|
246111
|
6.5 |
MEDIUM
Network
|
rubyonrails
|
rails
|
A bypass vulnerability in Active Storage >= 5.2.0 for Google Cloud Storage and Disk services allow an attacker to modify the `content-disposition` and `content-type` parameters which can be used in w…
|
NVD-CWE-noinfo
|
CVE-2018-16477
|
2024-11-21 12:52 |
2018-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246112
|
7.5 |
HIGH
Network
|
rubyonrails
redhat
|
rails
cloudforms
|
A Broken Access Control vulnerability in Active Job versions >= 4.2.0 allows an attacker to craft user input which can cause Active Job to deserialize it using GlobalId and give them access to inform…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2018-16476
|
2024-11-21 12:52 |
2018-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246113
|
6.5 |
MEDIUM
Network
|
lenovo
|
xclarity_integrator
|
LXCI for VMware versions prior to 5.5 and LXCI for Microsoft System Center versions prior to 3.5, allow an authenticated user to write to any system file due to insufficient sanitization during the u…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2018-16097
|
2024-11-21 12:52 |
2018-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246114
|
6.5 |
MEDIUM
Network
|
lenovo
|
xclarity_integrator
|
In versions prior to 5.5, LXCI for VMware allows an authenticated user to write to any system file due to insufficient sanitization during the upload of a backup file.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2018-16093
|
2024-11-21 12:52 |
2018-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246115
|
8.8 |
HIGH
Network
|
mi
|
miwifi_os
|
System command injection in request_mitv in Xiaomi Mi Router 3 version 2.22.15 allows attackers to execute arbitrary system commands via the "payload" URL parameter.
|
CWE-78
OS Command
|
CVE-2018-16130
|
2024-11-21 12:52 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246116
|
6.1 |
MEDIUM
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, the SMM web interface for changing Enclosure VPD fails to sufficiently sanitize all input for HTML tags, possibly opening a path for cross-si…
|
CWE-79
Cross-site Scripting
|
CVE-2018-16096
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246117
|
5.9 |
MEDIUM
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, the SMM records hashed passwords to a debug log when user authentication fails.
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2018-16095
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246118
|
8.1 |
HIGH
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, an internal SMM function that retrieves configuration settings is prone to a buffer overflow.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-16094
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246119
|
8.1 |
HIGH
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, the FFDC feature includes the collection of SMM system files containing sensitive information; notably, the SMM user account credentials and …
|
NVD-CWE-noinfo
|
CVE-2018-16092
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246120
|
8.1 |
HIGH
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, the SMM certificate creation and parsing logic is vulnerable to several buffer overflows.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-16091
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
