|
246301
|
6.1 |
MEDIUM
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, the SMM web interface for changing Enclosure VPD fails to sufficiently sanitize all input for HTML tags, possibly opening a path for cross-si…
|
CWE-79
Cross-site Scripting
|
CVE-2018-16096
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246302
|
5.9 |
MEDIUM
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, the SMM records hashed passwords to a debug log when user authentication fails.
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2018-16095
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246303
|
8.1 |
HIGH
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, an internal SMM function that retrieves configuration settings is prone to a buffer overflow.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-16094
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246304
|
8.1 |
HIGH
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, the FFDC feature includes the collection of SMM system files containing sensitive information; notably, the SMM user account credentials and …
|
NVD-CWE-noinfo
|
CVE-2018-16092
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246305
|
8.1 |
HIGH
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, the SMM certificate creation and parsing logic is vulnerable to several buffer overflows.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-16091
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246306
|
7.5 |
HIGH
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, the SMM certificate creation and parsing logic is vulnerable to post-authentication command injection.
|
CWE-78
OS Command
|
CVE-2018-16090
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246307
|
7.5 |
HIGH
Network
|
lenovo
|
system_management_module_firmware
|
In System Management Module (SMM) versions prior to 1.06, a field in the header of SMM firmware update images is insufficiently sanitized, allowing post-authentication command injection on the SMM as…
|
CWE-78
OS Command
|
CVE-2018-16089
|
2024-11-21 12:52 |
2018-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246308
|
5.3 |
MEDIUM
Network
|
ismartalarm
|
cubeone_firmware
|
Incorrect access control for the diagnostic files of the iSmartAlarm Cube One through 2.2.4.10 allows an attacker to retrieve them via a specifically crafted TCP request to port 12345 and 22306, and …
|
CWE-200
Information Exposure
|
CVE-2018-16224
|
2024-11-21 12:52 |
2018-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246309
|
9.8 |
CRITICAL
Network
|
qbeecam
|
qbeecam
|
Insecure Cryptographic Storage of credentials in com.vestiacom.qbeecamera_preferences.xml in the QBee Cam application through 1.0.5 for Android allows an attacker to retrieve the username and passwor…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2018-16223
|
2024-11-21 12:52 |
2018-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246310
|
6.8 |
MEDIUM
Physics
|
ismartalarm
|
ismartalarm
|
Cleartext Storage of credentials in the iSmartAlarmData.xml configuration file in the iSmartAlarm application through 2.0.8 for Android allows an attacker to retrieve the username and password.
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2018-16222
|
2024-11-21 12:52 |
2018-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
