CVE List - 2018 / May
Showing 801 - 900 of 1162 CVEs for May 2018 (Page 9 of 12)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2018-1309 | 2018-05-23 | Apache NiFi External XML Entity issue in SplitXML processor. Malicious... |
| CVE-2018-1310 | 2018-05-23 | Apache NiFi JMS Deserialization issue because of ActiveMQ client vulnerability.... |
| CVE-2017-9317 | 2018-05-23 | Privilege escalation vulnerability found in some Dahua IP devices. Attacker... |
| CVE-2018-1193 | 2018-05-23 | Cloud Foundry routing-release, versions prior to 0.175.0, lacks sanitization for... |
| CVE-2018-10351 | 2018-05-23 | A vulnerability in Trend Micro Email Encryption Gateway 5.5 could... |
| CVE-2018-10352 | 2018-05-23 | A vulnerability in Trend Micro Email Encryption Gateway 5.5 could... |
| CVE-2018-10353 | 2018-05-23 | A SQL injection information disclosure vulnerability in Trend Micro Email... |
| CVE-2018-10354 | 2018-05-23 | A command injection remote command execution vulnerability in Trend Micro... |
| CVE-2018-10355 | 2018-05-23 | An authentication weakness vulnerability in Trend Micro Email Encryption Gateway... |
| CVE-2018-10356 | 2018-05-23 | A SQL injection remote code execution vulnerability in Trend Micro... |
| CVE-2018-10357 | 2018-05-23 | A directory traversal vulnerability in Trend Micro Endpoint Application Control... |
| CVE-2018-11231 | 2018-05-23 | In the Divido plugin for OpenCart, there is SQL injection.... |
| CVE-2018-8898 | 2018-05-23 | A flaw in the authentication mechanism in the Login Panel... |
| CVE-2018-10648 | 2018-05-23 | There are Unauthenticated File Upload Vulnerabilities in Citrix XenMobile Server... |
| CVE-2018-10649 | 2018-05-23 | There is a Cross-Site Scripting Vulnerability in Citrix XenMobile Server... |
| CVE-2018-10650 | 2018-05-23 | There is an Insufficient Path Validation Vulnerability in Citrix XenMobile... |
| CVE-2018-10651 | 2018-05-23 | There are Open Redirect Vulnerabilities in Citrix XenMobile Server 10.8... |
| CVE-2018-10652 | 2018-05-23 | There is a Sensitive Data Leakage issue in Citrix XenMobile... |
| CVE-2018-10653 | 2018-05-23 | There is an XML External Entity (XXE) Processing Vulnerability in... |
| CVE-2018-10654 | 2018-05-23 | There is a Hazelcast Library Java Deserialization Vulnerability in Citrix... |
| CVE-2018-6495 | 2018-05-23 | MFSBGN03808 rev.1 - Micro Focus UCMDB, Cross-Site Scripting |
| CVE-2018-10428 | 2018-05-23 | ILIAS before 5.1.26, 5.2.x before 5.2.15, and 5.3.x before 5.3.4,... |
| CVE-2018-11399 | 2018-05-24 | SimpliSafe Original has Unencrypted Sensor Transmissions, which allows physically proximate... |
| CVE-2018-11400 | 2018-05-24 | In SimpliSafe Original, the Base Station fails to detect tamper... |
| CVE-2018-11401 | 2018-05-24 | In SimpliSafe Original, RF Interference (e.g., an extremely strong 433.92... |
| CVE-2018-11402 | 2018-05-24 | SimpliSafe Original has Unencrypted Keypad Transmissions, which allows physically proximate... |
| CVE-2018-11403 | 2018-05-24 | DomainMod v4.09.03 has XSS via the assets/edit/account-owner.php oid parameter. |
| CVE-2018-11404 | 2018-05-24 | DomainMod v4.09.03 has XSS via the assets/edit/ssl-provider-account.php sslpaid parameter. |
| CVE-2018-11405 | 2018-05-24 | Kliqqi 2.0.2 has CSRF in admin/admin_users.php. |
| CVE-2018-11410 | 2018-05-24 | An issue was discovered in Liblouis 3.5.0. A invalid free... |
| CVE-2018-11411 | 2018-05-24 | The transferFrom function of a smart contract implementation for DimonCoin... |
