Design/Logic Flaw

A vulnerability in certain access control mechanisms for the Secure Shell SSH server implementation for Cisco Wireless LAN Controller WLC Software could allow an unauthenticated, adjacent attacker to access a CLI instance on an affected device. The vulnerability is due to a lack of proper input-...

CVE-2019-0158

Insufficient path checking in the installation package for IntelR Graphics Performance Analyzer for Linux version 18.4 and before may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2019-0158

Insufficient path checking in the installation package for IntelR Graphics Performance Analyzer for Linux version 18.4 and before may allow an authenticated user to potentially enable escalation of privilege via local access...

The vulnerability of the `ofproto_rule_insert__()` function in the Open vSwitch software multi-level switch allows a attacker to cause a service failure.

The vulnerability of the ofprotoruleinsert function in the microprogramming-based software for programmable multi-level switches called Open vSwitch OvS is related to errors in rule checking during flow processing. Exploiting this vulnerability could allow a malicious actor to cause service...

NVIDIA Jetson TX2 Code Issue Vulnerability

NVIDIA Jetson TX2 is an embedded system development module from NVIDIA. The NVIDIA Jetson TX2 suffers from a code issue vulnerability that arises from a failure of the ARM System Memory Management Unit to properly check for errors, which can be exploited by an attacker to cause a denial of servic...

The vulnerability in the web interface of the microprogramming software for Cisco IP Phones series 8800 allows a perpetrator to write arbitrary files into the device’s file system.

The vulnerability of the web interface of Cisco IP phones—IP Phone 8800, IP Conference Phone 8832, IP Phone 8821, and IP Phone 8821-EX—is related to deficiencies in path name checking for access-controlled directories. Exploiting this vulnerability allows a malicious actor to write arbitrary file...

Moderate: Red Hat Security Advisory: Red Hat Ceph Storage 2.5 security and bug fix update

An update for ceph and grafana is now available for Red Hat Ceph Storage 2.5 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Intel® Graphics Performance Analyzer for Linux Advisory

Summary: A potential security vulnerability in Intel® Graphics Performance Analyzer for Linux may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2019-0158 Description: Insufficient path checking in the...

EulerOS Virtualization 2.5.3 : kernel (EulerOS-SA-2019-1178)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - It was found that paravirtpatchcall/jump functions in the arch/x86/kernel/paravirt.c in the Linux kernel mishandles certain...

CVE-2019-1788

A vulnerability in the Object Linking & Embedding OLE2 file scanning functionality of Clam AntiVirus ClamAV Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of prope...

Design/Logic Flaw

A vulnerability in the Object Linking & Embedding OLE2 file scanning functionality of Clam AntiVirus ClamAV Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of prope...

CVE-2019-1798

A vulnerability in the Portable Executable PE file scanning functionality of Clam AntiVirus ClamAV Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of proper input a...

CVE-2019-1788 ClamAV OLE2 File Out-Of-Bounds Write Vulnerability

A vulnerability in the Object Linking & Embedding OLE2 file scanning functionality of Clam AntiVirus ClamAV Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of prope...

CVE-2018-4365

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12.1...

CVE-2018-4365

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12.1...

CVE-2018-4308

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to macOS Mojave 10.14...

CVE-2018-4308

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to macOS Mojave 10.14...

CVE-2018-4203

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5...

CVE-2018-4203

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5...

Cross site scripting

An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to macOS Mojave 10.14...