CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In November 2018

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
951 CVE-2018-19621 352 CSRF 2018-11-28 2018-12-26
4.3
None Remote Medium Not required None Partial None
server/index.php?s=/api/teamMember/save in ShowDoc 2.4.2 has a CSRF that can add members to a team.
952 CVE-2018-19622 835 Overflow 2018-11-29 2020-03-20
5.0
None Remote Low Not required None None Partial
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows.
953 CVE-2018-19623 787 2018-11-29 2020-03-20
5.0
None Remote Low Not required None None Partial
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values.
954 CVE-2018-19624 476 2018-11-29 2020-03-20
4.3
None Remote Medium Not required None None Partial
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was addressed in epan/dissectors/packet-pvfs2.c by preventing a NULL pointer dereference.
955 CVE-2018-19625 125 2018-11-29 2020-03-20
4.3
None Remote Medium Not required None None Partial
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuff_composite.c by preventing a heap-based buffer over-read.
956 CVE-2018-19626 125 2018-11-29 2020-08-24
4.3
None Remote Medium Not required None None Partial
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash. This was addressed in epan/dissectors/packet-dcom.c by adding '\0' termination.
957 CVE-2018-19627 125 2018-11-29 2020-03-20
5.0
None Remote Low Not required None None Partial
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.
958 CVE-2018-19628 369 2018-11-29 2020-03-20
5.0
None Remote Low Not required None None Partial
In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error.
959 CVE-2018-19630 79 XSS 2018-11-28 2018-12-31
4.3
None Remote Medium Not required None Partial None
cgi_handle_request in uhttpd in OpenWrt through 18.06.1 and LEDE through 17.01 has unauthenticated reflected XSS via the URI, as demonstrated by a cgi-bin/?[XSS] URI.
960 CVE-2018-19646 78 Exec Code 2018-11-28 2019-02-04
10.0
None Remote Low Not required Complete Complete Complete
The Python CGI scripts in PWS in Imperva SecureSphere 13.0.10, 13.1.10, and 13.2.10 allow remote attackers to execute arbitrary OS commands because command-line arguments are mishandled.
961 CVE-2018-19651 918 2018-11-28 2018-12-20
4.0
None Remote Low ??? Partial None None
admin/functions/remote.php in Interspire Email Marketer through 6.1.6 has Server Side Request Forgery (SSRF) via a what=importurl&url= request with an http or https URL. This also allows reading local files with a file: URL.
962 CVE-2018-19654 20 2018-11-29 2020-06-02
5.0
None Remote Low Not required None Partial None
An issue was discovered in Sales & Company Management System (SCMS) through 2018-06-06. There is a discrepancy in username checking between a component that does string validation, and a component that is supposed to query a MySQL database. Thus, it is possible to register a new account with a duplicate username, as demonstrated by use of the test%c2 string when a test account already exists.
963 CVE-2018-19655 787 Overflow 2018-11-29 2020-08-24
6.8
None Remote Medium Not required Partial Partial Partial
A stack-based buffer overflow in the find_green() function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file.
964 CVE-2018-19661 125 DoS 2018-11-29 2020-10-29
4.3
None Remote Medium Not required None None Partial
An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2ulaw_array in ulaw.c that will lead to a denial of service.
965 CVE-2018-19662 125 DoS 2018-11-29 2020-10-29
5.8
None Remote Medium Not required Partial None Partial
An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2alaw_array in alaw.c that will lead to a denial of service.
966 CVE-2018-19664 125 2018-11-29 2019-11-13
4.3
None Remote Medium Not required None None Partial
libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows function in wrbmp.c, as demonstrated by djpeg.
967 CVE-2018-19666 22 Dir. Trav. 2018-11-29 2019-01-04
7.2
None Local Low Not required Complete Complete Complete
The agent in OSSEC through 3.1.0 on Windows allows local users to gain NT AUTHORITY\SYSTEM access via Directory Traversal by leveraging full access to the associated OSSEC server.
968 CVE-2018-19692 434 Exec Code 2018-11-29 2018-12-27
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in tp5cms through 2017-05-25. admin.php/upload/picture.html allows remote attackers to execute arbitrary PHP code by uploading a .php file with the image/jpeg content type.
969 CVE-2018-19693 79 XSS 2018-11-29 2018-12-27
4.3
None Remote Medium Not required None Partial None
An issue was discovered in tp5cms through 2017-05-25. admin.php/system/set.html has XSS via the title parameter.
970 CVE-2018-19748 22 Dir. Trav. 2018-11-29 2018-12-21
5.0
None Remote Low Not required Partial None None
app/plug/attachment/controller/admincontroller.php in SDCMS 1.6 allows reading arbitrary files via a /?m=plug&c=admin&a=index&p=attachment&root= directory traversal. The value of the root parameter must be base64 encoded (note that base64 encoding, instead of URL encoding, is very rare in a directory traversal attack vector).
971 CVE-2018-19749 79 XSS 2018-11-29 2018-12-21
3.5
None Remote Medium ??? None Partial None
DomainMOD through 4.11.01 has XSS via the assets/add/account-owner.php Owner name field.
972 CVE-2018-19750 79 XSS 2018-11-29 2018-12-27
3.5
None Remote Medium ??? None Partial None
DomainMOD through 4.11.01 has XSS via the admin/domain-fields/ notes field in an Add Custom Field action for Custom Domain Fields.
973 CVE-2018-19751 79 XSS 2018-11-29 2018-12-21
3.5
None Remote Medium ??? None Partial None
DomainMOD through 4.11.01 has XSS via the admin/ssl-fields/add.php notes field for Custom SSL Fields.
974 CVE-2018-19752 79 XSS 2018-11-29 2018-12-21
3.5
None Remote Medium ??? None Partial None
DomainMOD through 4.11.01 has XSS via the assets/add/registrar.php notes field for the Registrar.
975 CVE-2018-19755 20 DoS 2018-11-30 2018-12-21
4.3
None Remote Medium Not required None None Partial
There is an illegal address access at asm/preproc.c (function: is_mmacro) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service (out-of-bounds array access) because a certain conversion can result in a negative integer.
976 CVE-2018-19756 125 DoS 2018-11-30 2018-12-26
4.3
None Remote Medium Not required None None Partial
There is a heap-based buffer over-read at stb_image.h (function: stbi__tga_load) in libsixel 1.8.2 that will cause a denial of service.
977 CVE-2018-19757 476 DoS 2018-11-30 2018-12-26
4.3
None Remote Medium Not required None None Partial
There is a NULL pointer dereference at function sixel_helper_set_additional_message (status.c) in libsixel 1.8.2 that will cause a denial of service.
978 CVE-2018-19758 125 DoS 2018-11-30 2020-10-29
4.3
None Remote Medium Not required None None Partial
There is a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service.
979 CVE-2018-19759 125 DoS 2018-11-30 2018-12-26
4.3
None Remote Medium Not required None None Partial
There is a heap-based buffer over-read at stb_image_write.h (function: stbi_write_png_to_mem) in libsixel 1.8.2 that will cause a denial of service.
980 CVE-2018-19760 772 2018-11-30 2019-10-03
6.8
None Remote Medium Not required Partial Partial Partial
cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak.
981 CVE-2018-19761 125 DoS 2018-11-30 2018-12-26
4.3
None Remote Medium Not required None None Partial
There is an illegal address access at fromsixel.c (function: sixel_decode_raw_impl) in libsixel 1.8.2 that will cause a denial of service.
982 CVE-2018-19762 787 DoS Overflow 2018-11-30 2020-08-24
6.8
None Remote Medium Not required Partial Partial Partial
There is a heap-based buffer overflow at fromsixel.c (function: image_buffer_resize) in libsixel 1.8.2 that will cause a denial of service or possibly unspecified other impact.
983 CVE-2018-19763 125 DoS 2018-11-30 2018-12-26
4.3
None Remote Medium Not required None None Partial
There is a heap-based buffer over-read at writer.c (function: write_png_to_file) in libsixel 1.8.2 that will cause a denial of service.
984 CVE-2018-19777 835 2018-11-30 2019-11-12
4.3
None Remote Medium Not required None None Partial
In Artifex MuPDF 1.14.0, there is an infinite loop in the function svg_dev_end_tile in fitz/svg-device.c, as demonstrated by mutool.
Total number of vulnerabilities : 984   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.