|
253461
|
6.1 |
MEDIUM
Network
|
misp
|
misp
|
An issue was discovered in MISP 2.4.91. A vulnerability in app/View/Elements/eventattribute.ctp allows reflected XSS if a user clicks on a malicious link for an event view and then clicks on the dele…
|
CWE-79
Cross-site Scripting
|
CVE-2018-11562
|
2024-11-21 12:43 |
2018-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253462
|
6.5 |
MEDIUM
Network
|
taglib debian
|
taglib debian_linux
|
The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted audio file.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-11439
|
2024-11-21 12:43 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253463
|
8.8 |
HIGH
Network
|
libmobi_project
|
libmobi
|
The mobi_decompress_lz77 function in compression.c in Libmobi 0.3 allows remote attackers to cause remote code execution (heap-based buffer overflow) via a crafted mobi file.
|
CWE-787
Out-of-bounds Write
|
CVE-2018-11438
|
2024-11-21 12:43 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253464
|
6.5 |
MEDIUM
Network
|
libmobi_project
|
libmobi
|
The mobi_reconstruct_parts function in parse_rawml.c in Libmobi 0.3 allows remote attackers to cause information disclosure (read access violation) via a crafted mobi file.
|
CWE-200
Information Exposure
|
CVE-2018-11437
|
2024-11-21 12:43 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253465
|
6.5 |
MEDIUM
Network
|
libmobi_project
|
libmobi
|
The buffer_addraw function in buffer.c in Libmobi 0.3 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted mobi file.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-11436
|
2024-11-21 12:43 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253466
|
8.1 |
HIGH
Network
|
hcltech
|
legacy_ivr_firmware
|
A vulnerability allows a phreaking attack on HCL legacy IVR systems that do not use VoIP. These IVR systems rely on various frequencies of audio signals; based on the frequency, certain commands and …
|
CWE-20
Improper Input Validation
|
CVE-2018-11518
|
2024-11-21 12:43 |
2018-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253467
|
6.5 |
MEDIUM
Network
|
libmobi_project
|
libmobi
|
The mobi_decompress_huffman_internal function in compression.c in Libmobi 0.3 allows remote attackers to cause information disclosure (read access violation) via a crafted mobi file.
|
CWE-200
Information Exposure
|
CVE-2018-11435
|
2024-11-21 12:43 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253468
|
6.5 |
MEDIUM
Network
|
libmobi_project
|
libmobi
|
The buffer_fill64 function in compression.c in Libmobi 0.3 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted mobi file.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-11434
|
2024-11-21 12:43 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253469
|
6.5 |
MEDIUM
Network
|
libmobi_project
|
libmobi
|
The mobi_get_kf8boundary_seqnumber function in util.c in Libmobi 0.3 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted mobi file.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-11433
|
2024-11-21 12:43 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253470
|
6.5 |
MEDIUM
Network
|
libmobi_project
|
libmobi
|
The mobi_parse_mobiheader function in read.c in Libmobi 0.3 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted mobi file.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-11432
|
2024-11-21 12:43 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|