CVE List - 2018 / February
Showing 101 - 200 of 1325 CVEs for February 2018 (Page 2 of 14)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2018-6594 | 2018-02-03 | lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters,... |
| CVE-2018-6593 | 2018-02-03 | An issue was discovered in MalwareFox AntiMalware 2.74.0.150. Improper access... |
| CVE-2018-6596 | 2018-02-03 | webhooks/base.py in Anymail (aka django-anymail) before 1.2.1 is prone to... |
| CVE-2017-17703 | 2018-02-04 | Synacor Zimbra Collaboration Suite (ZCS) before 8.8.3 has Persistent XSS. |
| CVE-2017-8783 | 2018-02-04 | Synacor Zimbra Collaboration Suite (ZCS) before 8.7.10 has Persistent XSS. |
| CVE-2018-6606 | 2018-02-04 | An issue was discovered in MalwareFox AntiMalware 2.74.0.150. Improper access... |
| CVE-2018-6611 | 2018-02-04 | soundlib/Load_stp.cpp in OpenMPT through 1.27.04.00, and libopenmpt before 0.3.6, has... |
| CVE-2018-6612 | 2018-02-04 | An integer underflow bug in the process_EXIF function of the... |
| CVE-2018-6616 | 2018-02-04 | In OpenJPEG 2.3.0, there is excessive iteration in the opj_t1_encode_cblks... |
| CVE-2017-15536 | 2018-02-05 | An issue was discovered in Cloudera Data Science Workbench (CDSW)... |
| CVE-2018-6188 | 2018-02-05 | django.contrib.auth.forms.AuthenticationForm in Django 2.0 before 2.0.2, and 1.11.8 and 1.11.9,... |
| CVE-2018-5787 | 2018-02-05 | An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x... |
| CVE-2018-5788 | 2018-02-05 | An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x... |
| CVE-2018-5789 | 2018-02-05 | An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x... |
| CVE-2018-5790 | 2018-02-05 | An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x... |
| CVE-2018-5791 | 2018-02-05 | An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x... |
| CVE-2018-5792 | 2018-02-05 | An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x... |
| CVE-2018-5793 | 2018-02-05 | An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x... |
| CVE-2018-5794 | 2018-02-05 | An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x... |
| CVE-2018-5795 | 2018-02-05 | An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x... |
| CVE-2018-5796 | 2018-02-05 | An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x... |
| CVE-2018-5797 | 2018-02-05 | An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x... |
| CVE-2018-6621 | 2018-02-05 | The decode_frame function in libavcodec/utvideodec.c in FFmpeg through 3.2 allows... |
| CVE-2018-6461 | 2018-02-05 | March Hare WINCVS before 2.8.01 build 6610, and CVS Suite... |
| CVE-2015-1416 | 2018-02-05 | Larry Wall's patch; patch in FreeBSD 10.2-RC1 before 10.2-RC1-p1, 10.2... |
| CVE-2015-1418 | 2018-02-05 | The do_ed_script function in pch.c in GNU patch through 2.7.6,... |
| CVE-2015-4179 | 2018-02-05 | Multiple cross-site request forgery (CSRF) vulnerabilities in the Codestyling Localization... |
| CVE-2015-4412 | 2018-02-05 | BSON injection vulnerability in the legal? function in BSON (bson-ruby)... |
| CVE-2015-4461 | 2018-02-05 | Absolute path traversal vulnerability in eFront CMS 3.6.15.4 and earlier... |
| CVE-2015-5674 | 2018-02-05 | The routed daemon in FreeBSD 9.3 before 9.3-RELEASE-p22, 10.2-RC2 before... |
| CVE-2017-9414 | 2018-02-05 | Cross-site request forgery (CSRF) vulnerability in the Subscribe to Podcast... |
| CVE-2018-5442 | 2018-02-05 | A Stack-based Buffer Overflow issue was discovered in Fuji Electric... |
| CVE-2018-6624 | 2018-02-05 | OMRON NS devices 1.1 through 1.3 allow remote attackers to... |
| CVE-2018-6635 | 2018-02-05 | System Manager in Avaya Aura before 7.1.2 does not properly... |
