CVE List - 2018 / July
Showing 401 - 500 of 2167 CVEs for July 2018 (Page 5 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2018-5891 | 2018-07-06 | While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipc_dataHandle is no longer available. Consequently, the DPL thread frees the internal memory for... |
| CVE-2018-5892 | 2018-07-06 | The Touch Pal application can collect user behavior data without awareness by the user in Snapdragon Mobile and Snapdragon Wear. |
| CVE-2018-5893 | 2018-07-06 | While processing a message from firmware in htt_t2h_msg_handler_fast() in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level... |
| CVE-2018-5894 | 2018-07-06 | Improper Validation of Array Index in Multimedia While parsing an mp4 file in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, an out-of-bounds access can occur. |
| CVE-2018-5895 | 2018-07-06 | Buffer over-read may happen in wma_process_utf_event() due to improper buffer length validation before writing into param_buf->num_wow_packet_buffer in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS... |
| CVE-2018-5896 | 2018-07-06 | In Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, kernel panic may happen due to out-of-bound... |
| CVE-2018-5897 | 2018-07-06 | While reading the data from buffer in dci_process_ctrl_status() there can be buffer over-read problem if the len is not checked correctly in Android releases from CAF using the linux kernel... |
| CVE-2018-5898 | 2018-07-06 | Integer overflow can occur in msm_pcm_adsp_stream_cmd_put() function if the user supplied data "param_length" goes beyond certain limit in Android releases from CAF using the linux kernel (Android for MSM, Firefox... |
| CVE-2018-5899 | 2018-07-06 | In Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, whenever TDLS connection is setup, we are... |
| CVE-2018-13410 | 2018-07-06 | Info-ZIP Zip 3.0, when the -T and -TT command-line options are used, allows attackers to cause a denial of service (invalid free and application crash) or possibly have unspecified other... |
| CVE-2018-3608 | 2018-07-06 | A vulnerability in Trend Micro Maximum Security's (Consumer) 2018 (versions 12.0.1191 and below) User-Mode Hooking (UMH) driver could allow an attacker to create a specially crafted packet that could alter... |
| CVE-2017-15851 | 2018-07-06 | Lack of copy_from_user and information leak in function "msm_ois_subdev_do_ioctl, file msm_ois.c can lead to a camera crash in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from... |
| CVE-2018-11304 | 2018-07-06 | Possible buffer overflow in msm_adsp_stream_callback_put due to lack of input validation of user-provided data that leads to integer overflow in all Android releases(Android for MSM, Firefox OS for MSM, QRD... |
| CVE-2018-3570 | 2018-07-06 | In the cpuidle driver in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel, the list_for_each macro was not used correctly which... |
| CVE-2018-3586 | 2018-07-06 | An integer overflow to buffer overflow vulnerability exists in the ADSPRPC heap manager in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux... |
| CVE-2018-3587 | 2018-07-06 | In a firmware memory dump feature in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android), a Use After Free condition... |
| CVE-2018-5853 | 2018-07-06 | A race condition exists in a driver in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level... |
| CVE-2018-5855 | 2018-07-06 | While padding or shrinking a nested wmi packet in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch... |
| CVE-2018-5858 | 2018-07-06 | In the audio debugfs in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, out of... |
| CVE-2018-5859 | 2018-07-06 | Due to a race condition in the MDSS MDP driver in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before... |
| CVE-2018-5862 | 2018-07-06 | In __wlan_hdd_cfg80211_vendor_scan() in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, when SCAN_SSIDS and QCA_WLAN_VENDOR_ATTR_SCAN_FREQUENCIES... |
| CVE-2018-5864 | 2018-07-06 | While processing a WMI_APFIND event in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, a... |
| CVE-2018-5865 | 2018-07-06 | While processing a debug log event from firmware in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch... |
| CVE-2018-5872 | 2018-07-06 | While parsing over-the-air information elements in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, the... |
| CVE-2018-5873 | 2018-07-06 | An issue was discovered in the __ns_get_path function in fs/nsfs.c in the Linux kernel before 4.11. Due to a race condition when accessing files, a Use After Free condition can... |
| CVE-2018-5886 | 2018-07-06 | A pointer in an ADSPRPC command is not properly validated in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android), which... |
| CVE-2018-5907 | 2018-07-06 | Possible buffer overflow in msm_adsp_stream_callback_put due to lack of input validation of user-provided data that leads to integer overflow in all Android releases(Android for MSM, Firefox OS for MSM, QRD... |
| CVE-2016-6538 | 2018-07-06 | TrackR Bravo mobile application stores account passwords in cleartext |
| CVE-2016-6539 | 2018-07-06 | TrackR Bravo MAC address can be exposed in close proximity and used to obtain the device ID |
| CVE-2016-6540 | 2018-07-06 | TrackR Bravo is missing authentication for the cloud service and allows querying or sending of GPS data from unauthenticated users |
