Duck Hub plugin configuration.
7 CVE-2018-1000196 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A exposure of sensitive information vulnerability exists in Jenkins Gitlab Hook Plugin 1.4.2 and older in gitlab_notifier.rb, views/gitlab_notifier/global.erb that allows attackers with local Jenkins master file system access or control of a Jenkins administrator's web browser (e.g. malicious extension) to retrieve the configured Gitlab token.
8 CVE-2018-1000195 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A server-side request forgery vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in ZipExtractionInstaller.java that allows users with Overall/Read permission to have Jenkins submit a HTTP GET request to an arbitrary URL and learn whether the response is successful (200) or not.
9 CVE-2018-1000194 Bypass 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A path traversal vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in FilePath.java, SoloFilePathFilter.java that allows malicious agents to read and write arbitrary files on the Jenkins master, bypassing the agent-to-master security subsystem protection.
10 CVE-2018-1000193 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A improper neutralization of control sequences vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in HudsonPrivateSecurityRealm.java that allows users to sign up using user names containing control characters that can then appear to have the same name as other users, and cannot be deleted via the UI.
11 CVE-2018-1000192 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A information exposure vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in AboutJenkins.java, ListPluginsCommand.java that allows users with Overall/Read access to enumerate all installed plugins.
12 CVE-2018-1000191 +Info 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A exposure of sensitive information vulnerability exists in Jenkins Black Duck Detect Plugin 1.4.0 and older in DetectPostBuildStepDescriptor.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
13 CVE-2018-1000190 +Info 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A exposure of sensitive information vulnerability exists in Jenkins Black Duck Hub Plugin 4.0.0 and older in PostBuildScanDescriptor.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
14 CVE-2018-1000189 Exec Code 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A command execution vulnerability exists in Jenkins Absint Astree Plugin 1.0.5 and older in AstreeBuilder.java that allows attackers with Overall/Read access to execute a command on the Jenkins master.
15 CVE-2018-1000188 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A server-side request forgery vulnerability exists in Jenkins CAS Plugin 1.4.1 and older in CasSecurityRealm.java that allows attackers with Overall/Read access to cause Jenkins to send a GET request to a specified URL.
16 CVE-2018-1000187 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A exposure of sensitive information vulnerability exists in Jenkins Kubernetes Plugin 1.7.0 and older in ContainerExecDecorator.java that results in sensitive variables such as passwords being written to logs.
17 CVE-2018-1000186 +Info 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin 1.41.0 and older in GhprbGitHubAuth.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
18 CVE-2018-1000185 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A server-side request forgery vulnerability exists in Jenkins GitHub Branch Source Plugin 2.3.4 and older in Endpoint.java that allows attackers with Overall/Read access to cause Jenkins to send a GET request to a specified URL.
19 CVE-2018-1000184 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A server-side request forgery vulnerability exists in Jenkins GitHub Plugin 1.29.0 and older in GitHubPluginConfig.java that allows attackers with Overall/Read access to cause Jenkins to send a GET request to a specified URL.
20 CVE-2018-1000183 +Info 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A exposure of sensitive information vulnerability exists in Jenkins GitHub Plugin 1.29.0 and older in GitHubServerConfig.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
21 CVE-2018-1000182 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
A server-side request forgery vulnerability exists in Jenkins Git Plugin 3.9.0 and older in AssemblaWeb.java, GitBlitRepositoryBrowser.java, Gitiles.java, TFS2013GitRepositoryBrowser.java, ViewGitWeb.java that allows attackers with Overall/Read access to cause Jenkins to send a GET request to a specified URL.
22 CVE-2018-1000181 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
Kitura 2.3.0 and earlier have an unintended read access to unauthorised files and folders that can be exploited by a crafted URL resulting in information disclosure.
23 CVE-2018-1000180 2018-06-05 2018-06-05
0.0
None ??? ??? ??? ??? ??? ???
Bouncy Castle BC 1.54 - 1.59, BC-FJA 1.0.0, BC-FJA 1.0.1 and earlier have a flaw in the Low-level interface to RSA key pair generator, specifically RSA Key Pairs generated in low-level API with added certainty may have less M-R tests than expected. This appears to be fixed in versions BC 1.60 beta 4 and later, BC-FJA 1.0.2 and later.
24 CVE-2018-12604 +Info 2018-06-20 2018-06-20
0.0
None ??? ??? ??? ??? ??? ???
GreenCMS 2.3.0603 allows remote attackers to obtain sensitive information via a direct request for Data/Log/year_month_day.log.
25 CVE-2018-12601 DoS Overflow 2018-06-20 2018-06-20
0.0
None ??? ??? ??? ??? ??? ???
There is a heap-based buffer overflow in ReadImage in input-tga.ci in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.
26 CVE-2018-12600 2018-06-20 2018-06-20
0.0
None ??? ??? ??? ??? ??? ???
In ImageMagick 7.0.8-3 Q16, ReadDIBImage and WriteDIBImage in coders/dib.c allow attackers to cause an out of bounds write via a crafted file.
27 CVE-2018-12599 2018-06-20 2018-06-20
0.0
None ??? ??? ??? ??? ??? ???
In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted file.
28 CVE-2018-12594 +Info 2018-06-20 2018-06-20
0.0
None ??? ??? ??? ??? ??? ???
Reliable Controls MACH-ProWebCom 7.80 devices allow remote attackers to obtain sensitive information via a direct request for the data/fileinfo.xml or job/job.json file, as demonstrated the Master Password field.
29 CVE-2018-12592 2018-06-20 2018-06-20
0.0
None ??? ??? ??? ??? ??? ???
Polycom RealPresence Web Suite before 2.2.0 does not block a user's video for a few seconds upon joining a meeting (when the user has explicitly chosen to turn off the video using a specific option). During those seconds, a meeting invitee may unknowingly be on camera with other participants able to view.
30 CVE-2018-12591 Exec Code 2018-06-20 2018-06-20
0.0
None ??? ??? ??? ??? ??? ???
Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an improperly neutralized element in an OS command due to lack of protection on the admin CLI, leading to code execution and privilege escalation greater than administrators themselves are allowed. An attacker with access to an admin account could escape the restricted CLI and execute arbitrary shell instructions.
31 CVE-2018-12590 Exec Code 2018-06-20 2018-06-20
0.0
None ??? ??? ??? ??? ??? ???
Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an externally controlled format-string vulnerability due to lack of protection on the admin CLI, leading to code execution and privilege escalation greater than administrators themselves are allowed. An attacker with access to an admin account could escape the restricted CLI and execute arbitrary code.
32 CVE-2018-12588 XSS 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
Cross-site scripting (XSS) vulnerability in templates/frontend/pages/searchResults.tpl in Public Knowledge Project (PKP) Open Monograph Press (OMP) v1.2.0 through 3.1.1-1 before 3.1.1-2 allows remote attackers to inject arbitrary web script or HTML via the catalog.noTitlesSearch parameter (aka the Search field).
33 CVE-2018-12583 CSRF 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in AKCMS 6.1. CSRF can delete an article via an admincp deleteitem action to index.php.
34 CVE-2018-12582 CSRF 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in AKCMS 6.1. CSRF can add an admin account via a /index.php?file=account&action=manageaccounts&job=newaccount URI.
35 CVE-2018-12580 XSS 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
library/DBTech/Security/Action/Sessions.php in DragonByte vBSecurity 3.x through 3.3.0 for vBulletin 3 and vBulletin 4 allows self-XSS via $session['user_agent'] in the "Login Sessions" feature.
36 CVE-2018-12578 DoS Overflow 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
There is a heap-based buffer overflow in bmp_compress1_row in appliers.cpp in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.
37 CVE-2018-12565 Exec Code 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Linaro LAVA before 2018.5.post1. Because of use of yaml.load() instead of yaml.safe_load() when parsing user data, remote code execution can occur.
38 CVE-2018-12564 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Linaro LAVA before 2018.5.post1. Because of support for URLs in the submit page, a user can forge an HTTP request that will force lava-server-gunicorn to return any file on the server that is readable by lavaserver and valid yaml.
39 CVE-2018-12563 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Linaro LAVA before 2018.5.post1. Because of support for file: URLs, a user can force lava-server-gunicorn to download any file from the filesystem if it's readable by lavaserver and valid yaml.
40 CVE-2018-12562 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The wrapper script 'mount.cifs.wrapper' uses the shell to forward the arguments to the actual mount.cifs binary. The shell evaluates wildcards (such as in an injected string:/home/../tmp/* string).
41 CVE-2018-12561 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. A regular user can inject additional mount options such as file_mode= by manipulating (for example) the domain parameter of the samba URL.
42 CVE-2018-12560 Dir. Trav. 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. Arbitrary unmounts can be performed by regular users via directory traversal sequences such as a home/../sys/kernel substring.
43 CVE-2018-12559 Dir. Trav. Bypass 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The mount target path check in mounter.cpp `mpOk()` is insufficient. A regular user can consequently mount a CIFS filesystem anywhere (e.g., outside of the /home directory tree) by passing directory traversal sequences such as a home/../usr substring.
44 CVE-2018-12558 DoS 2018-06-20 2018-06-20
0.0
None ??? ??? ??? ??? ??? ???
The parse() method in the Email::Address module through 1.909 for Perl is vulnerable to Algorithmic complexity on specially prepared input, leading to Denial of Service. Prepared special input that caused this problem contained 30 form-field characters ("\f").
45 CVE-2018-12557 2018-06-19 2018-06-19
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Zuul 3.x before 3.1.0. If nodes become offline during the build, the no_log attribute of a task is ignored. If the unreachable error occurred in a task used with a loop variable (e.g., with_items), the contents of the loop items would be printed in the console. This could lead to accidentally leaking credentials or secrets.
46 CVE-2018-12534 Sql 2018-06-18 2018-06-18
0.0
None ??? ??? ??? ??? ??? ???
A SQL injection issue was discovered in the Quick Chat plugin before 4.00 for WordPress.
47 CVE-2018-12533 Exec Code 2018-06-18 2018-06-18
0.0
None ??? ??? ??? ??? ??? ???
JBoss RichFaces 3.1.0 through 3.3.4 allows unauthenticated remote attackers to inject expression language (EL) expressions and execute arbitrary Java code via a /DATA/ substring in a path with an org.richfaces.renderkit.html.Paint2DResource$ImageData object, aka RF-14310.
48 CVE-2018-12532 Exec Code 2018-06-18 2018-06-18
0.0
None ??? ??? ??? ??? ??? ???
JBoss RichFaces 4.5.3 through 4.5.17 allows unauthenticated remote attackers to inject an arbitrary expression language (EL) variable mapper and execute arbitrary Java code via a MediaOutputResource's resource request, aka RF-14309.
49 CVE-2018-12531 2018-06-18 2018-06-18
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in MetInfo 6.0.0. install\index.php allows remote attackers to write arbitrary PHP code into config_db.php, a different vulnerability than CVE-2018-7271.
50 CVE-2018-12530 Dir. Trav. CSRF 2018-06-18 2018-06-18
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in MetInfo 6.0.0. admin/app/batch/csvup.php allows remote attackers to delete arbitrary files via a flienamecsv=../ directory traversal. This can be exploited via CSRF.
Total number of vulnerabilities : 1439   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.