| CVE-2018-6625 | 2018-02-05 | In WatchDog Anti-Malware 2.74.186.150, the driver file (ZAMGUARD32.SYS) allows local... |
| CVE-2018-6626 | 2018-02-05 | In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys)... |
| CVE-2018-6627 | 2018-02-05 | In WatchDog Anti-Malware 2.74.186.150, the driver file (ZAMGUARD32.SYS) allows local... |
| CVE-2018-6628 | 2018-02-05 | In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys)... |
| CVE-2018-6629 | 2018-02-05 | In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys)... |
| CVE-2018-6630 | 2018-02-05 | In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys)... |
| CVE-2018-6631 | 2018-02-05 | In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110009.sys)... |
| CVE-2018-6632 | 2018-02-05 | In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys)... |
| CVE-2018-6633 | 2018-02-05 | In Micropoint proactive defense software 2.0.20266.0146, the driver file (mp110005.sys)... |
| CVE-2018-6582 | 2018-02-05 | SQL Injection exists in the Zh GoogleMap 8.4.0.0 component for... |
| CVE-2018-6604 | 2018-02-05 | SQL Injection exists in the Zh YandexMap 6.2.1.0 component for... |
| CVE-2018-6605 | 2018-02-05 | SQL Injection exists in the Zh BaiduMap 3.0.0.1 component for... |
| CVE-2018-6609 | 2018-02-05 | SQL Injection exists in the JSP Tickets 1.1 component for... |
| CVE-2018-6610 | 2018-02-05 | Information Leakage exists in the jLike 1.0 component for Joomla!... |
| CVE-2018-6651 | 2018-02-05 | In the uncurl_ws_accept function in uncurl.c in uncurl before 0.07,... |
| CVE-2018-6569 | 2018-02-06 | West Wind Web Server 6.x does not require authentication for... |
| CVE-2018-6654 | 2018-02-06 | The Grammarly extension before 2018-02-02 for Chrome allows remote attackers... |
| CVE-2017-6169 | 2018-02-06 | In versions 13.0.0, 12.0.0-12.1.3, or 11.6.0-11.6.2, an F5 BIG-IP virtual... |
| CVE-2017-6258 | 2018-02-06 | NVIDIA libnvmmlite_audio.so contains an elevation of privilege vulnerability when running... |
| CVE-2017-6279 | 2018-02-06 | NVIDIA libnvmmlite_audio.so contains an elevation of privilege vulnerability when running... |
| CVE-2018-6466 | 2018-02-06 | A cross-site scripting (XSS) vulnerability in flickrRSS.php in the flickrRSS... |
| CVE-2018-6467 | 2018-02-06 | The flickrRSS plugin 5.3.1 for WordPress has CSRF via wp-admin/options-general.php. |
| CVE-2018-6468 | 2018-02-06 | A cross-site scripting (XSS) vulnerability in flickrRSS.php in the flickrRSS... |
| CVE-2018-6469 | 2018-02-06 | A cross-site scripting (XSS) vulnerability in flickrRSS.php in the flickrRSS... |
| CVE-2018-6656 | 2018-02-06 | Z-BlogPHP 1.5.1 has CSRF via zb_users/plugin/AppCentre/app_del.php, as demonstrated by deleting... |
| CVE-2013-4317 | 2018-02-06 | In Apache CloudStack 4.1.0 and 4.1.1, when calling the CloudStack... |
| CVE-2016-6813 | 2018-02-06 | Apache CloudStack 4.1 to 4.8.1.0 and 4.9.0.0 contain an API... |
| CVE-2017-15095 | 2018-02-06 | A deserialization flaw was discovered in the jackson-databind in versions... |
| CVE-2017-7525 | 2018-02-06 | A deserialization flaw was discovered in the jackson-databind, versions before... |
| CVE-2018-6288 | 2018-02-06 | Cross-site Request Forgery leading to Administrative account takeover in Kaspersky... |
| CVE-2018-6289 | 2018-02-06 | Configuration file injection leading to Code Execution as Root in... |
| CVE-2018-6290 | 2018-02-06 | Local Privilege Escalation in Kaspersky Secure Mail Gateway version 1.1. |
| CVE-2018-6291 | 2018-02-06 | WebConsole Cross-Site Scripting in Kaspersky Secure Mail Gateway version 1.1. |
