CVE List - 2018 / November
Showing 901 - 983 of 983 CVEs for November 2018 (Page 10 of 10)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2018-18203 | 2018-11-28 | A vulnerability in the update mechanism of Subaru StarLink Harman... |
| CVE-2018-17930 | 2018-11-28 | A stack-based buffer overflow vulnerability has been identified in Teledyne... |
| CVE-2018-19622 | 2018-11-29 | In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the... |
| CVE-2018-19623 | 2018-11-29 | In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the... |
| CVE-2018-19624 | 2018-11-29 | In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the... |
| CVE-2018-19625 | 2018-11-29 | In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the... |
| CVE-2018-19626 | 2018-11-29 | In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the... |
| CVE-2018-19627 | 2018-11-29 | In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the... |
| CVE-2018-19628 | 2018-11-29 | In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could... |
| CVE-2018-19654 | 2018-11-29 | An issue was discovered in Sales & Company Management System... |
| CVE-2018-19655 | 2018-11-29 | A stack-based buffer overflow in the find_green() function of dcraw... |
| CVE-2018-19661 | 2018-11-29 | An issue was discovered in libsndfile 1.0.28. There is a... |
| CVE-2018-19662 | 2018-11-29 | An issue was discovered in libsndfile 1.0.28. There is a... |
| CVE-2018-19664 | 2018-11-29 | libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows... |
| CVE-2018-19666 | 2018-11-29 | The agent in OSSEC through 3.1.0 on Windows allows local... |
| CVE-2018-12238 | 2018-11-29 | Norton prior to 22.15; Symantec Endpoint Protection (SEP) prior to... |
| CVE-2018-12239 | 2018-11-29 | Norton prior to 22.15; Symantec Endpoint Protection (SEP) prior to... |
| CVE-2018-12245 | 2018-11-29 | Symantec Endpoint Protection prior to 14.2 MP1 may be susceptible... |
| CVE-2018-18649 | 2018-11-29 | An issue was discovered in the wiki API in GitLab... |
| CVE-2018-11002 | 2018-11-29 | Pulse Secure Desktop Client 5.3 up to and including R6.0... |
| CVE-2018-16859 | 2018-11-29 | Execution of Ansible playbooks on Windows platforms with PowerShell ScriptBlock... |
| CVE-2018-1762 | 2018-11-29 | IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0... |
| CVE-2018-8784 | 2018-11-29 | FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow... |
| CVE-2018-8785 | 2018-11-29 | FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow... |
| CVE-2018-8786 | 2018-11-29 | FreeRDP prior to version 2.0.0-rc4 contains an Integer Truncation that... |
| CVE-2018-8787 | 2018-11-29 | FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that... |
| CVE-2018-8788 | 2018-11-29 | FreeRDP prior to version 2.0.0-rc4 contains an Out-Of-Bounds Write of... |
| CVE-2018-10851 | 2018-11-29 | PowerDNS Authoritative Server 3.3.0 up to 4.1.4 excluding 4.1.5 and... |
| CVE-2018-14626 | 2018-11-29 | PowerDNS Authoritative Server 4.1.0 up to 4.1.4 inclusive and PowerDNS... |
| CVE-2018-19692 | 2018-11-29 | An issue was discovered in tp5cms through 2017-05-25. admin.php/upload/picture.html allows... |
| CVE-2018-19693 | 2018-11-29 | An issue was discovered in tp5cms through 2017-05-25. admin.php/system/set.html has... |
| CVE-2018-8789 | 2018-11-29 | FreeRDP prior to version 2.0.0-rc4 contains several Out-Of-Bounds Reads in... |
| CVE-2018-15978 | 2018-11-29 | Flash Player versions 31.0.0.122 and earlier have an out-of-bounds read... |
| CVE-2018-15979 | 2018-11-29 | Adobe Acrobat and Reader versions 2019.008.20080 and earlier, 2017.011.30105 and... |
| CVE-2018-15980 | 2018-11-29 | Adobe Photoshop CC versions 19.1.6 and earlier have an out-of-bounds... |
| CVE-2018-15981 | 2018-11-29 | Flash Player versions 31.0.0.148 and earlier have a type confusion... |
| CVE-2018-15537 | 2018-11-29 | Unrestricted file upload (with remote code execution) in OCS Inventory... |
| CVE-2018-19120 | 2018-11-29 | The HTML thumbnailer plugin in KDE Applications before 18.12.0 allows... |
| CVE-2018-19748 | 2018-11-29 | app/plug/attachment/controller/admincontroller.php in SDCMS 1.6 allows reading arbitrary files via a... |
| CVE-2018-18619 | 2018-11-29 | internal/advanced_comment_system/admin.php in Advanced Comment System 1.0 is prone to an... |
| CVE-2018-19749 | 2018-11-29 | DomainMOD through 4.11.01 has XSS via the assets/add/account-owner.php Owner name... |
