|
248211
|
7.8 |
HIGH
Local
|
jenkins
|
aws_codebuild
|
Jenkins project Jenkins AWS CodeBuild Plugin version 0.26 and earlier contains a Insufficiently Protected Credentials vulnerability in AWSClientFactory.java, CodeBuilder.java that can result in Crede…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2018-1000404
|
2024-11-21 12:39 |
2018-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248212
|
7.8 |
HIGH
Local
|
jenkins
|
aws_codedeploy
|
Jenkins project Jenkins AWS CodeDeploy Plugin version 1.19 and earlier contains a Insufficiently Protected Credentials vulnerability in AWSCodeDeployPublisher.java that can result in Credentials Disc…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2018-1000403
|
2024-11-21 12:39 |
2018-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248213
|
4.3 |
MEDIUM
Network
|
jenkins
|
aws_codedeploy
|
Jenkins project Jenkins AWS CodeDeploy Plugin version 1.19 and earlier contains a File and Directory Information Exposure vulnerability in AWSCodeDeployPublisher.java that can result in Disclosure of…
|
CWE-200
Information Exposure
|
CVE-2018-1000402
|
2024-11-21 12:39 |
2018-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248214
|
7.8 |
HIGH
Local
|
jenkins
|
aws_codepipeline
|
Jenkins project Jenkins AWS CodePipeline Plugin version 0.36 and earlier contains a Insufficiently Protected Credentials vulnerability in AWSCodePipelineSCM.java that can result in Credentials Disclo…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2018-1000401
|
2024-11-21 12:39 |
2018-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248215
|
5.5 |
MEDIUM
Local
|
denx
|
u-boot
|
U-Boot contains a CWE-20: Improper Input Validation vulnerability in Verified boot signature validation that can result in Bypass verified boot. This attack appear to be exploitable via Specially cra…
|
CWE-20
Improper Input Validation
|
CVE-2018-1000205
|
2024-11-21 12:39 |
2018-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248216
|
5.3 |
MEDIUM
Network
|
linux
debian
canonical
|
linux_kernel
debian_linux
ubuntu_linux
|
Linux Kernel version 3.18 to 4.16 incorrectly handles an SG_IO ioctl on /dev/sg0 with dxfer_direction=SG_DXFER_FROM_DEV and an empty 6-byte cmdp. This may lead to copying up to 1000 kernel heap pages…
|
NVD-CWE-noinfo
|
CVE-2018-1000204
|
2024-11-21 12:39 |
2018-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248217
|
7.8 |
HIGH
Local
|
ruby-ffi_project
|
ruby-ffi
|
ruby-ffi version 1.9.23 and earlier has a DLL loading issue which can be hijacked on Windows OS, when a Symbol is used as DLL name instead of a String This vulnerability appears to have been fixed in…
|
CWE-426
Untrusted Search Path
|
CVE-2018-1000201
|
2024-11-21 12:39 |
2018-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248218
|
7.0 |
HIGH
Local
|
microsoft
|
windows_server_2016
windows_10
|
An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions, aka "Windows Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windo…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-0982
|
2024-11-21 12:39 |
2018-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248219
|
7.5 |
HIGH
Network
|
microsoft
|
internet_explorer
|
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This affects Internet Explorer 9, I…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-0978
|
2024-11-21 12:39 |
2018-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248220
|
4.3 |
MEDIUM
Network
|
microsoft
|
edge
|
An information disclosure vulnerability exists when Edge improperly marks files, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE…
|
CWE-200
Information Exposure
|
CVE-2018-0871
|
2024-11-21 12:39 |
2018-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
