|
246261
|
7.5 |
HIGH
Network
|
freebsd
|
freebsd
|
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, the NFS server lacks a bounds check in the READDIRPLUS NFS request. Unprivileged remote users with access to the NFS server can cause a res…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-17159
|
2024-11-21 12:53 |
2018-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246262
|
7.5 |
HIGH
Network
|
freebsd
|
freebsd
|
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, an integer overflow error can occur when handling the client address length field in an NFSv4 request. Unprivileged remote users with acces…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-17158
|
2024-11-21 12:53 |
2018-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246263
|
9.8 |
CRITICAL
Network
|
freebsd
|
freebsd
|
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, an integer overflow error when handling opcodes can cause memory corruption by sending a specially crafted NFSv4 request. Unprivileged remo…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-17157
|
2024-11-21 12:53 |
2018-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246264
|
7.8 |
HIGH
Local
|
artifex
redhat
|
ghostscript
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_server_eus
enterprise_linux_server_aus
|
It was found that RHSA-2018:2918 did not fully fix CVE-2018-16509. An attacker could possibly exploit another variant of the flaw and bypass the -dSAFER protection to, for example, execute arbitrary …
|
-
|
CVE-2018-16863
|
2024-11-21 12:53 |
2018-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246265
|
5.7 |
MEDIUM
Physics
|
nettle_project
|
nettle
|
A Bleichenbacher type side-channel based padding oracle attack was found in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run a process on the…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2018-16869
|
2024-11-21 12:53 |
2018-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246266
|
5.6 |
MEDIUM
Physics
|
gnu
|
gnutls
|
A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run process on the same p…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2018-16868
|
2024-11-21 12:53 |
2018-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246267
|
7.5 |
HIGH
Network
|
powerdns
|
recursor
|
An issue has been found in PowerDNS Recursor before version 4.1.8 where a remote attacker sending a DNS query can trigger an out-of-bounds memory read while computing the hash of the query for a pack…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-16855
|
2024-11-21 12:53 |
2018-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246268
|
4.4 |
MEDIUM
Local
|
redhat
|
ansible_engine
|
Execution of Ansible playbooks on Windows platforms with PowerShell ScriptBlock logging and Module logging enabled can allow for 'become' passwords to appear in EventLogs in plaintext. A local user w…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2018-16859
|
2024-11-21 12:53 |
2018-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246269
|
5.9 |
MEDIUM
Network
|
freebsd
|
freebsd
|
In FreeBSD before 11.2-STABLE(r340268) and 11.2-RELEASE-p5, due to incorrectly accounting for padding on 64-bit platforms, a buffer underwrite could occur when constructing an ICMP reply packet when …
|
CWE-787
Out-of-bounds Write
|
CVE-2018-17156
|
2024-11-21 12:53 |
2018-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246270
|
5.9 |
MEDIUM
Network
|
samba
|
samba
|
Samba from version 4.9.0 and before version 4.9.3 that have AD DC configurations watching for bad passwords (to restrict brute forcing of passwords) in a window of more than 3 minutes may not watch f…
|
CWE-358
Improperly Implemented Security Check for Standard
|
CVE-2018-16857
|
2024-11-21 12:53 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