| CVE-2018-19750 | 2018-11-29 | DomainMOD through 4.11.01 has XSS via the admin/domain-fields/ notes field... |
| CVE-2018-19751 | 2018-11-29 | DomainMOD through 4.11.01 has XSS via the admin/ssl-fields/add.php notes field... |
| CVE-2018-19752 | 2018-11-29 | DomainMOD through 4.11.01 has XSS via the assets/add/registrar.php notes field... |
| CVE-2018-19497 | 2018-11-29 | In The Sleuth Kit (TSK) through 4.6.4, hfs_cat_traverse in tsk/fs/hfs.c... |
| CVE-2018-19527 | 2018-11-29 | i4 assistant 7.85 allows XSS via a crafted machine name... |
| CVE-2018-19758 | 2018-11-30 | There is a heap-based buffer over-read at wav.c in wav_write_header... |
| CVE-2018-19755 | 2018-11-30 | There is an illegal address access at asm/preproc.c (function: is_mmacro)... |
| CVE-2018-19756 | 2018-11-30 | There is a heap-based buffer over-read at stb_image.h (function: stbi__tga_load)... |
| CVE-2018-19757 | 2018-11-30 | There is a NULL pointer dereference at function sixel_helper_set_additional_message (status.c)... |
| CVE-2018-19759 | 2018-11-30 | There is a heap-based buffer over-read at stb_image_write.h (function: stbi_write_png_to_mem)... |
| CVE-2018-19760 | 2018-11-30 | cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak. |
| CVE-2018-19761 | 2018-11-30 | There is an illegal address access at fromsixel.c (function: sixel_decode_raw_impl)... |
| CVE-2018-19762 | 2018-11-30 | There is a heap-based buffer overflow at fromsixel.c (function: image_buffer_resize)... |
| CVE-2018-19763 | 2018-11-30 | There is a heap-based buffer over-read at writer.c (function: write_png_to_file)... |
| CVE-2018-19777 | 2018-11-30 | In Artifex MuPDF 1.14.0, there is an infinite loop in... |
| CVE-2018-14637 | 2018-11-30 | The SAML broker consumer endpoint in Keycloak before version 4.6.0.Final... |
| CVE-2018-0716 | 2018-11-30 | Cross-site scripting vulnerability in QTS 4.2.6 build 20180711, QTS 4.3.3:... |
| CVE-2018-16093 | 2018-11-30 | LXCI for VMware |
| CVE-2018-16097 | 2018-11-30 | LXCI for VMware and LXCI for Microsoft System Center |
| CVE-2018-9072 | 2018-11-30 | LXCI for VMware |
| CVE-2018-1897 | 2018-11-30 | IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5.,... |
| CVE-2018-1927 | 2018-11-30 | IBM StoredIQ 7.6 is vulnerable to cross-site request forgery which... |
| CVE-2018-1928 | 2018-11-30 | IBM StoredIQ 7.6.0 does not implement proper authorization of user... |
| CVE-2018-15767 | 2018-11-30 | Improper Authorization Vulnerability |
| CVE-2018-15768 | 2018-11-30 | Insecure MySQL Configuration Vulnerability |
| CVE-2018-3948 | 2018-11-30 | An exploitable denial-of-service vulnerability exists in the URI-parsing functionality of... |
| CVE-2018-15835 | 2018-11-30 | Android 1.0 through 9.0 has Insecure Permissions. The Android bug... |
| CVE-2018-18860 | 2018-11-30 | A local privilege escalation vulnerability has been identified in the... |
| CVE-2018-18983 | 2018-11-30 | VT-Designer Version 2.1.7.31 is vulnerable by the program reading the... |
| CVE-2018-18987 | 2018-11-30 | VT-Designer Version 2.1.7.31 is vulnerable by the program populating objects... |
| CVE-2018-19290 | 2018-11-30 | In modules/HELPBOT_MODULE in Budabot 0.6 through 4.0, lax syntax validation... |
| CVE-2018-16476 | 2018-11-30 | A Broken Access Control vulnerability in Active Job versions >=... |
| CVE-2018-16477 | 2018-11-30 | A bypass vulnerability in Active Storage >= 5.2.0 for Google... |
| CVE-2018-7806 | 2018-11-30 | Data Center Operation allows for the upload of a zip... |
| CVE-2018-7807 | 2018-11-30 | Data Center Expert, versions 7.5.0 and earlier, allows for the... |
| CVE-2018-7809 | 2018-11-30 | An Unverified Password Change vulnerability exists in the embedded web... |
| CVE-2018-7810 | 2018-11-30 | An Improper Neutralization of Input During Web Page Generation ('Cross-site... |
| CVE-2018-7811 | 2018-11-30 | An Unverified Password Change vulnerability exists in the embedded web... |
| CVE-2018-7830 | 2018-11-30 | Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response... |
| CVE-2018-7831 | 2018-11-30 | An Improper Neutralization of Script-Related HTML Tags in a Web... |
| CVE-2018-15715 | 2018-11-30 | Zoom clients on Windows (before version 4.1.34814.1119), Mac OS (before... |
| CVE-2018-15716 | 2018-11-30 | NUUO NVRMini2 version 3.9.1 is vulnerable to authenticated remote command... |