|
246611
|
6.1 |
MEDIUM
Network
|
ibm
|
security_identity_governance_and_intelligence
|
IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in th…
|
CWE-79
Cross-site Scripting
|
CVE-2018-1947
|
2024-11-21 13:00 |
2019-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246612
|
7.5 |
HIGH
Network
|
ibm
|
security_identity_governance_and_intelligence
|
IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance supports interaction between multiple actors and allows those actors to negotiate which algorithm should be use…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2018-1946
|
2024-11-21 13:00 |
2019-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246613
|
6.1 |
MEDIUM
Network
|
ibm
|
security_identity_governance_and_intelligence
|
IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a ma…
|
CWE-20
Improper Input Validation
|
CVE-2018-1945
|
2024-11-21 13:00 |
2019-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246614
|
9.8 |
CRITICAL
Network
|
ibm
|
security_identity_governance_and_intelligence
|
IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound aut…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2018-1944
|
2024-11-21 13:00 |
2019-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246615
|
9.8 |
CRITICAL
Network
|
fastweb
|
fastgate_firmware
|
The web interface on FASTGate Fastweb devices with firmware through 0.00.47_FW_200_Askey 2017-05-17 (software through 1.0.1b) exposed a CGI binary that is vulnerable to a command injection vulnerabil…
|
CWE-78
OS Command
|
CVE-2018-20122
|
2024-11-21 13:00 |
2019-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246616
|
7.8 |
HIGH
Local
|
liquidware
|
flexapp profileunity
|
An issue was discovered in Liquidware ProfileUnity before 6.8.0 with Liquidware FlexApp before 6.8.0. A local user could obtain administrator rights, as demonstrated by use of PowerShell.
|
NVD-CWE-noinfo
|
CVE-2018-20146
|
2024-11-21 13:00 |
2019-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246617
|
7.5 |
HIGH
Network
|
libexif_project
|
libexif
|
An error when processing the EXIF_IFD_INTEROPERABILITY and EXIF_IFD_EXIF tags within libexif version 0.6.21 can be exploited to exhaust available CPU resources.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-20030
|
2024-11-21 13:00 |
2019-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246618
|
7.5 |
HIGH
Network
|
codesys
|
control_for_beaglebone_sl control_for_empc-a\/imx6_sl control_for_iot2000_sl control_for_linux_sl control_for_pfc100_sl control_for_pfc200_sl control_for_raspberry_pi_sl control_…
|
Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0.
|
NVD-CWE-noinfo
|
CVE-2018-20026
|
2024-11-21 13:00 |
2019-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246619
|
7.5 |
HIGH
Network
|
codesys
|
control_for_beaglebone_sl control_for_empc-a\/imx6_sl control_for_iot2000_sl control_for_linux_sl control_for_pfc100_sl control_for_pfc200_sl control_for_raspberry_pi_sl control_…
|
Use of Insufficiently Random Values exists in CODESYS V3 products versions prior V3.5.14.0.
|
CWE-330
Use of Insufficiently Random Values
|
CVE-2018-20025
|
2024-11-21 13:00 |
2019-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246620
|
5.3 |
MEDIUM
Network
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could provide weaker than expected security, caused by the improper TLS configuration. A remote attacker could exploit this vulnerability to ob…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2018-1996
|
2024-11-21 13:00 |
2019-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|