| CVE-2017-9421 | 2018-05-24 | Authentication Bypass vulnerability in Accellion kiteworks before 2017.01.00 allows remote... |
| CVE-2018-1000036 | 2018-05-24 | In Artifex MuPDF 1.12.0 and earlier, multiple memory leaks in... |
| CVE-2018-1000037 | 2018-05-24 | In Artifex MuPDF 1.12.0 and earlier, multiple reachable assertions in... |
| CVE-2018-1000038 | 2018-05-24 | In Artifex MuPDF 1.12.0 and earlier, a stack buffer overflow... |
| CVE-2018-1000039 | 2018-05-24 | In Artifex MuPDF 1.12.0 and earlier, multiple heap use after... |
| CVE-2018-1000040 | 2018-05-24 | In Artifex MuPDF 1.12.0 and earlier, multiple use of uninitialized... |
| CVE-2018-1000155 | 2018-05-24 | OpenFlow version 1.0 onwards contains a Denial of Service and... |
| CVE-2018-1000199 | 2018-05-24 | The Linux Kernel version 3.18 contains a dangerous feature vulnerability... |
| CVE-2018-1000300 | 2018-05-24 | curl version curl 7.54.1 to and including curl 7.59.0 contains... |
| CVE-2018-1000301 | 2018-05-24 | curl version curl 7.20.0 to and including curl 7.59.0 contains... |
| CVE-2018-9920 | 2018-05-24 | Server side request forgery exists in the runtime application in... |
| CVE-2017-17158 | 2018-05-24 | Some Huawei smart phones with the versions before Berlin-L21HNC185B381; the... |
| CVE-2017-17315 | 2018-05-24 | Huawei DP300 V500R002C00; RP200 V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40... |
| CVE-2018-7902 | 2018-05-24 | Huawei 1288H V5 and 288H V5 with software of V100R005C00... |
| CVE-2018-7903 | 2018-05-24 | Huawei 1288H V5 and 288H V5 with software of V100R005C00... |
| CVE-2018-7904 | 2018-05-24 | Huawei 1288H V5 and 288H V5 with software of V100R005C00... |
| CVE-2018-7942 | 2018-05-24 | The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers... |
| CVE-2018-5485 | 2018-05-24 | NetApp OnCommand Unified Manager for Windows versions 7.2 through 7.3... |
| CVE-2018-5487 | 2018-05-24 | NetApp OnCommand Unified Manager for Linux versions 7.2 through 7.3... |
| CVE-2018-11332 | 2018-05-24 | Stored cross-site scripting (XSS) vulnerability in the "Site Name" field... |
| CVE-2018-10593 | 2018-05-24 | A vulnerability in DB Manager version 3.0.1.0 and previous and... |
| CVE-2018-10595 | 2018-05-24 | A vulnerability in ReadA version 1.1.0.2 and previous allows an... |
| CVE-2018-8013 | 2018-05-24 | In Apache Batik 1.x before 1.10, when deserializing subclass of... |
| CVE-2018-11412 | 2018-05-24 | In the Linux kernel 4.13 through 4.16.11, ext4_read_inline_data() in fs/ext4/inline.c... |
| CVE-2018-11413 | 2018-05-24 | An issue was discovered in BearAdmin 0.5. Remote attackers can... |
| CVE-2018-11414 | 2018-05-24 | An issue was discovered in BearAdmin 0.5. There is admin/admin_log/index.html?user_id=... |
| CVE-2018-11415 | 2018-05-24 | SAP Internet Transaction Server (ITS) 6200.X.X has Reflected Cross Site... |
| CVE-2018-11416 | 2018-05-24 | jpegoptim.c in jpegoptim 1.4.5 (fixed in 1.4.6) has an invalid... |
| CVE-2018-7526 | 2018-05-24 | In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems... |
| CVE-2017-14187 | 2018-05-24 | A local privilege escalation and local code execution vulnerability in... |
| CVE-2017-9664 | 2018-05-24 | In ABB SREA-01 revisions A, B, C: application versions up... |
| CVE-2018-11418 | 2018-05-24 | An issue was discovered in JerryScript 1.0. There is a... |
| CVE-2018-11419 | 2018-05-24 | An issue was discovered in JerryScript 1.0. There is a... |
