• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-200

CVE-2018-10498

February 26, 2023 by

This vulnerability allows local attackers to disclose sensitive information on vulnerable installations of Samsung Email Fixed in version 5.0.02.16. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of file:/// URIs. The issue lies in the lack of proper validation of user-supplied data, which can allow for reading arbitrary files. An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges. Was ZDI-CAN-5329.

CVE-2018-10423

February 26, 2023 by

mc-admin/post.php in MiniCMS 1.10 allows remote attackers to obtain a directory listing of the top-level directory of the web root via a link that becomes available after posting an article.

CVE-2018-10424

February 26, 2023 by

mc-admin/post-edit.php in MiniCMS 1.10 allows full path disclosure via a modified id field.

CVE-2018-1044

February 26, 2023 by

In Moodle 3.x, quiz web services allow students to see quiz results when it is prohibited in the settings.

CVE-2018-10472

February 26, 2023 by

An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users (in certain configurations) to read arbitrary dom0 files via QMP live insertion of a CDROM, in conjunction with specifying the target file as the backing file of a snapshot.

CVE-2018-10229

February 26, 2023 by

A hardware vulnerability in GPU memory modules allows attackers to accelerate micro-architectural attacks through the use of the JavaScript WebGL API.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 181
  • Go to page 182
  • Go to page 183
  • Go to page 184
  • Go to page 185
  • Interim pages omitted …
  • Go to page 348
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE