Starwind Virtual San Security Vulnerabilities and Issues — Starwind Virtual San CVE List

Lucene search

StarwindsoftwareStarwind Virtual San

5 matches found

CVE•added 2018/10/23 2:29 a.m.•144 views

CVE-2018-18584

In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write.

6.5CVSS6.6AI score0.02653EPSS

CVE•added 2018/10/23 2:29 a.m.•131 views

CVE-2018-18585

chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts a filename that has '\0' as its first or second character (such as the "/\0" name).

4.3CVSS5.3AI score0.00389EPSS

CVE•added 2018/10/10 9:29 p.m.•87 views

CVE-2018-16738

tinc 1.0.30 through 1.0.34 has a broken authentication protocol, although there is a partial mitigation. This is fixed in 1.1.

4.3CVSS4.5AI score0.0038EPSS

CVE•added 2018/10/10 9:29 p.m.•77 views

CVE-2018-16758

Missing message authentication in the meta-protocol in Tinc VPN version 1.0.34 and earlier allows a man-in-the-middle attack to disable the encryption of VPN packets.

5.9CVSS5.5AI score0.00291EPSS

CVE•added 2018/10/10 9:29 p.m.•73 views

CVE-2018-16737

tinc before 1.0.30 has a broken authentication protocol, without even a partial mitigation.

5.3CVSS5.2AI score0.00442EPSS