|
246281
|
6.1 |
MEDIUM
Local
|
f5
debian
canonical
opensuse
apple
|
nginx
debian_linux
ubuntu_linux
leap
xcode
|
nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might r…
|
-
|
CVE-2018-16845
|
2024-11-21 12:53 |
2018-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246282
|
7.5 |
HIGH
Network
|
f5
debian
canonical
apple
|
nginx
debian_linux
ubuntu_linux
xcode
|
nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not …
|
-
|
CVE-2018-16844
|
2024-11-21 12:53 |
2018-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246283
|
7.5 |
HIGH
Network
|
f5
debian
canonical
opensuse
apple
|
nginx
debian_linux
ubuntu_linux
leap
xcode
|
nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_mod…
|
-
|
CVE-2018-16843
|
2024-11-21 12:53 |
2018-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246284
|
8.8 |
HIGH
Adjacent
|
ti
|
ble-stack
|
Texas Instruments BLE-STACK v2.2.1 for SimpleLink CC2640 and CC2650 devices allows remote attackers to execute arbitrary code via a malformed packet that triggers a buffer overflow.
|
CWE-787
Out-of-bounds Write
|
CVE-2018-16986
|
2024-11-21 12:53 |
2018-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246285
|
7.8 |
HIGH
Local
|
qemu
canonical
|
qemu
ubuntu_linux
|
An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvme_cmb_ops routines in nvme device. A guest user/process could use this flaw to cras…
|
CWE-125
CWE-787
Out-of-bounds Read
Out-of-bounds Write
|
CVE-2018-16847
|
2024-11-21 12:53 |
2018-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246286
|
7.5 |
HIGH
Network
|
redhat
|
openstack-mistral
|
A flaw was found in openstack-mistral. By manipulating the SSH private key filename, the std.ssh action can be used to disclose the presence of arbitrary files within the filesystem of the executor r…
|
CWE-200
Information Exposure
|
CVE-2018-16849
|
2024-11-21 12:53 |
2018-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246287
|
9.1 |
CRITICAL
Network
|
haxx
canonical
debian
|
curl
ubuntu_linux
debian_linux
|
Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-16842
|
2024-11-21 12:53 |
2018-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246288
|
9.8 |
CRITICAL
Network
|
haxx
canonical
|
curl
ubuntu_linux
|
A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the `Curl_close()` fun…
|
CWE-416
Use After Free
|
CVE-2018-16840
|
2024-11-21 12:53 |
2018-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246289
|
9.8 |
CRITICAL
Network
|
haxx
debian
canonical
|
curl
debian_linux
ubuntu_linux
|
Curl versions 7.33.0 through 7.61.1 are vulnerable to a buffer overrun in the SASL authentication code that may lead to denial of service.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-16839
|
2024-11-21 12:53 |
2018-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246290
|
7.8 |
HIGH
Local
|
redhat
debian
suse
|
ansible_engine
ansible_tower
debian_linux
package_hub
|
Ansible "User" module leaks any data which is passed on as a parameter to ssh-keygen. This could lean in undesirable situations such as passphrases credentials passed as a parameter for the ssh-keyge…
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2018-16837
|
2024-11-21 12:53 |
2018-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
