Lucene search
K

8225 matches found

CNVD
CNVD
added 2018/04/17 12:0 a.m.3 views

Multiple F5 Products Elevation of Privilege Vulnerabilities

F5 BIG-IP LTM, etc. are products of F5 Corporation, U.S.A. F5 BIG-IP LTM is a local traffic manager; BIG-IP AAM is an application acceleration manager. A security vulnerability exists in a number of F5 products that stems from the program's failure to enforce a limit on the commands that can be...

7.2CVSS6.8AI score0.14757EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2018/04/10 3:34 a.m.6 views

Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation

The Linux kernel is vulerable to a use-after-free flaw when Transformation User configuration interfaceCONFIGXFRMUSER compile-time configuration were enabled. This vulnerability occurs while closing a xfrm netlink socket in xfrmdumppolicydone. A user/process could abuse this flaw to potentially...

7.8CVSS7.1AI score0.0215EPSS
Exploits3References4
Apple
Apple
added 2018/04/09 4:6 a.m.52 views

About the security content of Safari 11.0.2 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...

8.8CVSS0.5AI score0.02689EPSS
Exploits1Affected Software4
CNVD
CNVD
added 2018/04/08 12:0 a.m.2 views

IBM WebSphere Portal Cross-Site Scripting Vulnerability (CNVD-2018-08589)

IBM WebSphere Portal is a suite of enterprise portal software from IBM. The software creates a platform that connects an organization internally and externally, allowing employees, customers and suppliers to access internal data through the platform. A cross-site scripting vulnerability exists in...

6.1CVSS6.3AI score0.01325EPSS
Exploits0References1
OSV
OSV
added 2018/04/04 4:29 p.m.1 views

CVE-2017-13301

A denial of service vulnerability in the Android system system ui. Product: Android. Versions: 8.0. Android ID: A-66498711...

7.5CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2018/04/03 6:29 a.m.19 views

CVE-2018-4174

An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "Mail" component. It allows man-in-the-middle attackers to read S/MIME encrypted messages by leveraging an inconsistency in the user interface...

5.9CVSS4.2AI score0.01511EPSS
Exploits0References5
OSV
OSV
added 2018/04/03 6:29 a.m.2 views

CVE-2018-4134

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "Safari" component. It allows remote attackers to spoof the user interface via a crafted web site...

8.8CVSS7.3AI score0.01611EPSS
Exploits0References3
NVD
NVD
added 2018/04/03 6:29 a.m.17 views

CVE-2017-7153

An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "WebKit"...

6.1CVSS5.2AI score0.01911EPSS
Exploits1References7
Prion
Prion
added 2018/04/03 6:29 a.m.21 views

Code injection

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "SafariViewController" component. It allows remote attackers to spoof the user interface via a crafted web site that leverages input into a partially loaded page...

6.8CVSS6.9AI score0.01611EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2018/04/03 6:29 a.m.21 views

Information disclosure

An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "WebKit"...

5.8CVSS6AI score0.01911EPSS
Exploits1References7Affected Software7
Prion
Prion
added 2018/04/03 6:29 a.m.17 views

Design/Logic Flaw

An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "Mail" component. It allows man-in-the-middle attackers to read S/MIME encrypted messages by leveraging an inconsistency in the user interface...

4.3CVSS4.2AI score0.01511EPSS
Exploits0References5Affected Software2
Cvelist
Cvelist
added 2018/04/03 6:0 a.m.17 views

CVE-2017-7153

An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "WebKit"...

5.8AI score0.01911EPSS
Exploits1References7
CVE
CVE
added 2018/04/03 6:0 a.m.61 views

CVE-2018-4134

CVE-2018-4134 affects iOS Safari: a crafted website can spoof the user interface, as described for Safari in iOS prior to 11.3. The Apple advisory notes iOS 11.3 release and related Safari/UI spoofing entries, implying remediation via updating to iOS 11.3 or later. The vulnerability scope is limi...

8.8CVSS6.6AI score0.01611EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/04/03 6:0 a.m.20 views

CVE-2018-4134

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "Safari" component. It allows remote attackers to spoof the user interface via a crafted web site...

7.2AI score0.01611EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/04/03 6:0 a.m.19 views

CVE-2018-4149

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "SafariViewController" component. It allows remote attackers to spoof the user interface via a crafted web site that leverages input into a partially loaded page...

7.2AI score0.01611EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2018/04/03 6:0 a.m.36 views

CVE-2017-7153

An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "WebKit"...

6.1CVSS6.5AI score0.01911EPSS
Exploits1
CNVD
CNVD
added 2018/04/03 12:0 a.m.2 views

Cisco IOS XE Software Input Validation Vulnerability

Cisco IOS XE Software is an operating system developed by Cisco for its network devices. An input validation vulnerability exists in the Web UI of Cisco IOS XE Software, which arises from the program's failure to adequately perform input validation on HTTP requests. A remote attacker could exploi...

4.9CVSS7.1AI score0.01029EPSS
Exploits0References1
CNVD
CNVD
added 2018/04/03 12:0 a.m.3 views

IBM Business Process Manager Cross-Site Scripting Vulnerability (CNVD-2018-07654)

IBM Business Process Manager BPM is a comprehensive set of business process management platform from IBM in the United States. The platform provides a range of tools related to process modeling, assembly, monitoring and deployment for business. A cross-site scripting vulnerability exists in IBM B...

5.4CVSS6.4AI score0.01077EPSS
Exploits0References1
OSV
OSV
added 2018/03/30 4:29 p.m.3 views

CVE-2018-1384

IBM Business Process Manager 8.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 138135...

5.4CVSS5.4AI score0.01077EPSS
Exploits0References4
OSV
OSV
added 2018/03/30 4:29 p.m.3 views

CVE-2017-1767

IBM Business Process Manager 8.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 136152...

5.4CVSS5.4AI score0.01077EPSS
Exploits0References4
Rows per page
Query Builder