|
247111
|
9.8 |
CRITICAL
Network
|
zoom
|
zoom
|
Zoom clients on Windows (before version 4.1.34814.1119), Mac OS (before version 4.1.34801.1116), and Linux (2.4.129780.0915 and below) are vulnerable to unauthorized message processing. A remote unau…
|
CWE-20
Improper Input Validation
|
CVE-2018-15715
|
2024-11-21 12:51 |
2018-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247112
|
7.5 |
HIGH
Network
|
google
|
android
|
Android 1.0 through 9.0 has Insecure Permissions. The Android bug ID is 77286983.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-15835
|
2024-11-21 12:51 |
2018-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247113
|
6.5 |
MEDIUM
Network
|
dell
|
openmanage_network_manager
|
Dell OpenManage Network Manager versions prior to 6.5.0 enabled read/write access to the file system for MySQL users due to insecure default configuration setting for the embedded MySQL database.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-15768
|
2024-11-21 12:51 |
2018-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247114
|
8.8 |
HIGH
Network
|
dell
|
openmanage_network_manager
|
The Dell OpenManage Network Manager virtual appliance versions prior to 6.5.3 contain an improper authorization vulnerability caused by a misconfiguration in the /etc/sudoers file.
|
CWE-863
Incorrect Authorization
|
CVE-2018-15767
|
2024-11-21 12:51 |
2018-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247115
|
8.8 |
HIGH
Network
|
ocsinventory-ng
|
ocsinventory_ng
|
Unrestricted file upload (with remote code execution) in OCS Inventory NG ocsreports allows a privileged user to gain access to the server via crafted HTTP requests.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2018-15537
|
2024-11-21 12:51 |
2018-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247116
|
9.8 |
CRITICAL
Network
|
adobe
redhat
|
flash_player_desktop_runtime
flash_player
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
|
Flash Player versions 31.0.0.148 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2018-15981
|
2024-11-21 12:51 |
2018-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247117
|
7.5 |
HIGH
Network
|
adobe
|
photoshop_cc
|
Adobe Photoshop CC versions 19.1.6 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-15980
|
2024-11-21 12:51 |
2018-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247118
|
7.5 |
HIGH
Network
|
adobe
|
acrobat_dc
acrobat_reader_dc
|
Adobe Acrobat and Reader versions 2019.008.20080 and earlier, 2017.011.30105 and earlier, and 2015.006.30456 and earlier have a ntlm sso hash theft vulnerability. Successful exploitation could lead t…
|
CWE-200
Information Exposure
|
CVE-2018-15979
|
2024-11-21 12:51 |
2018-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247119
|
7.5 |
HIGH
Network
|
adobe
redhat
|
flash_player_desktop_runtime
flash_player
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
|
Flash Player versions 31.0.0.122 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-15978
|
2024-11-21 12:51 |
2018-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247120
|
8.8 |
HIGH
Network
|
pivotal_software
|
cloudfoundry_uaa_release
cloud_foundry_uaa
|
Cloud Foundry UAA release, versions prior to v64.0, and UAA, versions prior to 4.23.0, contains a validation error which allows for privilege escalation. A remote authenticated user may modify the ur…
|
NVD-CWE-noinfo
|
CVE-2018-15761
|
2024-11-21 12:51 |
2018-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
