CVE-2018-9320

The Head Unit HUNBT aka Infotainment component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows a local attack when a USB device is plugged in...

Code injection

The Head Unit HUNBT aka Infotainment component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows a local attack when a USB device is plugged in...

CVE-2018-9312

The Head Unit HUNBT aka Infotainment component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows a local attack when a USB device is plugged in...

Code injection

The Head Unit HUNBT aka Infotainment component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows a local attack when a USB device is plugged in...

CVE-2018-9312

CVE-2018-9312 concerns BMW’s Head Unit HU_NBT (Infotainment) in BMW i/X/3/5/7 Series vehicles from 2012–2018. The vulnerability enables a local attack when a USB device is connected. NVD data records a CVSS-3 base score of 7.8 (HIGH) with LOCAL access, LOW attack complexity, and no user interacti...

CVE-2018-9312

The Head Unit HUNBT aka Infotainment component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows a local attack when a USB device is plugged in...

CVE-2018-9322

The CVE-2018-9322 entry describes a vulnerability in the Head Unit HU_NBT (Infotainment) used in BMW i/X/3/5/7 Series vehicles from 2012–2018. A local attacker with access to USB or OBD-II interfaces can bypass the firmware update code-signing protection, enabling execution of unsigned firmware a...

CVE-2018-9063

MapDrv C:\Program Files\Lenovo\System Update\mapdrv.exe In Lenovo System Update versions earlier than 5.07.0072 contains a local vulnerability where an attacker entering very large user ID or password can overrun the program's buffer, causing undefined behaviors, such as execution of arbitrary...

CVE-2018-9336

openvpnserv.exe aka the interactive service helper in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory by sending a malformed request to the interactive service. This could cause a denial-of-service through memory corruption or possibly have unspecified other...

VX Search 10.6.18 - 'directory' Local Buffer Overflow

!/usr/bin/python Title: VX Search 10.6.18 Local Buffer Overflow Author: Kevin McGuigan Twitter: @h3xagram Author Website: https://www.7elements.co.uk Vendor Website: http://www.vxsearch.com Version: 10.6.18 Date: 18/04/2018 Tested on: Windows 7 32-bit Vendor did not respond to advisory. Copy the...

Microsoft DirectX Graphics Kernel Subsystem Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Windows improperly handles objects in memory and incorrectly maps kernel memory. In a local attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to take control over the affected system. An...

CVE-2018-7886

CVE-2018-7886 affects CloudMe Sync 1.11.0, where an unauthenticated local attacker connecting to the Sync client on 127.0.0.1:8888 can trigger a stack/heap buffer overflow by sending a crafted payload, potentially enabling code execution or a crash. This entry arises from an incomplete fix for CV...

Windows Installer Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior. A locally authenticated attacker could run arbitrary code with elevated system privileges. An attacker could then...

CVE-2017-17321

Huawei eNSP software with software of versions earlier than V100R002C00B510 has a buffer overflow vulnerability. Due to the improper validation of specific command line parameter, a local attacker could exploit this vulnerability to cause the software process abnormal...

Design/Logic Flaw

The commandline package update tool zypper writes HTTP proxy credentials into its logfile, allowing local attackers to gain access to proxies used...

CVE-2017-9271

The commandline package update tool zypper writes HTTP proxy credentials into its logfile, allowing local attackers to gain access to proxies used...

IBM Client Application Access and Notes Elevation of Privilege Vulnerability (CNVD-2018-03879)

IBM Client Application Access and IBM Notes are both products of IBM Corporation in the U.S. IBM Client Application Access is a set of tools for accessing local applications.IBM Notes is a set of collaborative office software. An elevation of privilege vulnerability exists in IBM Client Applicati...

Jiangmin Antivirus Denial of Service Vulnerability (CNVD-2018-03286)

Jiangmin Antivirus is a set of online antivirus software from the Chinese Jiangmin Jiangmin New Technology Company. A security vulnerability exists in the KrnlCall.sys driver file in Jiangmin Antivirus version 16.0.0.100, which is caused by the program failing to validate the input value of IOCtl...

Jiangmin Antivirus Denial of Service Vulnerability (CNVD-2018-03299)

Jiangmin Antivirus is a set of online antivirus software from the Chinese Jiangmin Jiangmin New Technology Company. A security vulnerability exists in the KrnlCall.sys driver file in Jiangmin Antivirus version 16.0.0.100, which is caused by the program failing to validate an input value of IOCtl...

USN-3558-1: systemd vulnerabilities

Karim Hossen & Thomas Imbert and Nelson William Gamazo Sanchez independently discovered that systemd-resolved incorrectly handled certain DNS responses. A remote attacker could possibly use this issue to cause systemd to temporarily stop responding, resulting in a denial of service. This issue on...