CVE List - 2018 / February
Showing 1 - 100 of 1325 CVEs for February 2018 (Page 1 of 14)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2017-1000408 | 2018-02-01 | A memory leak in glibc 2.1.1 (released on May 24,... |
| CVE-2017-1000409 | 2018-02-01 | A buffer overflow in glibc 2.5 (released on September 29,... |
| CVE-2017-16861 | 2018-02-01 | It was possible for double OGNL evaluation in certain redirect... |
| CVE-2018-6484 | 2018-02-01 | In ZZIPlib 0.13.67, there is a memory alignment error and... |
| CVE-2018-6470 | 2018-02-01 | Nibbleblog 4.0.5 on macOS defaults to having .DS_Store in each... |
| CVE-2018-0508 | 2018-02-01 | Cross-site scripting vulnerability in epg search result viewer (kkcald) 0.7.21... |
| CVE-2018-0509 | 2018-02-01 | Cross-site request forgery (CSRF) vulnerability in epg search result viewer... |
| CVE-2018-0510 | 2018-02-01 | Buffer overflow in epg search result viewer (kkcald) 0.7.19 and... |
| CVE-2018-0511 | 2018-02-01 | Cross-site scripting vulnerability in WP Retina 2x prior to version... |
| CVE-2018-6186 | 2018-02-01 | Citrix NetScaler VPX through NS12.0 53.13.nc allows an SSRF attack... |
| CVE-2018-6485 | 2018-02-01 | An integer overflow in the implementation of the posix_memalign in... |
| CVE-2011-4068 | 2018-02-01 | The check_password function in html/admin/login.php in PacketFence before 3.0.2 allows... |
| CVE-2011-4069 | 2018-02-01 | html/admin/login.php in PacketFence before 3.0.2 allows remote attackers to conduct... |
| CVE-2013-7435 | 2018-02-01 | The open-ils.pcrud endpoint in Evergreen before 2.5.9, 2.6.x before 2.6.7,... |
| CVE-2014-3005 | 2018-02-01 | XML external entity (XXE) vulnerability in Zabbix 1.8.x before 1.8.21rc1,... |
| CVE-2014-3244 | 2018-02-01 | XML external entity (XXE) vulnerability in the RSSDashlet dashlet in... |
| CVE-2014-3519 | 2018-02-01 | The open_by_handle_at function in vzkernel before 042stab090.5 in the OpenVZ... |
| CVE-2014-3752 | 2018-02-01 | The MiniIcpt.sys driver in G Data TotalProtection 2014 24.0.2.1 and... |
| CVE-2014-9502 | 2018-02-01 | Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified sub modules... |
| CVE-2014-9503 | 2018-02-01 | The Discussions sub module in the Open Atrium module 7.x-2.x... |
| CVE-2014-9504 | 2018-02-01 | The OG Subgroups module, when used with the Open Atrium... |
| CVE-2015-2203 | 2018-02-01 | Evergreen 2.5.9, 2.6.7, and 2.7.4 allows remote authenticated users with... |
| CVE-2015-2204 | 2018-02-01 | Evergreen before 2.5.9, 2.6.x before 2.6.7, and 2.7.x before 2.7.4... |
| CVE-2018-1192 | 2018-02-01 | In Cloud Foundry Foundation cf-release versions prior to v285; cf-deployment... |
| CVE-2017-3160 | 2018-02-01 | After the Android platform is added to Cordova the first... |
| CVE-2017-2293 | 2018-02-01 | Versions of Puppet Enterprise prior to 2016.4.5 or 2017.2.1 shipped... |
| CVE-2017-2296 | 2018-02-01 | In Puppet Enterprise 2017.1.x and 2017.2.1, using specially formatted strings... |
| CVE-2017-2297 | 2018-02-01 | Puppet Enterprise versions prior to 2016.4.5 and 2017.2.1 did not... |
| CVE-2018-6519 | 2018-02-02 | The SAML2 library before 1.10.4, 2.x before 2.3.5, and 3.x... |
| CVE-2018-6520 | 2018-02-02 | SimpleSAMLphp before 1.15.2 allows remote attackers to bypass an open... |
| CVE-2018-6521 | 2018-02-02 | The sqlauth module in SimpleSAMLphp before 1.15.2 relies on the... |
| CVE-2018-6522 | 2018-02-02 | In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKRgFtXp.SYS)... |
| CVE-2018-6523 | 2018-02-02 | In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKFsAv.SYS)... |
