CVE-2019-18246

BIOTRONIK CardioMessenger II, The affected products do not properly enforce mutual authentication with the BIOTRONIK Remote Communication infrastructure...

Linux Distros Unpatched Vulnerability : CVE-2018-18246

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Icinga Web 2 before 2.6.2 has CSRF via /icingaweb2/config/moduledisable?name=monitoring to disable the monitoring module, or via...

CVE-2017-18246

The pcmencodeframe function in libavcodec/pcm.c in Libav 12.2 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted media file...

CVE-2019-18246

creationtimestamp| type| source ---|---|--- 2020-06-29 18:55:09+00:00| seen| https://t.me/cibsecurity/13112...

CVE-2019-18246

The connected sources confirm CVE-2019-18246 affects BIOTRONIK CardioMessenger II (home monitoring unit). The root issue is improper authentication with the BIOTRONIK Remote Communication infrastructure (CWE-287), enabling an attacker with adjacent access to interact with or intercept communicati...

openSUSE: Security Advisory for icingaweb2 (openSUSE-SU-2020:0067_1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE Security Update : icingaweb2 (openSUSE-2020-67)

This update for icingaweb2 to version 2.7.3 fixes the following issues : icingaweb2 update to 2.7.3 : - Fixed an issue where servicegroups for roles with filtered objects were not available icingaweb2 update to 2.7.2 : - Performance imrovements and bug fixes icingaweb2 update to 2.7.1 : - Highlig...

CVE-2018-18246

Icinga Web 2 before 2.6.2 has CSRF via /icingaweb2/config/moduledisable?name=monitoring to disable the monitoring module, or via /icingaweb2/config/moduleenable?name=setup to enable the setup module...

CVE-2018-18246

Icinga Web 2 prior to version 2.6.2 is vulnerable to CSRF via modules control endpoints: /icingaweb2/config/moduledisable?name=monitoring to disable the monitoring module and /icingaweb2/config/moduleenable?name=setup to enable the setup module. This can be exploited to alter module state without...

CVE-2017-18246

The pcmencodeframe function in libavcodec/pcm.c in Libav 12.2 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted media file...

CVE-2017-18246

The pcmencodeframe function in libavcodec/pcm.c in Libav 12.2 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted media file...

CVE-2017-18246

The pcmencodeframe function in libavcodec/pcm.c in Libav 12.2 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted media file...

CVE-2017-18246

The CVE-2017-18246 entry affects Libav 12.2, where the pcm_encode_frame function in libavcodec/pcm.c is vulnerable to a heap-based buffer over-read triggered by crafted media files. This leads to a denial of service. The provided documents specify the vulnerable component and impact but do not in...

CheckPoint FireWall-1 information leak

It's possible to retrieve certificate revocation least from internal CA port TCP/18246...