Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 111 - 120 of 136048 in total

MFSA2018-29 Firefox: Security vulnerabilities fixed in Firefox 64 (CVE-2018-18495) Vulnerability

  • Severity: 4
  • Published: December 11, 2018

WebExtension content scripts can be loaded into about: pages in some circumstances, in violation of the permissions granted to extensions. This could allow an extension to interfere with the loading and usage of these pages and use capabilities that were intended to be restricted from extensions.

Microsoft CVE-2018-8638: DirectX Information Disclosure Vulnerability Vulnerability

  • Severity: 4
  • Published: December 11, 2018

An information disclosure vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. An authenticated attacker could exploit this vulnerability by running a specially crafted application. The update add...