| CVE-2018-7518 | 2018-05-24 | In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems... |
| CVE-2013-3018 | 2018-05-24 | The AXIS webapp in deploy-tomcat/axis in IBM Tivoli Application Dependency... |
| CVE-2013-3023 | 2018-05-24 | IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0... |
| CVE-2013-3024 | 2018-05-24 | IBM WebSphere Application Server (WAS) 8.5 through 8.5.0.2 on UNIX... |
| CVE-2018-5674 | 2018-05-24 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2018-5675 | 2018-05-24 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2018-5676 | 2018-05-24 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2018-5677 | 2018-05-24 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2018-5678 | 2018-05-24 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2018-5679 | 2018-05-24 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2018-5680 | 2018-05-24 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2018-7406 | 2018-05-24 | An issue was discovered in Foxit Reader before 9.1 and... |
| CVE-2018-7407 | 2018-05-24 | An issue was discovered in Foxit Reader before 9.1 and... |
| CVE-2018-11440 | 2018-05-25 | Liblouis 3.5.0 has a stack-based Buffer Overflow in the function... |
| CVE-2018-1133 | 2018-05-25 | An issue was discovered in Moodle 3.x. A Teacher creating... |
| CVE-2018-1134 | 2018-05-25 | An issue was discovered in Moodle 3.x. Students who submitted... |
| CVE-2018-1135 | 2018-05-25 | An issue was discovered in Moodle 3.x. Students who posted... |
| CVE-2018-1136 | 2018-05-25 | An issue was discovered in Moodle 3.x. An authenticated user... |
| CVE-2018-1137 | 2018-05-25 | An issue was discovered in Moodle 3.x. By substituting URLs... |
| CVE-2018-11442 | 2018-05-25 | A CSRF issue was discovered in EasyService Billing 1.0, which... |
| CVE-2018-11443 | 2018-05-25 | The parameter q is affected by Cross-site Scripting in jobcard-ongoing.php... |
| CVE-2018-11444 | 2018-05-25 | A SQL Injection issue was observed in the parameter "q"... |
| CVE-2018-11445 | 2018-05-25 | A CSRF issue was discovered on the User Add/System Settings... |
| CVE-2018-11468 | 2018-05-25 | The __mkd_trim_line function in mkdio.c in libmarkdown.a in DISCOUNT 2.2.3a... |
| CVE-2018-6674 | 2018-05-25 | Privilege escalation vulnerability in McAfee VSE when McTray run with elevated privileges |
| CVE-2017-3961 | 2018-05-25 | SB10192 - Network Security Management (NSM) - Cross-Site Scripting (XSS) vulnerability |
| CVE-2018-6664 | 2018-05-25 | SB10233 - Data Loss Prevention (DLP) Endpoint before 10.0.500 and DLP Endpoint before 11.0.400 - Application Protections Bypass vulnerability |
| CVE-2018-11469 | 2018-05-25 | Incorrect caching of responses to requests including an Authorization header... |
| CVE-2017-1752 | 2018-05-25 | IBM UrbanCode Deploy 6.1 and 6.2 could allow an authenticated... |
| CVE-2018-11470 | 2018-05-25 | iScripts eSwap v2.4 has SQL injection via the "search.php" 'Told'... |
| CVE-2018-1449 | 2018-05-25 | IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect... |
| CVE-2018-1450 | 2018-05-25 | IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect... |
| CVE-2018-1451 | 2018-05-25 | IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect... |
| CVE-2018-1452 | 2018-05-25 | IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect... |
| CVE-2018-1459 | 2018-05-25 | IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect... |
| CVE-2018-1467 | 2018-05-25 | The IBM Storwize V7000 Unified management Web interface 1.6 exposes... |