Security Vulnerabilities - CVEs Published In March 2018
In Windows Master (aka Windows Optimization Master) 7.99.13.604, the driver file (WoptiHWDetect.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0xf1002002.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-03-25
Creditwest Bank CMS Project (aka CWCMS) through 2017-07-28 has CSRF in the functionality for updating the site configuration, which allows remote attackers to inject arbitrary PHP code, as demonstrated by a PHP shell that calls eval on request parameters.
CVSS Score
8.8
EPSS Score
0.002
Published
2018-03-24
OTCMS 3.20 allows XSS by adding a keyword or link to an article, as demonstrated by an admin/keyWord_deal.php?mudi=add request.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-03-24
The int_x509_param_set_hosts function in lib/libcrypto/x509/x509_vpm.c in LibreSSL 2.7.0 before 2.7.1 does not support a certain special case of a zero name length, which causes silent omission of hostname verification, and consequently allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. NOTE: the LibreSSL documentation indicates that this special case is supported, but the BoringSSL documentation does not.
CVSS Score
7.4
EPSS Score
0.003
Published
2018-03-24
The Auth0 integration in GitLab before 10.3.9, 10.4.x before 10.4.6, and 10.5.x before 10.5.6 has an incorrect omniauth-auth0 configuration, leading to signing in unintended users.
CVSS Score
9.8
EPSS Score
0.002
Published
2018-03-24
BMC Remedy Action Request (AR) System 9.0 before 9.0.00 Service Pack 2 hot fix 1 has persistent XSS.
CVSS Score
6.1
EPSS Score
0.003
Published
2018-03-24
Bose SoundTouch devices allow XSS via crafted song data from a music service, as demonstrated by Pandora.
CVSS Score
5.4
EPSS Score
0.002
Published
2018-03-24
Bose SoundTouch devices allow XSS via a crafted public playlist from Spotify.
CVSS Score
5.4
EPSS Score
0.003
Published
2018-03-24
Bose SoundTouch devices allows remote attackers to achieve remote control via a crafted web site that uses the WebSocket Protocol.
CVSS Score
8.8
EPSS Score
0.006
Published
2018-03-24
An issue was discovered in zzcms 8.2. user/ppsave.php allows remote attackers to delete arbitrary files via directory traversal sequences in the oldimg parameter in an action=modify request. This can be leveraged for database access by deleting install.lock.
CVSS Score
7.5
EPSS Score
0.008
Published
2018-03-24