| CVE-2016-6541 | 2018-07-06 | TrackR Bravo device allows unauthenticated pairing, which enables unauthenticated connected applications to write to various device attributes |
| CVE-2018-11349 | 2018-07-07 | The administration panel of Jirafeau before 3.4.1 is vulnerable to three CSRF attacks on search functionalities: search_by_name, search_by_hash, and search_link. |
| CVE-2018-11350 | 2018-07-07 | An issue was discovered in Jirafeau before 3.4.1. The file "search by name" form is affected by one Cross-Site Scripting vulnerability via the name parameter. |
| CVE-2018-11351 | 2018-07-07 | script.php in Jirafeau before 3.4.1 is affected by two stored Cross-Site Scripting (XSS) vulnerabilities. These are stored within the shared files description file and allow the execution of a JavaScript... |
| CVE-2018-13419 | 2018-07-07 | An issue has been found in libsndfile 1.0.28. There is a memory leak in psf_allocate in common.c, as demonstrated by sndfile-convert. NOTE: The maintainer and third parties were unable to... |
| CVE-2018-13420 | 2018-07-07 | Google gperftools 2.7 has a memory leak in malloc_extension.cc, related to MallocExtension::Register and InitModule. NOTE: the software maintainer indicates that this is not a bug; it is only a false-positive... |
| CVE-2018-13421 | 2018-07-07 | Fast C++ CSV Parser (aka fast-cpp-csv-parser) before 2018-07-06 has a heap-based buffer over-read in io::trim_chars in csv.h. |
| CVE-2018-13422 | 2018-07-07 | TCExam before 14.1.2 has XSS via an ff_ or xl_ field. |
| CVE-2018-13423 | 2018-07-07 | admin/themes/default/items/tag-form.php in Omeka before 2.6.1 allows XSS by adding or editing a tag. |
| CVE-2018-13433 | 2018-07-08 | Boostnote v0.11.7 allows XSS during highlighting of Markdown text, as demonstrated by an onerror attribute of an IMG element. |
| CVE-2018-13439 | 2018-07-08 | WXPayUtil in WeChat Pay Java SDK allows XXE attacks involving a merchant notification URL. |
| CVE-2018-13440 | 2018-07-08 | The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf... |
| CVE-2018-13444 | 2018-07-08 | An issue was discovered in SeaCMS 6.61. There is a CSRF vulnerability that can add an admin account via adm1n/admin_manager.php?action=save&id=2. |
| CVE-2018-13445 | 2018-07-08 | An issue was discovered in SeaCMS 6.61. There is a CSRF vulnerability that can add a user account via adm1n/admin_manager.php?action=add. |
| CVE-2018-13447 | 2018-07-08 | SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut parameter. |
| CVE-2018-13448 | 2018-07-08 | SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the country_id parameter. |
| CVE-2018-13449 | 2018-07-08 | SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut_buy parameter. |
| CVE-2018-13450 | 2018-07-08 | SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the status_batch parameter. |
| CVE-2018-13462 | 2018-07-09 | The mintToken function of a smart contract implementation for MoonToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13463 | 2018-07-09 | The mintToken function of a smart contract implementation for T-Swap-Token (T-S-T), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of... |
| CVE-2018-13464 | 2018-07-09 | The mintToken function of a smart contract implementation for t_swap, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13465 | 2018-07-09 | The mintToken function of a smart contract implementation for PaulyCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13466 | 2018-07-09 | The mintToken function of a smart contract implementation for Crystals, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13467 | 2018-07-09 | The mintToken function of a smart contract implementation for EpiphanyCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13468 | 2018-07-09 | The mintToken function of a smart contract implementation for Cavecoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13469 | 2018-07-09 | The mintToken function of a smart contract implementation for IcoContract, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13470 | 2018-07-09 | The mintToken function of a smart contract implementation for BuyerToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13471 | 2018-07-09 | The mintToken function of a smart contract implementation for BeyondCashToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13472 | 2018-07-09 | The mint function of a smart contract implementation for CloutToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13473 | 2018-07-09 | The mintToken function of a smart contract implementation for ohni_2 (OHNI), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of... |
| CVE-2018-13474 | 2018-07-09 | The mintToken function of a smart contract implementation for FansChainToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13475 | 2018-07-09 | The mintToken function of a smart contract implementation for VSCToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13476 | 2018-07-09 | The mintToken function of a smart contract implementation for PhilCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13477 | 2018-07-09 | The mintToken function of a smart contract implementation for CTESale, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13478 | 2018-07-09 | The mintToken function of a smart contract implementation for DMPToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13479 | 2018-07-09 | The mintToken function of a smart contract implementation for SlidebitsToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13480 | 2018-07-09 | The mintToken function of a smart contract implementation for QRG, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13481 | 2018-07-09 | The mintToken function of a smart contract implementation for TRIUM, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13482 | 2018-07-09 | The mintToken function of a smart contract implementation for ETHERCASH (ETC), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of... |
