|
1211
|
7.5
5.0
|
HIGH
Network
|
Hashed codes of JavaScript objects are shared between pages. This allows for pointer leaks because an object's address can be discovered through hash codes, and also allows for data leakage of an obj…
|
CWE-200
Information Exposure
|
CVE-2017-5378
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 12:27
2018-06-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1212
|
7.5
5.0
|
HIGH
Network
|
External resources that should be blocked when loaded by SVG images can bypass security restrictions through the use of "data:" URLs. This could allow for cross-domain data leakage. This vulnerabilit…
|
CWE-254
7PK - Security Features
|
CVE-2016-9900
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 12:01
2018-06-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1213
|
9.8
7.5
|
CRITICAL
Network
|
Memory safety bugs were reported in Thunderbird 45.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbit…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9893
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 12:01
2018-06-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1214
|
7.5
5.0
|
HIGH
Network
|
A use-after-free vulnerability in SVG Animation has been discovered. An exploit built on this vulnerability has been discovered in the wild targeting Firefox and Tor Browser users on Windows. This vu…
|
CWE-416
Use After Free
|
CVE-2016-9079
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 12:00
2018-06-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1215
|
7.8
6.8
|
HIGH
Local
|
In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, remote code execution can occur. With a crafted .gitmodules file, a malicious project…
|
CWE-22
Path Traversal
|
CVE-2018-11235
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 12:42
2018-05-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1216
|
5.5
4.9
|
MEDIUM
Local
|
The Linux Kernel version 3.18 contains a dangerous feature vulnerability in modify_user_hw_breakpoint() that can result in crash and possibly memory corruption. This attack appear to be exploitable v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-1000199
|
cpe:2.3:o:redhat:enterprise_linux:7.5:* cpe:2.3:o:redhat:enterprise_linux:7.4:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 12:39
2018-05-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1217
|
9.8
7.5
|
CRITICAL
Network
|
procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.* leading to truncation/integer overflow issues. This flaw is related to CVE-2018-1124.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-1126
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 12:59
2018-05-23
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1218
|
7.8
4.6
|
HIGH
Local
|
procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. This allows a privilege escalation for a local attacker who can creat…
|
CWE-787 CWE-190
Out-of-bounds Write Integer Overflow or Wraparound
|
CVE-2018-1124
|
cpe:2.3:o:redhat:enterprise_linux:7.5:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 12:59
2018-05-23
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1219
|
7.5
7.9
|
HIGH
Adjacent
|
DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. A malicious …
|
-
|
CVE-2018-1111
|
cpe:2.3:o:redhat:enterprise_linux:7.5:* cpe:2.3:o:redhat:enterprise_linux:7.4:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 12:59
2018-05-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1220
|
7.8
4.6
|
HIGH
Local
|
kernel KVM before versions kernel 4.16, kernel 4.16-rc7, kernel 4.17-rc1, kernel 4.17-rc2 and kernel 4.17-rc3 is vulnerable to a flaw in the way the Linux kernel's KVM hypervisor handled exceptions d…
|
NVD-CWE-noinfo
|
CVE-2018-1087
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 12:59
2018-05-16
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|