Microsoft Windows CVE-2018-0886 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft Windows 10 Version 1607 f...

Duomi (DuomiCms) Movie Management System X3.0 version of the existing code execution vulnerabilities

Duomi DuomiCms Movie and TV management system is a set of video on demand system designed for different needs of webmasters. Duomi DuomiCms Movie and TV Management System X3.0 version of the code execution vulnerability, an attacker can exploit the vulnerability to execute arbitrary code...

Apache Geode Code Execution Vulnerability (CNVD-2018-04076)

Apache Geode is the Apache Software Foundation's suite of management platforms for distributed cloud architectures that provide real-time and consistent access to data for data-intensive applications. A code execution vulnerability exists in Apache Geode. A remote attacker could exploit this...

nanopool Claymore Dual Miner Remote Code Execution Vulnerability

nanopool Claymore Dual Miner is a software for bitcoin mining. A remote code execution vulnerability exists in the API in nanopool Claymore Dual Miner 7.3 and earlier versions. A remote attacker can exploit this vulnerability to execute code...

Google Chrome < 64.0.3282.167 Vulnerability

The version of Google Chrome installed on the remote Windows host is prior to 64.0.3282.167. It is, therefore, affected by a vulnerability as referenced in the 201802stable-channel-update-for-desktop13 advisory. - Type confusion could lead to a heap out-of-bounds write in V8 in Google Chrome prio...

CVE-2017-13229

A remote code execution vulnerability in the Android media framework n/a. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. ID: A-68160703...

Juniper Junos J-Web Interface PHP URL Handling Use-after-free RCE (JSA10828)

According to its self-reported version number, the remote Junos device is affected by a remote code execution vulnerability. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid106385; scriptversion"1.6"; scriptsetattributeattribute:"pluginmodificationdate",...

CVE-2017-18049

In the CSV export feature of SilverStripe before 3.5.6, 3.6.x before 3.6.3, and 4.x before 4.0.1, it's possible for the output to contain macros and scripts, which may be executed if imported without sanitization into common software including Microsoft Excel. For example, the CSV data may contai...

Ubuntu 14.04 LTS / 16.04 LTS : Intel Microcode regression (USN-3531-2)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-3531-2 advisory. USN-3531-1 updated Intel microcode to the 20180108 release. Regressions were discovered in the microcode updates which could cause system instability ...

EulerOS 2.0 SP2 : dracut (EulerOS-SA-2018-1021)

According to the version of the dracut packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly us...

VMware Workstation 12.x < 12.5.9 / 14.x < 14.1.1 Multiple Vulnerabilities (VMSA-2018-0004) (VMSA-2018-0005) (Spectre)

The version of VMware Workstation installed on the remote Windows host is 14.x prior to 14.1.1 or 12.x prior to 12.5.9. It is, therefore, missing security updates that add hypervisor-assisted guest remediation for a speculative execution vulnerability CVE-2017-5715. These updates will allow guest...

(RHSA-2018:0037) Important: microcode_ctl security update

The microcodectl packages provide microcode updates for Intel and AMD processors. Security Fixes: An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary...

(RHSA-2018:0034) Important: microcode_ctl security update

The microcodectl packages provide microcode updates for Intel and AMD processors. Security Fixes: An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary...

CVE-2017-5753

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant...

(RHSA-2018:0013) Important: microcode_ctl security update

The microcodectl packages provide microcode updates for Intel and AMD processors. Security Fixes: An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary...

Updated fossil packages fix security vulnerability

Client-side code execution via crafted "ssh://" URLs CVE-2017-17459...

Code execution vulnerability in DocCMS x1.0

DocCMS rice husk enterprise building system, also known as rice husk cms, doccms, formerly known as deep throat enterprise building system ShlCms, is the industry's leading free open source enterprise website building system, enterprise website generation system. A code execution vulnerability...

OTRS Arbitrary Command Execution Vulnerability

OTRS Open-source Ticket Request System is a set of open source defect tracking and management system software from OTRS Group in Germany. The software categorizes service requests submitted through various channels such as phone calls, emails, etc. into different queues and service levels, and th...

Security Update for Microsoft Word 2016 (KB4011575) 64-Bit Edition

A security vulnerability exists in Microsoft Word 2016 64-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...

Code Execution Vulnerability in Multiple Cisco Products

Cisco Nexus 2000 Series Fabric Extenders and so on are the products of the American Cisco Cisco company.Cisco Nexus 2000 Series Fabric Extenders is a Nexus 2000 series array extender.Nexus 5000 Series Nexus 5000 Series Switches is a 5000 series switch. A code execution vulnerability exists in the...