| CVE-2018-13483 | 2018-07-09 | The mintToken function of a smart contract implementation for mkethToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13484 | 2018-07-09 | The mintToken function of a smart contract implementation for CBRToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13485 | 2018-07-09 | The mintToken function of a smart contract implementation for BitcoinAgileToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13486 | 2018-07-09 | The mintToken function of a smart contract implementation for HELP, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13487 | 2018-07-09 | The mintToken function of a smart contract implementation for PlatoToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13488 | 2018-07-09 | The mintToken function of a smart contract implementation for Crypto Alley Shares (CAST), an Ethereum token, has an integer overflow that allows the owner of the contract to set the... |
| CVE-2018-13489 | 2018-07-09 | The mintToken function of a smart contract implementation for OllisCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13490 | 2018-07-09 | The mintToken function of a smart contract implementation for FILM, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13491 | 2018-07-09 | The mintToken function of a smart contract implementation for Carrot, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13492 | 2018-07-09 | The mintToken function of a smart contract implementation for naga, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13493 | 2018-07-09 | The mintToken function of a smart contract implementation for DaddyToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13494 | 2018-07-09 | The mintToken function of a smart contract implementation for SusanTokenERC20, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13495 | 2018-07-09 | The mintToken function of a smart contract implementation for KMCToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13496 | 2018-07-09 | The mintToken function of a smart contract implementation for RajTestICO, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13497 | 2018-07-09 | The mintToken function of a smart contract implementation for COBToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13498 | 2018-07-09 | The mintToken function of a smart contract implementation for KAPAYcoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13499 | 2018-07-09 | The mintToken function of a smart contract implementation for Crowdsale, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13500 | 2018-07-09 | The mintToken function of a smart contract implementation for MSXAdvanced, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13501 | 2018-07-09 | The mintToken function of a smart contract implementation for HRWtoken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13502 | 2018-07-09 | The mintToken function of a smart contract implementation for HeliumNetwork, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13503 | 2018-07-09 | The mintToken function of a smart contract implementation for South Park Token Token (SPTKN), an Ethereum token, has an integer overflow that allows the owner of the contract to set... |
| CVE-2018-13504 | 2018-07-09 | The mintToken function of a smart contract implementation for MMCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13505 | 2018-07-09 | The mintToken function of a smart contract implementation for ecogreenhouse, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13506 | 2018-07-09 | The mintToken function of a smart contract implementation for SDR22, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13507 | 2018-07-09 | The mintToken function of a smart contract implementation for SLCAdvancedToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13508 | 2018-07-09 | The mintToken function of a smart contract implementation for VITToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13509 | 2018-07-09 | The mintToken function of a smart contract implementation for IamRich, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13510 | 2018-07-09 | The mintToken function of a smart contract implementation for Welfare Token Fund (WTF), an Ethereum token, has an integer overflow that allows the owner of the contract to set the... |
| CVE-2018-13511 | 2018-07-09 | The mintToken function of a smart contract implementation for CorelliCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13512 | 2018-07-09 | The mintToken function of a smart contract implementation for SmartHomeCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |
| CVE-2018-13513 | 2018-07-09 | The mintToken function of a smart contract implementation for Ubiou, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an... |