Ubuntu Security Notice 3662-1 - It was discovered that the NVIDIA graphics drivers contained flaws in the kernel mode layer. A local attacker could use these issues to cause a denial of service or potentially escalate their privileges on the system.
e7c8a4345a061d0dc973755a2860b253d6d7d691e5a721d8f47a716f13876a4d
Ubuntu Security Notice 3661-1 - It was discovered that Batik incorrectly handled certain XML. An attacker could possibly use this to expose sensitive information.
e62d00a17dbff3ffc4e982defa81d09d47e6097888dc92c5f70a48911bf52044
IBM QRadar SIEM versions prior to 7.3.1 Patch 3 or 7.2.8 Patch 28 suffer from authentication bypass, code execution, and privilege escalation vulnerabilities.
09d2ce6f6bb5af6c230e14fb58055683cecf02e7b8d5fa6519e44d12f4118a15
GNU Barcode version 0.99 suffers from a buffer overflow vulnerability.
fbe0caf709c2a729a4f377d31d01707a6ff4588d473c3a49a7b628fb46d5df69
Vgate iCar2 WiFi OBD2 dongles suffer from having unprotected wifi access and unencrypted data transfer mechanisms alongside unauthenticated access to on-board diagnostics.
bd3bbe4b860b8670cff9df02a11d912d9ac2b5fc349324356a7837a8af5e447b
VMware Security Advisory 2018-0014 - VMware Horizon Client update addresses a privilege escalation vulnerability.
1f46527c7bd626e6be17f523852debf54c8905d5846bee319e61d90ea81c6120
Facebook Clone Script version 1.0.5 suffers from a remote SQL injection vulnerability.
ff6ad977b79f5bc8eace2a2ced9ade0801422fd985e70ee4e78b1a0a47435eef
The foilChat backend fails to prevent brute force attempts of the PIN code. An attacker can attempt all 10000 different PIN codes until the correct one is found, and then use the correct PIN to complete the registration.
a7b76e238cdcac06ca5048bc7322bc06668b0a3e78ef4545e1699f1b0c8f632f
Pivotal Spring Java Framework versions 5.0.x and below suffer from a remote code execution vulnerability.
087734b5669bd630cd35fdbf2949d5549fe449eabe22b9c19c3956d3e1cd2462
The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib version 1.11.1 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted audio file.
aef2419e47ea6d4026994bdeff4c305d9c04fb5575c81572288b93ee7047ba9d
SharePoint's site suffers from a user enumeration vulnerability.
24ce31e9a1cea55db20cb989a10a97c36be95ad8fbf72555a29aa25450019f81
Facebook Clone Script version 1.0.5 suffers from a cross site request forgery vulnerability.
713fbbd8917fddae9ea239ee0a3276b6d7ba12bd756c57d466a91c5252a13ead
MyBB ChangUonDyU plugin version 1.0.2 suffers from a cross site scripting vulnerability.
db660fadda2a119edbccee069b8d76ba56d3a76d9c6f00380d446b380afc52a6
Sitemakin SLAC version 1.0 suffers from a remote SQL injection vulnerability.
000e4a7ab2c787f0454025c539c614e17c828a17a6e7a011d636caf1172c0666
IssueTrak version 7.0 suffers from a remote SQL injection vulnerability.
1ca72af0c55484ccd608194909c3cef48db5fddab1d068ca70b153fac71f0cc2
Facebook Graph OpenSearch Phone Number metadata crosswalk mapping proof of concept exploit.
3288c37864ed6e59af01c3711e7fc6081753fd947b8690f6f28b12547b3a6fed