CVE-2018-6359
- EPSS 2.42%
- Veröffentlicht 27.01.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 04:10:33
The decompileIF function (util/decompile.c) in libming through 0.4.8 is vulnerable to a use-after-free, which may allow attackers to cause a denial of service or unspecified other impact via a crafted SWF file.
CVE-2017-12374
- EPSS 4.98%
- Veröffentlicht 26.01.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 03:09:24
The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of input valid...
CVE-2017-12375
- EPSS 5.56%
- Veröffentlicht 26.01.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 03:09:24
The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of input valid...
CVE-2017-12376
- EPSS 6.64%
- Veröffentlicht 26.01.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 03:09:24
ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or potentially execute arbitrary code on an affected device. The vulnerabili...
- EPSS 11.58%
- Veröffentlicht 26.01.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 03:09:25
ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or potentially execute arbitrary code on an affected device. The vulnerabili...
CVE-2017-12378
- EPSS 2.79%
- Veröffentlicht 26.01.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 03:09:25
ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation...
- EPSS 12.55%
- Veröffentlicht 26.01.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 03:09:25
ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or potentially execute arbitrary code on an affected device. The vulnerabili...
CVE-2017-12380
- EPSS 5.12%
- Veröffentlicht 26.01.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 03:09:25
ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation...
CVE-2017-18076
- EPSS 2.13%
- Veröffentlicht 26.01.2018 19:29:00
- Zuletzt bearbeitet 21.11.2024 03:19:18
In strategy.rb in OmniAuth before 1.3.2, the authenticity_token value is improperly protected because POST (in addition to GET) parameters are stored in the session and become available in the environment of the callback phase.
CVE-2018-5750
- EPSS 0.49%
- Veröffentlicht 26.01.2018 19:29:00
- Zuletzt bearbeitet 21.11.2024 04:09:18
The acpi_smbus_hc_add function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call.