diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2020-03-16 20:10:26 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2020-03-16 20:10:26 +0000 |
| commit | 0bd0dc2d70a4a038492d70ad35d94e415ac9f08d (patch) | |
| tree | 956c44c8646522ca35c46c8958457a580c44ac17 /data/CVE/2018.list | |
| parent | 579a3f654081c8ae024332fa5f10273ab89eb1db (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2018.list')
| -rw-r--r-- | data/CVE/2018.list | 18 |
1 files changed, 10 insertions, 8 deletions
diff --git a/data/CVE/2018.list b/data/CVE/2018.list index 4808869c69..e17aee78b6 100644 --- a/data/CVE/2018.list +++ b/data/CVE/2018.list @@ -1,3 +1,5 @@ +CVE-2018-21037 + RESERVED CVE-2018-21036 RESERVED CVE-2018-21035 (In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB f ...) @@ -5116,8 +5118,8 @@ CVE-2018-19327 (An issue was discovered in JTBC(PHP) 3.0.1.7. aboutus/manage.php NOT-FOR-US: JTBC(PHP) CVE-2018-19326 (Zyxel VMG1312-B10D devices before 5.13(AAXA.8)C0 allow ../ Directory T ...) NOT-FOR-US: Zyxel -CVE-2018-19325 - RESERVED +CVE-2018-19325 (tcpdump 4.9.2 (and probably lower versions) is prone to a heap-based b ...) + TODO: check CVE-2018-19324 (kimsQ Rb 2.3.0 allows XSS via the second input field to the /?r=home&a ...) NOT-FOR-US: kimsQ Rb CVE-2018-19323 (The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, ...) @@ -21037,14 +21039,14 @@ CVE-2018-13065 (** DISPUTED ** ModSecurity 3.0.0 has XSS via an onerror attribut NOT-FOR-US: Bogus claim for ModSecurity, to be revoked CVE-2018-13064 RESERVED -CVE-2018-13063 - RESERVED +CVE-2018-13063 (Easy!Appointments 1.3.0 has a Missing Authorization issue allowing ret ...) + TODO: check CVE-2018-13062 RESERVED CVE-2018-13061 RESERVED -CVE-2018-13060 - RESERVED +CVE-2018-13060 (Easy!Appointments 1.3.0 has a Guessable CAPTCHA issue. ...) + TODO: check CVE-2018-13059 RESERVED CVE-2018-13058 @@ -29173,8 +29175,8 @@ CVE-2018-10126 (LibTIFF 4.0.9 has a NULL pointer dereference in the jpeg_fdct_16 - tiff <unfixed> (unimportant) NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2786 NOTE: Crash in CLI tool, no security impact -CVE-2018-10125 - RESERVED +CVE-2018-10125 (Contao before 4.5.7 has XSS in the system log. ...) + TODO: check CVE-2018-10123 (p910nd on Inteno IOPSYS 2.0 through 4.2.0 allows remote attackers to r ...) NOT-FOR-US: p910nd on Inteno IOPSYS CVE-2018-10122 (QingDao Nature Easy Soft Chanzhi Enterprise Portal System (aka chanzhi ...) |