Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 121 - 130 of 131268 in total

Amazon Linux AMI: CVE-2018-3646: Security patch for kernel (ALAS-2018-1058) Vulnerability

  • Severity: 5
  • Published: August 10, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From ALAS-2018-1058:

Fixes for L1Terminal Fault security issues:

L1 Terminal Fault-OS/ SMM: Systems with microprocessors utilizing speculative execu...

Microsoft CVE-2017-5715: Vulnerability in CPU Microcode Could Allow Information Disclosure ("Spectre" / Branch Target Injection) Vulnerability

  • Severity: 5
  • Published: August 10, 2018
Microsoft is aware of a new publicly disclosed class of vulnerabilities referred to as “speculative execution side-channel attacks” that affect many modern processors and operating systems including Intel, AMD, and ARM. At the time of publishing, Microsoft has not received any information to indicate that these vulnerabilities have been used to ...

SUSE: CVE-2018-5811: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: August 10, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-5811:

This CVE is addressed in the SUSE advisories openSUSE-SU-2018:2286-1.

Oracle Database: Security alert - August 2018 (CVE-2018-3110) Vulnerability

  • Severity: 10
  • Published: August 10, 2018

A vulnerability was discovered in the Java VM component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1 and 18. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Java VM. While the vulnerability ...

SUSE: CVE-2018-5813: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: August 10, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-5813:

This CVE is addressed in the SUSE advisories openSUSE-SU-2018:2286-1.

SUSE: CVE-2018-5810: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: August 10, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-5810:

This CVE is addressed in the SUSE advisories openSUSE-SU-2018:2286-1.

SUSE: CVE-2018-5815: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: August 10, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-5815:

This CVE is addressed in the SUSE advisories openSUSE-SU-2018:2286-1.

Amazon Linux AMI: CVE-2018-3620: Security patch for kernel (ALAS-2018-1058) Vulnerability

  • Severity: 5
  • Published: August 10, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From ALAS-2018-1058:

Fixes for L1Terminal Fault security issues:

L1 Terminal Fault-OS/ SMM: Systems with microprocessors utilizing speculative execu...

Amazon Linux AMI: CVE-2018-5391: Security patch for kernel (ALAS-2018-1058) Vulnerability

  • Severity: 4
  • Published: August 10, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From ALAS-2018-1058:

Fixes for L1Terminal Fault security issues:

L1 Terminal Fault-OS/ SMM: Systems with microprocessors utilizing speculative execu...

Microsoft CVE-2017-5753: Vulnerability in CPU Microcode Could Allow Information Disclosure ("Spectre" / Bounds Check Bypass) Vulnerability

  • Severity: 5
  • Published: August 10, 2018
Microsoft is aware of a new publicly disclosed class of vulnerabilities referred to as “speculative execution side-channel attacks” that affect many modern processors and operating systems including Intel, AMD, and ARM. At the time of publishing, Microsoft has not received any information to indicate that these vulnerabilities have been used to ...