|
245971
|
7.8 |
HIGH
Local
|
opensuse
|
yast2-samba-provision
|
In yast2-samba-provision up to and including version 1.0.1 the password for samba shares was provided on the command line to tools used by yast2-samba-provision, allowing local attackers to read them…
|
CWE-200
Information Exposure
|
CVE-2018-17956
|
2024-11-21 12:55 |
2019-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245972
|
5.5 |
MEDIUM
Local
|
opensuse
|
yast2-multipath
|
In yast2-multipath before version 4.1.1 a static temporary filename allows local attackers to overwrite files on systems without symlink protection
|
CWE-59
Link Following
|
CVE-2018-17955
|
2024-11-21 12:55 |
2019-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245973
|
7.5 |
HIGH
Network
|
cryptobots
|
battletoken
|
An Integer overflow vulnerability exists in the batchTransfer function of a smart contract implementation for CryptoBotsBattle (CBTB), an Ethereum token. This vulnerability could be used by an attack…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-17882
|
2024-11-21 12:55 |
2019-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245974
|
7.8 |
HIGH
Local
|
capmon
|
access_manager
|
An issue was discovered in CapMon Access Manager 5.4.1.1005. A regular user can obtain local administrator privileges if they run any whitelisted application through the Custom App Launcher.
|
CWE-287
Improper Authentication
|
CVE-2018-18256
|
2024-11-21 12:55 |
2019-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245975
|
7.8 |
HIGH
Local
|
capmon
|
access_manager
|
An issue was discovered in CapMon Access Manager 5.4.1.1005. The client applications of AccessManagerCoreService.exe communicate with this server through named pipes. A user can initiate communicatio…
|
CWE-287
Improper Authentication
|
CVE-2018-18255
|
2024-11-21 12:55 |
2019-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245976
|
7.8 |
HIGH
Local
|
capmon
|
access_manager
|
An issue was discovered in CapMon Access Manager 5.4.1.1005. An unprivileged user can read the cal_whitelist table in the Custom App Launcher (CAL) database, and potentially gain privileges by placin…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-18254
|
2024-11-21 12:55 |
2019-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245977
|
7.0 |
HIGH
Local
|
capmon
|
access_manager
|
An issue was discovered in CapMon Access Manager 5.4.1.1005. CALRunElevated.exe attempts to enforce access control by adding an unprivileged user to the local Administrators group for a very short ti…
|
CWE-362
Race Condition
|
CVE-2018-18253
|
2024-11-21 12:55 |
2019-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245978
|
7.8 |
HIGH
Local
|
capmon
|
access_manager
|
An issue was discovered in CapMon Access Manager 5.4.1.1005. CALRunElevated.exe provides "NT AUTHORITY\SYSTEM" access to unprivileged users via the --system option.
|
CWE-269
Improper Privilege Management
|
CVE-2018-18252
|
2024-11-21 12:55 |
2019-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245979
|
6.5 |
MEDIUM
Local
|
intel
|
graphics_driver
|
Use after free in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x…
|
CWE-416
Use After Free
|
CVE-2018-18091
|
2024-11-21 12:55 |
2019-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245980
|
5.5 |
MEDIUM
Local
|
intel
|
graphics_driver
|
Out of bounds read in igdkm64.sys in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.50…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-18090
|
2024-11-21 12:55 |
2019-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