| CVE-2018-6524 | 2018-02-02 | In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKFsAv.SYS)... |
| CVE-2018-6525 | 2018-02-02 | In nProtect AVS V4.0 before 4.0.0.39, the driver file (TKFsAv.SYS)... |
| CVE-2017-18120 | 2018-02-02 | A double-free bug in the read_gif function in gifread.c in... |
| CVE-2018-6526 | 2018-02-02 | view_all_bug_page.php in MantisBT 2.10.0-development before 2018-02-02 allows remote attackers to... |
| CVE-2018-6536 | 2018-02-02 | An issue was discovered in Icinga 2.x through 2.8.1. The... |
| CVE-2018-6537 | 2018-02-02 | A buffer overflow vulnerability in the control protocol of Flexense... |
| CVE-2018-6540 | 2018-02-02 | In ZZIPlib 0.13.67, there is a bus error caused by... |
| CVE-2018-6541 | 2018-02-02 | In ZZIPlib 0.13.67, there is a bus error caused by... |
| CVE-2018-6542 | 2018-02-02 | In ZZIPlib 0.13.67, there is a bus error (when handling... |
| CVE-2018-6543 | 2018-02-02 | In GNU Binutils 2.30, there's an integer overflow in the... |
| CVE-2018-6544 | 2018-02-02 | pdf_load_obj_stm in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 could reference the... |
| CVE-2018-6545 | 2018-02-02 | Ipswitch MoveIt v8.1 is vulnerable to a Stored Cross-Site Scripting... |
| CVE-2018-6548 | 2018-02-02 | A use-after-free issue was discovered in libwebm through 2018-02-02. If... |
| CVE-2018-6550 | 2018-02-02 | Monstra CMS through 3.0.4 has XSS in the title function... |
| CVE-2017-18086 | 2018-02-02 | Various resources in Atlassian Confluence Server before version 6.4.2 allow... |
| CVE-2018-6551 | 2018-02-02 | The malloc implementation in the GNU C Library (aka glibc... |
| CVE-2018-6560 | 2018-02-02 | In dbus-proxy/flatpak-proxy.c in Flatpak before 0.8.9, and 0.9.x and 0.10.x... |
| CVE-2017-14177 | 2018-02-02 | Apport through 2.20.7 does not properly handle core dumps from... |
| CVE-2017-14178 | 2018-02-02 | In snapd 2.27 through 2.29.2 the 'snap logs' command could... |
| CVE-2017-14179 | 2018-02-02 | Apport before 2.13 does not properly handle crashes originating from... |
| CVE-2017-14180 | 2018-02-02 | Apport 2.13 through 2.20.7 does not properly handle crashes originating... |
| CVE-2017-18034 | 2018-02-02 | The source browse resource in Atlassian Fisheye and Crucible before... |
| CVE-2017-18035 | 2018-02-02 | The /rest/review-coverage-chart/1.0/data/<repository_name>/.json resource in Atlassian Fisheye and Crucible before version... |
| CVE-2017-18036 | 2018-02-02 | The Github repository importer in Atlassian Bitbucket Server before version... |
| CVE-2017-18037 | 2018-02-02 | The git repository tag rest resource in Atlassian Bitbucket Server... |
| CVE-2017-18038 | 2018-02-02 | The repository settings resource in Atlassian Bitbucket Server before version... |
| CVE-2017-18039 | 2018-02-02 | The IncomingMailServers resource in Atlassian Jira from version 6.2.1 before... |
| CVE-2017-18040 | 2018-02-02 | The viewDeploymentVersionCommits resource in Atlassian Bamboo before version 6.2.0 allows... |
| CVE-2017-18041 | 2018-02-02 | The viewDeploymentVersionJiraIssuesDialog resource in Atlassian Bamboo before version 6.2.0 allows... |
| CVE-2017-18042 | 2018-02-02 | The update user administration resource in Atlassian Bamboo before version... |
| CVE-2017-18080 | 2018-02-02 | The saveConfigureSecurity resource in Atlassian Bamboo before version 6.3.1 allows... |
| CVE-2017-18081 | 2018-02-02 | The signupUser resource in Atlassian Bamboo before version 6.3.1 allows... |
| CVE-2017-18082 | 2018-02-02 | The plan configure branches resource in Atlassian Bamboo before version... |
| CVE-2017-18083 | 2018-02-02 | The editinword resource in Atlassian Confluence Server before version 6.4.0... |
