» 2018 » 4월

CVE-2015-9207

Posted on 2018년 4월 18일2018년 4월 19일 by admin

CVE-2015-9207

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 617, SD 650/52, SD 800, SD 808, and SD 810, lack of input validation in playready_getadditional_responsedata could lead to a buffer overread.

Source: CVE-2015-9207

CVE-2015-9217

Posted on 2018년 4월 18일2018년 4월 19일 by admin

CVE-2015-9217

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 835, SD 845, SDM630, SDM636, SDM660, and Snapdragon_High_Med_2016, certain malformed HVEC clips could cause an assertion to fail.

Source: CVE-2015-9217

CVE-2015-9216

Posted on 2018년 4월 18일2018년 4월 19일 by admin

CVE-2015-9216

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9625, MDM9635M, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 808, and SD 810, improper handling of simultaneous interrupt in USB module during USB RESET and EP COMPLETE.

Source: CVE-2015-9216

CVE-2015-9215

Posted on 2018년 4월 18일2018년 4월 19일 by admin

CVE-2015-9215

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9615, MDM9625, MDM9635M, and SD 810, improper input validation can cause a null pointer dereference in USB bootloader find_ep() function.

Source: CVE-2015-9215

CVE-2015-9130 (msm8909w_firmware, sd_205_firmware, sd_210_firmware, sd_212_firmware, sd_400_firmware, sd_410_firmware, sd_412_firmware, sd_415_firmware, sd_615_firmware, sd_616_firmware, sd_617_firmware, sd_650_firmware, sd_652_firmware, sd_808_firmware, sd_810_firmware)

Posted on 2018년 4월 18일2018년 5월 8일 by admin

CVE-2015-9130 (msm8909w_firmware, sd_205_firmware, sd_210_firmware, sd_212_firmware, sd_400_firmware, sd_410_firmware, sd_412_firmware, sd_415_firmware, sd_615_firmware, sd_616_firmware, sd_617_firmware, sd_650_firmware, sd_652_firmware, sd_808_firmware, sd_810_firmware)

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 617, SD 650/52, SD 808, and SD 810, in a PlayReady function, a NULL pointer dereference can occur.

Source: CVE-2015-9130 (msm8909w_firmware, sd_205_firmware, sd_210_firmware, sd_212_firmware, sd_400_firmware, sd_410_firmware, sd_412_firmware, sd_415_firmware, sd_615_firmware, sd_616_firmware, sd_617_firmware, sd_650_firmware, sd_652_firmware, sd_808_firmware, sd_810_firmware)

CVE-2018-5337

Posted on 2018년 4월 18일2018년 4월 18일 by admin

CVE-2018-5337

An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: directory traversal in the SCRIPT_NAME field when modifying existing scripts.

Source: CVE-2018-5337

CVE-2018-5342

Posted on 2018년 4월 18일2018년 4월 18일 by admin

CVE-2018-5342

An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: network services (Desktop Central and PostgreSQL) running with a superuser account.

Source: CVE-2018-5342

CVE-2018-8092

Posted on 2018년 4월 18일2018년 4월 18일 by admin

CVE-2018-8092

Mautic before 2.13.0 allows CSV injection.

Source: CVE-2018-8092

CVE-2018-5339

Posted on 2018년 4월 18일2018년 4월 18일 by admin

CVE-2018-5339

An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: insufficient enforcement of database query type restrictions.

Source: CVE-2018-5339

CVE-2018-5340

Posted on 2018년 4월 18일2018년 4월 18일 by admin

CVE-2018-5340

An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: database access using a superuser account (specifically, an account with permission to write to the filesystem via SQL queries).

Source: CVE-2018-5340