|
247941
|
4.4 |
MEDIUM
Local
|
intel
|
optane_ssd_dc_p4800x_firmware
|
Firmware update routine in bootloader for Intel(R) Optane(TM) SSD DC P4800X before version E2010435 may allow a privileged user to potentially enable a denial of service via local access.
|
CWE-20
Improper Input Validation
|
CVE-2018-12167
|
2024-11-21 12:44 |
2019-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247942
|
4.4 |
MEDIUM
Local
|
intel
|
optane_ssd_dc_p4800x_firmware
|
Insufficient write protection in firmware for Intel(R) Optane(TM) SSD DC P4800X before version E2010435 may allow a privileged user to potentially enable a denial of service via local access.
|
CWE-20
Improper Input Validation
|
CVE-2018-12166
|
2024-11-21 12:44 |
2019-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247943
|
6.5 |
MEDIUM
Network
|
apache
|
thrift
|
The Apache Thrift Node.js static web server in versions 0.9.2 through 0.11.0 have been determined to contain a security vulnerability in which a remote user has the ability to access files outside th…
|
CWE-538
File and Directory Information Exposure
|
CVE-2018-11798
|
2024-11-21 12:44 |
2019-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247944
|
9.8 |
CRITICAL
Network
|
apache
|
karaf
|
Apache Karaf provides a features deployer, which allows users to "hot deploy" a features XML by dropping the file directly in the deploy folder. The features XML is parsed by XMLInputFactory class. A…
|
CWE-611
XXE
|
CVE-2018-11788
|
2024-11-21 12:44 |
2019-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247945
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Un-trusted pointer de-reference issue by accessing a variable which is already freed.
|
CWE-416
Use After Free
|
CVE-2018-11988
|
2024-11-21 12:44 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247946
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, if there is an unlikely memory alloc failure for the secure pool in boot, it can result in w…
|
CWE-415
Double Free
|
CVE-2018-11987
|
2024-11-21 12:44 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247947
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Possible buffer overflow in TX and RX FIFOs of microcontroller in camera subsystem used to e…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-11986
|
2024-11-21 12:44 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247948
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, When allocating heap using user supplied size, Possible heap overflow vulnerability due to i…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-11985
|
2024-11-21 12:44 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247949
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, A use after free condition and an out-of-bounds access can occur in the DIAG driver.
|
CWE-416
Use After Free
|
CVE-2018-11984
|
2024-11-21 12:44 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247950
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Error in kernel observed while accessing freed mask pointers after reallocating memory for m…
|
CWE-416
Use After Free
|
CVE-2018-11983
|
2024-11-21 12:44 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
