Security Vulnerabilities - CVEs Published In February 2019
The Dundas BI server before 5.0.1.1010 is vulnerable to a Server-Side Request Forgery attack, allowing an attacker to forge arbitrary requests (with certain restrictions) that will be executed on behalf of the attacker, via the viewUrl parameter of the "export the dashboard as an image" feature. This could be leveraged to provide a proxy to attack other servers (internal or external) or to perform network scans of external or internal networks.
CVSS Score
8.6
EPSS Score
0.005
Published
2019-02-11
A carefully crafted URL could trigger an XSS vulnerability on Apache JSPWiki, from versions up to 2.10.5, which could lead to session hijacking.
CVSS Score
6.1
EPSS Score
0.014
Published
2019-02-11
Certain Lexmark CX, MX, X, XC, XM, XS, and 6500e devices before 2019-02-11 allow remote attackers to erase stored shortcuts.
CVSS Score
5.3
EPSS Score
0.006
Published
2019-02-11
A CSRF vulnerability was found in Verydows v2.0 that can add an admin account via index.php?m=backend&c=admin&a=add&step=submit.
CVSS Score
8.8
EPSS Score
0.001
Published
2019-02-11
C.P.Sub before 5.3 allows CSRF via a manage.php?p=article_del&id= URI.
CVSS Score
6.5
EPSS Score
0.001
Published
2019-02-11
DbNinja 3.2.7 allows session fixation via the data.php sessid parameter.
CVSS Score
9.6
EPSS Score
0.004
Published
2019-02-11
_includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if _users/admin/tasks.php exists.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-02-11
SQL Injection exists in MailSherlock before 1.5.235 for OAKlouds allows an unauthenticated user to extract the subjects of the emails of other users within the enterprise via the select_mid parameter in an letgo.cgi request.
CVSS Score
4.3
EPSS Score
0.001
Published
2019-02-11
runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image, or (2) an existing container, to which the attacker previously had write access, that can be attached with docker exec. This occurs because of file-descriptor mishandling, related to /proc/self/exe.
CVSS Score
8.6
EPSS Score
0.507
Published
2019-02-11
Enigmail before 2.0.6 is prone to to OpenPGP signatures being spoofed for arbitrary messages using a PGP/INLINE signature wrapped within a specially crafted multipart HTML email.
CVSS Score
6.5
EPSS Score
0.002
Published
2019-02-11