» 2019 » 5월

CVE-2018-13991

Posted on 2019년 5월 8일2019년 5월 8일 by admin

CVE-2018-13991

The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 leaks private information in firmware images.

Source: CVE-2018-13991

CVE-2018-13994

Posted on 2019년 5월 8일2019년 5월 8일 by admin

CVE-2018-13994

The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 is vulnerable to a denial-of-service attack by making more than 120 connections.

Source: CVE-2018-13994

CVE-2018-13993

Posted on 2019년 5월 8일2019년 5월 8일 by admin

CVE-2018-13993

The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 is prone to CSRF.

Source: CVE-2018-13993

CVE-2019-9708

Posted on 2019년 5월 8일2019년 5월 8일 by admin

CVE-2019-9708

An issue was discovered in Mahara 17.10 before 17.10.8, 18.04 before 18.04.4, and 18.10 before 18.10.1. A site administrator can suspend the system user (root), causing all users to be locked out from the system.

Source: CVE-2019-9708

CVE-2019-11560

Posted on 2019년 5월 8일2019년 5월 8일 by admin

CVE-2019-11560

A buffer overflow vulnerability in the streaming server provided by hisilicon in HI3516 models allows an unauthenticated attacker to remotely run arbitrary code by sending a special RTSP over HTTP packet. The vulnerability was found in many cameras using hisilicon’s hardware and software, as demonstrated by TENVIS cameras 1.3.3.3, 1.2.7.2, 1.2.1.4, 7.1.20.1.2, and 13.1.1.1.7.2; FDT FD7902 11.3.14.1.3 and 10.3.14.1.3; FOSCAM cameras 3.2.1.1.1_0815 and 3.2.2.2.1_0815; and Dericam cameras V11.3.8.1.12.

Source: CVE-2019-11560

CVE-2019-9709

Posted on 2019년 5월 7일2019년 5월 8일 by admin

CVE-2019-9709

An issue was discovered in Mahara 17.10 before 17.10.8, 18.04 before 18.04.4, and 18.10 before 18.10.1. The collection title is vulnerable to Cross Site Scripting (XSS) due to not escaping it when viewing the collection’s SmartEvidence overview page (if that feature is turned on). This can be exploited by any logged-in user.

Source: CVE-2019-9709

CVE-2018-20836

Posted on 2019년 5월 7일2019년 5월 8일 by admin

CVE-2018-20836

An issue was discovered in the Linux kernel before 4.20. There is a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free.

Source: CVE-2018-20836

CVE-2019-11810

Posted on 2019년 5월 7일2019년 5월 8일 by admin

CVE-2019-11810

An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasas_create_frame_pool() fails in megasas_alloc_cmds() in drivers/scsi/megaraid/megaraid_sas_base.c. This causes a Denial of Service, related to a use-after-free.

Source: CVE-2019-11810

CVE-2019-11811

Posted on 2019년 5월 7일2019년 5월 8일 by admin

CVE-2019-11811

An issue was discovered in the Linux kernel before 5.0.4. There is a use-after-free upon attempted read access to /proc/ioports after the ipmi_si module is removed, related to drivers/char/ipmi/ipmi_si_intf.c, drivers/char/ipmi/ipmi_si_mem_io.c, and drivers/char/ipmi/ipmi_si_port_io.c.

Source: CVE-2019-11811

CVE-2019-11808

Posted on 2019년 5월 7일2019년 5월 7일 by admin

CVE-2019-11808

Ratpack versions before 1.6.1 generate a session ID using a cryptographically weak PRNG in the JDK’s ThreadLocalRandom. This means that if an attacker can determine a small window for the server start time and obtain a session ID value, they can theoretically determine the sequence of session IDs.

Source: CVE-2019-11808