Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 131 - 140 of 132219 in total

Red Hat: CVE-2018-16067: Important: chromium-browser security update (RHSA-2018:2666) Vulnerability

  • Severity: 4
  • Published: September 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2018:2666:

Chromium is an open-source web browser, powered by WebKit (Blink).

This update upgrades Chromium to version 69.0.3497.81.

...

Debian: CVE-2018-16067: chromium-browser -- security update Vulnerability

  • Severity: 4
  • Published: September 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From DSA-4289:

Several vulnerabilities have been discovered in the chromium web browser.

SUSE: CVE-2018-16658: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: September 07, 2018

An issue was discovered in the Linux kernel before 4.18.6. An information leak in cdrom_ioctl_drive_status in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940.

SUSE: CVE-2018-16066: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: September 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-16066:

This CVE is addressed in the SUSE advisories openSUSE-SU-2018:2659-1, openSUSE-SU-2018:2664-1.

F5 Networks: K66171422 (CVE-2018-5548): BIG-IP APM redirect vulnerability CVE-2018-5548 Vulnerability

  • Severity: 4
  • Published: September 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From K66171422:

An attacker can forge a URL with an obfuscated (encrypted and encoded) value in an orig_uri parameter. An authenticated user with an establishe...

Debian: CVE-2018-1606: chromium-browser -- security update Vulnerability

  • Severity: 4
  • Published: September 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From DSA-4289:

Several vulnerabilities have been discovered in the chromium web browser.

Debian: CVE-2018-16066: chromium-browser -- security update Vulnerability

  • Severity: 4
  • Published: September 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From DSA-4289:

Several vulnerabilities have been discovered in the chromium web browser.

SUSE: CVE-2018-16067: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: September 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-16067:

This CVE is addressed in the SUSE advisories openSUSE-SU-2018:2659-1, openSUSE-SU-2018:2664-1.

SUSE: CVE-2018-16644: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: September 06, 2018

There is a missing check for length in the functions ReadDCMImage of coders/dcm.c and ReadPICTImage of coders/pict.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial of service via a crafted image.

SUSE: CVE-2018-16645: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: September 06, 2018

There is an excessive memory allocation issue in the functions ReadBMPImage of coders/bmp.c and ReadDIBImage of coders/dib.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial of service via a crafted image file.