Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 191 - 200 of 136048 in total

Debian: CVE-2018-18357: chromium-browser -- security update Vulnerability

  • Severity: 4
  • Published: December 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From DSA-4352:

Several vulnerabilities have been discovered in the chromium web browser.

SUSE: CVE-2018-18344: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: December 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-18344:

Inappropriate allowance of the setDownloadBehavior devtools protocol feature in Extensions in Google Chrome prior to 71.0.35...

SUSE: CVE-2018-18356: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: December 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-18356:

An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remot...

Debian: CVE-2018-19935: php7.0 -- security update Vulnerability

  • Severity: 4
  • Published: December 07, 2018

ext/imap/php_imap.c in PHP 5.x and 7.x before 7.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty string in the message argument to the imap_mail function.

SUSE: CVE-2018-19961: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: December 07, 2018

An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because TLB flushes do not always occur after IOMMU mapping changes.

SUSE: CVE-2018-18342: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: December 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-18342:

Execution of user supplied Javascript during object deserialization can update object length leading to an out of bounds wri...

SUSE: CVE-2018-18345: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: December 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-18345:

Incorrect handling of blob URLS in Site Isolation in Google Chrome prior to 71.0.3578.80 allowed a remote attacker who had c...

Debian: CVE-2018-18351: chromium-browser -- security update Vulnerability

  • Severity: 4
  • Published: December 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From DSA-4352:

Several vulnerabilities have been discovered in the chromium web browser.

SUSE: CVE-2018-18343: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: December 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-18343:

Incorrect handing of paths leading to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attac...

Debian: CVE-2018-18355: chromium-browser -- security update Vulnerability

  • Severity: 4
  • Published: December 07, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From DSA-4352:

Several vulnerabilities have been discovered in the chromium web browser.