557 matches found
CVE-2018-9042
In Advanced SystemCare Ultimate 11.0.1.58, the driver file Monitorwin10x64.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c402000...
Google Android Qualcomm Wma elevation of privilege vulnerability (CNVD-2018-06009)
Android on Google Pixel and Nexus is a Linux-based open source operating system for the Google Pixel and Nexus smartphones developed by Google and the Open Handset Alliance OHA.Qualcomm Wma is one of the components of Qualcomm's Wma digital audio compression format. (Qualcomm Wma is one of...
Microsoft Windows Hyper-V Information Disclosure Vulnerability (CNVD-2018-06785)
Microsoft Windows Server 2008 SP2 and others are a series of operating systems from Microsoft Corporation USA.Hyper-V Network Switch is one of the network switches. An information disclosure vulnerability exists in Microsoft Hyper-V Network Switch, which originates from the program failing to...
SAP NetWeaver Composite Application Framework and Business Cross-Site Scripting Vulnerability
SAP NetWeaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform provides a development and runtime environment for SAP applications. A cross-site scripting attack vulnerability exists in SAP NetWeaver, which stems from a failure to adequately...
Multiple Huawei products cross-border read vulnerability (CNVD-2018-05437)
Huawei AR120-S and others are router products from Huawei China. An out-of-bounds read vulnerability exists in multiple Huawei products, which stems from a program failing to adequately validate input. A remote attacker could exploit the vulnerability by sending a specially crafted signature to t...
Jiangmin Antivirus Denial of Service Vulnerability (CNVD-2018-03296)
Jiangmin Antivirus is a set of online antivirus software from the Chinese Jiangmin Jiangmin New Technology Company. A security vulnerability exists in the KSysCall.sys driver file in Jiangmin Antivirus version 16.0.0.100, which is caused by the program failing to validate an input value of IOCtl...
Jiangmin Antivirus Denial of Service Vulnerability (CNVD-2018-03299)
Jiangmin Antivirus is a set of online antivirus software from the Chinese Jiangmin Jiangmin New Technology Company. A security vulnerability exists in the KrnlCall.sys driver file in Jiangmin Antivirus version 16.0.0.100, which is caused by the program failing to validate an input value of IOCtl...
CVE-2018-6776
In Jiangmin Antivirus 16.0.0.100, the driver file KSysCall.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9A00813C...
CVE-2018-6777
In Jiangmin Antivirus 16.0.0.100, the driver file KVFG.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x220400...
CVE-2018-6781
In Jiangmin Antivirus 16.0.0.100, the driver file KSysCall.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9A008264...
CVE-2018-6778
In Jiangmin Antivirus 16.0.0.100, the driver file KSysCall.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9A008268...
Micropoint Proactive Defense Software Denial of Service Vulnerability (CNVD-2018-02958)
Micropoint proactive defense software is a set of third-generation anti-virus software from China's Oriental Micropoint Micropoint Company. The software uses proactive defense technology to analyze and judge to achieve the purpose of defense against viruses. A security vulnerability exists in the...
CVE-2018-6630
In Micropoint proactive defense software 2.0.20266.0146, the driver file mp110005.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x8000014c...
CVE-2018-6625
In WatchDog Anti-Malware 2.74.186.150, the driver file ZAMGUARD32.SYS allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x80002010...
The vulnerability of the command-line interface (CLI) of the NX-OS operating system of the Cisco Unified Computing System Central device’s centralized device management system allows a attacker to execute arbitrary commands.
The vulnerability of the command-line interface CLI of the NX-OS operating system in the Cisco Unified Computing System Central device management system exists due to insufficient verification of input data during the installation of updates. Exploiting this vulnerability allows an attacker to...
CVE-2018-5958
In Zillya! Antivirus 3.0.2230.0, the driver file zef.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9C402424...
CVE-2018-5714
In Malwarefox Anti-Malware 2.72.169, the driver file zam64.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x80002054...
The vulnerability of the rubygems package manager arises from insufficient validation of input data, allowing attackers to overwrite any file.
The vulnerability of the rubygems package manager exists due to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to overwrite any file...
Code Execution Vulnerability in Pagoda Panel for windows
Pagoda Panel is an easy-to-use, full-featured and free-for-life server management software that supports Linux and Windows. A code execution vulnerability exists in Pagoda Panel for Windows, which is caused due to the program failing to validate the values passed by the user, which can be exploit...
Structured Data Linter Directory Traversal Vulnerability
Structured Data Linter is an open source embedded RDF markup for extracting and validating HTML. A directory traversal vulnerability exists in Structured Data Linter 2.4.1 and earlier versions, which stems from the program failing to detect user input. An attacker can exploit this vulnerability t...