3 matches found
Google Chrome Security Update (stable-channel-update-for-desktop_19-2018-11) - Windows
Google Chrome is prone to a use after free vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...
CVE-2018-1747
IBM Security Key Lifecycle Manager (versions 2.5–3.0) is affected by CVE-2018-1747 due to an XML External Entity (XXE) vulnerability in the XML processing path. The issue allows a remote attacker to disclose sensitive information or exhaust memory resources. No remediation or patch details are pr...
Security Bulletin: IBM Security Key Lifecycle Manager is vulnerable to a XML External Entity Injection (XXE) attack (CVE-2018-1747)
Summary IBM Security Key Lifecycle Manager is vulnerable to a XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. Vulnerability Details CVEID: CVE-2018-1747 DESCRIPTION:...