|
246651
|
7.5 |
HIGH
Network
|
gemalto
|
sentinel_license_manager
|
A vulnerability in the lservnt.exe component of Sentinel License Manager version 8.5.3.35 (fixed in 8.5.3.2403) causes UDP amplification.
|
CWE-405
Asymmetric Resource Consumption (Amplification)
|
CVE-2018-15492
|
2024-11-21 12:50 |
2018-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246652
|
7.5 |
HIGH
Network
|
zemana
|
antilogger
|
A vulnerability in the permission and encryption implementation of Zemana Anti-Logger 1.9.3.527 and prior (fixed in 1.9.3.602) allows an attacker to take control of the whitelisting feature (MyRules2…
|
CWE-798
CWE-732
Use of Hard-coded Credentials
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-15491
|
2024-11-21 12:50 |
2018-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246653
|
9.8 |
CRITICAL
Network
|
google
|
android
|
Certain LG devices based on Android 6.0 through 8.1 have incorrect access control for MLT application intents. The LG ID is LVE-SMP-180006.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-15482
|
2024-11-21 12:50 |
2018-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246654
|
9.8 |
CRITICAL
Network
|
google
|
android
|
Certain LG devices based on Android 6.0 through 8.1 have incorrect access control in the GNSS application. The LG ID is LVE-SMP-180004.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-14982
|
2024-11-21 12:50 |
2018-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246655
|
9.8 |
CRITICAL
Network
|
google
|
android
|
Certain LG devices based on Android 6.0 through 8.1 have incorrect access control for SystemUI application intents. The LG ID is LVE-SMP-180005.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-14981
|
2024-11-21 12:50 |
2018-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246656
|
5.3 |
MEDIUM
Network
|
openbsd
debian
redhat
canonical
netapp
oracle
siemens
|
openssh
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ubuntu_linux
cn1610_firmware
cloud_backup
data_ontap_edge
ontap_select_de…
|
OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, re…
|
CWE-362
Race Condition
|
CVE-2018-15473
|
2024-11-21 12:50 |
2018-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246657
|
7.8 |
HIGH
Local
|
xen
linux
canonical
|
xen
linux_kernel
ubuntu_linux
|
An issue was discovered in xenvif_set_hash_mapping in drivers/net/xen-netback/hash.c in the Linux kernel through 4.18.1, as used in Xen through 4.11.x and other products. The Linux netback driver all…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-15471
|
2024-11-21 12:50 |
2018-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246658
|
6.5 |
MEDIUM
Local
|
xen
debian
|
xen
debian_linux
|
An issue was discovered in Xen through 4.11.x. ARM never properly implemented grant table v2, either in the hypervisor or in Linux. Unfortunately, an ARM guest can still request v2 grant tables; they…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-15469
|
2024-11-21 12:50 |
2018-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246659
|
6.5 |
MEDIUM
Local
|
xen
|
xen
|
An issue was discovered in Xen through 4.11.x. The logic in oxenstored for handling writes depended on the order of evaluation of expressions making up a tuple. As indicated in section 7.7.3 "Operati…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-15470
|
2024-11-21 12:50 |
2018-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246660
|
6.0 |
MEDIUM
Local
|
xen
|
xen
|
An issue was discovered in Xen through 4.11.x. The DEBUGCTL MSR contains several debugging features, some of which virtualise cleanly, but some do not. In particular, Branch Trace Store is not virtua…
|
CWE-863
Incorrect Authorization
|
CVE-2018-15468
|
2024-11-21 12:50 |
2018-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
