Alert News 2018 -  2024(3)  2023(11)  2022(19)  2021(21)  2020(40)  2019(27)  2018(32)  2017(54)  2016(100)  2015(118)  2014(139)

Published

Public 

Updated 

VU#

CVSS 

Title

2018-12-20

2018-12-19

2018-12-20

VU#228297

4.3

Microsoft Windows MsiAdvertiseProduct function vulnerable to privilege escalation via race condition

2018-12-20

2018-12-21

2018-12-20

VU#741315

4.7

A Dokan file driver contains a stack-based buffer overflow

2018-12-19

2018-12-19

2018-12-20

VU#573168

6.2

Microsoft Internet Explorer scripting engine JScript memory corruption vulnerability

2018-12-13

2018-12-12

2018-12-13

VU#756913

3.3

Pixars Tractor contains a stored cross-site scripting vulnerability

2018-11-06

2018-11-05

2018-11-07

VU#395981

3.7

Self-Encrypting Drives Have Multiple Vulnerabilities

2018-11-01

2018-11-01

2018-11-07

VU#317277

4.6

Texas Instruments Microcontrollers CC2640 and CC2650 are vulnerable to heap overflow

2018-11-01

2018-10-31

2018-11-05

VU#339704

5.5

Cisco ASA and FTD SIP Inspection denial-of-service vulnerability

2018-10-06

2018-10-06

2018-10-16

VU#176301

0

Auto-Maskin DCU 210E RP 210E and Marine Pro Observer App

2018-09-26

2018-09-18

2018-11-08

VU#581311

5.9

TP-Link EAP Controller lacks RMI authentication and is vulnerable to deserialization attacks

2018-09-05

2018-09-05

2018-10-23

VU#598349

0

Automatic DNS registration and proxy autodiscovery allow spoofing of network services

2018-08-28

2018-08-27

2018-09-13

VU#906424

6.4

Microsoft Windows task scheduler contains a local privilege escalation vulnerability in the ALPC interface

2018-08-21

2018-02-21

2018-10-01

VU#332928

6.8

Ghostscript contains multiple -dSAFER sandbox bypass vulnerabilities

2018-08-15

2018-04-14

2018-09-10

VU#982149

5.6

Intel processors are vulnerable to a speculative execution side-channel attack called L1 Terminal Fault (L1TF)

2018-08-14

2018-08-10

2018-09-14

VU#787952

6.0

Android and iOS apps contain multiple vulnerabilities

2018-08-14

2018-08-14

2018-08-17

VU#857035

7.9

IKEv1 Main Mode vulnerable to brute force attacks

2018-08-14

2018-08-14

2018-10-12

VU#641765

6.6

Linux kernel IP fragment re-assembly vulnerable to denial of service

2018-08-06

2018-07-23

2018-09-14

VU#962459

6.4

TCP implementations vulnerable to Denial of Service

2018-08-03

2013-06-09

2018-08-03

VU#307144

0

mingw-w64 by default produces executables that opt in to ASLR, but are not compatible with ASLR

2018-07-23

2018-07-23

2018-08-17

VU#304725

5.7

Bluetooth implementations may not sufficiently validate elliptic curve parameters during Diffie-Hellman key exchange

2018-05-23

2018-05-22

2018-06-13

VU#338343

3.9

strongSwan VPN charon server vulnerable to buffer underflow

2018-05-21

2018-05-21

2018-06-19

VU#180049

3.4

CPU hardware utilizing speculative execution may be vulnerable to cache side-channel attacks

2018-05-14

2018-05-14

2018-05-15

VU#122919

0

OpenPGP and S/MIME mail client vulnerabilities

2018-05-08

2018-05-08

2018-06-06

VU#631579

5.3

Hardware debug exception documentation may result in unexpected behavior

2018-05-03

2018-05-03

2018-05-03

VU#283803

2.7

Integrated GPUs may allow side-channel and rowhammer attacks using WebGL ("Glitch")

2018-04-10

2018-04-10

2018-04-10

VU#974272

4.1

Microsoft Outlook retrieves remote OLE content without prompting

2018-03-29

2018-03-27

2018-04-24

VU#277400

5.9

Windows 7 and Windows Server 2008 R2 x64 fail to protect kernel memory when the Microsoft update for meltdown is installed

2018-03-27

2018-02-07

2018-03-27

VU#184077

8.7

Navarino Infinity web interface is affected by multiple vulnerabilities.

2018-03-19

2012-03-20

2018-04-04

VU#306792

1.7

Bouncy Castle BKS-V1 keystore files vulnerable to trivial hash collisions

2018-02-27

2018-02-27

2018-06-05

VU#475445

4.9

Multiple SAML libraries may allow authentication bypass via incorrect XML canonicalization and DOM traversal

2018-02-15

2018-02-15

2018-02-19

VU#940439

7.3

Quagga bgpd is affected by multiple vulnerabilities

2018-02-01

2018-02-01

2018-02-01

VU#319904

3

Pulse Secure Linux client GUI fails to validate SSL certificates

2018-01-04

2018-01-03

2018-07-03

VU#584653

5.1

CPU hardware vulnerable to side-channel attacks