| CVE-2014-5279 | 2018-02-06 | The Docker daemon managed by boot2docker 1.2 and earlier improperly... |
| CVE-2014-5280 | 2018-02-06 | boot2docker 1.2 and earlier allows attackers to conduct cross-site request... |
| CVE-2014-5282 | 2018-02-06 | Docker before 1.3 does not properly validate image IDs, which... |
| CVE-2015-3618 | 2018-02-06 | Cross-site scripting (XSS) vulnerability in Nagios Business Process Intelligence (BPI)... |
| CVE-2015-3619 | 2018-02-06 | Cross-site scripting (XSS) vulnerability in assets/js/vm2admin.js in the VirtueMart component... |
| CVE-2015-4400 | 2018-02-06 | Ring (formerly DoorBot) video doorbells allow remote attackers to obtain... |
| CVE-2016-7394 | 2018-02-06 | tiki wiki cms groupware <=15.2 has a xss vulnerability, allow... |
| CVE-2017-17996 | 2018-02-06 | A buffer overflow vulnerability in "Add command" functionality exists in... |
| CVE-2017-6198 | 2018-02-06 | The Supervisor in Sandstorm doesn't set and enforce the resource... |
| CVE-2017-6199 | 2018-02-06 | A remote attacker could bypass the Sandstorm organization restriction before... |
| CVE-2017-6200 | 2018-02-06 | Sandstorm before build 0.203 allows remote attackers to read any... |
| CVE-2017-6201 | 2018-02-06 | A Server Side Request Forgery vulnerability exists in the install... |
| CVE-2017-17663 | 2018-02-06 | The htpasswd implementation of mini_httpd before v1.28 and of thttpd... |
| CVE-2018-6389 | 2018-02-06 | In WordPress through 4.9.2, unauthenticated attackers can cause a denial... |
| CVE-2016-3952 | 2018-02-06 | web2py before 2.14.1, when using the standalone version, allows remote... |
| CVE-2016-3953 | 2018-02-06 | The sample web application in web2py before 2.14.2 might allow... |
| CVE-2016-3954 | 2018-02-06 | web2py before 2.14.2 allows remote attackers to obtain the session_cookie_key... |
| CVE-2016-3957 | 2018-02-06 | The secure_load function in gluon/utils.py in web2py before 2.14.2 uses... |
| CVE-2018-6758 | 2018-02-06 | The uwsgi_expand_path function in core/utils.c in Unbit uWSGI through 2.0.15... |
| CVE-2018-1299 | 2018-02-06 | In Apache Allura before 1.8.0, unauthenticated attackers may retrieve arbitrary... |
| CVE-2018-4877 | 2018-02-06 | A use-after-free vulnerability was discovered in Adobe Flash Player before... |
| CVE-2018-5457 | 2018-02-06 | A uncontrolled search path element issue was discovered in Vyaire... |
| CVE-2018-6759 | 2018-02-06 | The bfd_get_debug_link_info_1 function in opncls.c in the Binary File Descriptor... |
| CVE-2018-4878 | 2018-02-06 | A use-after-free vulnerability was discovered in Adobe Flash Player before... |
| CVE-2018-6767 | 2018-02-06 | A stack-based buffer over-read in the ParseRiffHeaderConfig function of cli/riff.c... |
| CVE-2018-6768 | 2018-02-06 | In Jiangmin Antivirus 16.0.0.100, the driver file (KSysCall.sys) allows local... |
| CVE-2018-6769 | 2018-02-06 | In Jiangmin Antivirus 16.0.0.100, the driver file (KrnlCall.sys) allows local... |
| CVE-2018-6770 | 2018-02-06 | In Jiangmin Antivirus 16.0.0.100, the driver file (KrnlCall.sys) allows local... |
| CVE-2018-6771 | 2018-02-06 | In Jiangmin Antivirus 16.0.0.100, the driver file (KrnlCall.sys) allows local... |
| CVE-2018-6772 | 2018-02-06 | In Jiangmin Antivirus 16.0.0.100, the driver file (KrnlCall.sys) allows local... |
| CVE-2018-6773 | 2018-02-06 | In Jiangmin Antivirus 16.0.0.100, the driver file (KSysCall.sys) allows local... |
| CVE-2018-6774 | 2018-02-06 | In Jiangmin Antivirus 16.0.0.100, the driver file (KSysCall.sys) allows local... |
| CVE-2018-6775 | 2018-02-06 | In Jiangmin Antivirus 16.0.0.100, the driver file (KrnlCall.sys) allows local... |