Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 161 - 170 of 129071 in total

Microsoft CVE-2018-4945: Security updates available for Adobe Flash Player Vulnerability

  • Severity: 4
  • Published: June 07, 2018
Adobe has released security updates for Adobe Flash Player for Windows, macOS, Linux and Chrome OS. These updates address critical vulnerabilities in Adobe Flash Player 29.0.0.171 and earlier versions.  Successful exploitation could lead to arbitrary code execution in the context of the current user.Adobe is aware of a report that an exploit for...

Ubuntu: (Multiple Advisories) (CVE-2018-12015): Perl vulnerability Vulnerability

  • Severity: 4
  • Published: June 07, 2018

In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name.

Red Hat: CVE-2018-5002: Critical: flash-plugin security update (RHSA-2018:1827) Vulnerability

  • Severity: 4
  • Published: June 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2018:1827:

The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in.

This update upgrades Fl...

Microsoft CVE-2018-5000: Security updates available for Adobe Flash Player Vulnerability

  • Severity: 4
  • Published: June 07, 2018
Adobe has released security updates for Adobe Flash Player for Windows, macOS, Linux and Chrome OS. These updates address critical vulnerabilities in Adobe Flash Player 29.0.0.171 and earlier versions.  Successful exploitation could lead to arbitrary code execution in the context of the current user.Adobe is aware of a report that an exploit for...

Cisco ASA: CVE-2018-0296: Cisco Adaptive Security Appliance Web Services Denial of Service Vulnerability (cisco-sa-20180606-asaftd) Vulnerability

  • Severity: 4
  • Published: June 07, 2018

A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. It is also possible on certain software releases that the ASA will not reload, but an attacker could view...

Red Hat: CVE-2018-6148: Important: chromium-browser security update (RHSA-2018:1825) Vulnerability

  • Severity: 4
  • Published: June 06, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2018:1825:

Chromium is an open-source web browser, powered by WebKit (Blink).

This update upgrades Chromium to version 67.0.3396.79.

...

Apple Safari security update for CVE-2018-4190 Vulnerability

  • Severity: 4
  • Published: June 04, 2018

An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to obtain sensitive credential informa...