| CVE-2017-18084 | 2018-02-02 | The usermacros resource in Atlassian Confluence Server before version 6.3.4... |
| CVE-2017-18085 | 2018-02-02 | The viewdefaultdecorator resource in Atlassian Confluence Server before version 6.6.1... |
| CVE-2018-6486 | 2018-02-02 | MFSBGN03797 rev.1 - Micro Focus Fortify Audit Workbench (AWB) and Micro Focus Fortify Software Security Center (SSC), XML External Entity Injection |
| CVE-2017-18121 | 2018-02-02 | The consentAdmin module in SimpleSAMLphp through 1.14.15 is vulnerable to... |
| CVE-2017-18122 | 2018-02-02 | A signature-validation bypass issue was discovered in SimpleSAMLphp through 1.14.16.... |
| CVE-2017-5727 | 2018-02-02 | Pointer dereference in subsystem in Intel Graphics Driver 15.40.x.x, 15.45.x.x,... |
| CVE-2018-6561 | 2018-02-02 | dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload... |
| CVE-2018-6575 | 2018-02-02 | SQL Injection exists in the JEXTN Classified 1.0.0 component for... |
| CVE-2018-6576 | 2018-02-02 | SQL Injection exists in Event Manager 1.0 via the event.php... |
| CVE-2018-6577 | 2018-02-02 | SQL Injection exists in the JEXTN Membership 3.1.0 component for... |
| CVE-2018-6578 | 2018-02-02 | SQL Injection exists in the JE PayperVideo 3.0.0 component for... |
| CVE-2018-6579 | 2018-02-02 | SQL Injection exists in the JEXTN Reverse Auction 3.1.0 component... |
| CVE-2018-6580 | 2018-02-02 | Arbitrary file upload exists in the Jimtawl 2.1.6 and 2.2.5... |
| CVE-2018-6581 | 2018-02-02 | SQL Injection exists in the JMS Music 1.1.1 component for... |
| CVE-2014-1834 | 2018-02-02 | The perform_request function in /lib/echor/backplane.rb in echor 0.1.6 Ruby Gem... |
| CVE-2014-1835 | 2018-02-02 | The perform_request function in /lib/echor/backplane.rb in echor 0.1.6 Ruby Gem... |
| CVE-2015-2796 | 2018-02-02 | Multiple cross-site scripting (XSS) vulnerabilities in Project-Pier ProjectPier-Core allow remote... |
| CVE-2016-0300 | 2018-02-02 | IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3,... |
| CVE-2016-0303 | 2018-02-02 | Cross-site scripting (XSS) vulnerability in IBM Tivoli Integrated Portal 2.2.0.0... |
| CVE-2016-0311 | 2018-02-02 | Cross-site scripting (XSS) vulnerability in IBM Tivoli Business Service Manager... |
| CVE-2016-0312 | 2018-02-02 | IBM TRIRIGA Application Platform before 3.3.2 allows remote attackers to... |
| CVE-2016-0329 | 2018-02-02 | Open redirect vulnerability in IBM Emptoris Sourcing 10.0.0.x before 10.0.0.1_iFix3,... |
| CVE-2016-0342 | 2018-02-02 | IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3,... |
| CVE-2018-5261 | 2018-02-02 | An issue was discovered in Flexense DiskBoss 8.8.16 and earlier.... |
| CVE-2018-6317 | 2018-02-02 | The remote management interface in Claymore Dual Miner 10.5 and... |
| CVE-2018-6318 | 2018-02-02 | In Sophos Tester Tool 3.2.0.7 Beta, the driver loads (in... |
| CVE-2018-6319 | 2018-02-02 | In Sophos Tester Tool 3.2.0.7 Beta, the driver accepts a... |
| CVE-2009-5144 | 2018-02-03 | mod-gnutls does not validate client certificates when "GnuTLSClientVerify require" is... |
| CVE-2015-2186 | 2018-02-03 | The Ansible edxapp role in the Configuration Repo in edX... |
| CVE-2017-17108 | 2018-02-03 | Path traversal vulnerability in the administrative panel in KonaKart eCommerce... |
| CVE-2018-1184 | 2018-02-03 | An issue was discovered in EMC RecoverPoint for Virtual Machines... |
| CVE-2018-1185 | 2018-02-03 | An issue was discovered in EMC RecoverPoint for Virtual Machines... |
| CVE-2017-18123 | 2018-02-03 | The call parameter of /lib/exe/ajax.php in DokuWiki through 2017-02-19e does... |