Security Vulnerabilities - CVEs Published In May 2018
IBM Security Guardium Big Data Intelligence (SonarG) 3.1 does not renew a session variable after a successful authentication which could lead to session fixation/hijacking vulnerability. This could force a user to utilize a cookie that may be known to an attacker. IBM X-Force ID: 137776.
CVSS Score
5.9
EPSS Score
0.002
Published
2018-05-29
IBM Security Guardium Big Data Intelligence (SonarG) 3.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 137777.
CVSS Score
6.1
EPSS Score
0.001
Published
2018-05-29
Symantec Advanced Secure Gateway (ASG) 6.6 and 6.7, and ProxySG 6.5, 6.6, and 6.7 are susceptible to a SAML authentication bypass vulnerability. The products can be configured with a SAML authentication realm to authenticate network users in intercepted proxy traffic. When parsing SAML responses, ASG and ProxySG incorrectly handle XML nodes with comments. A remote attacker can modify a valid SAML response without invalidating its cryptographic signature. This may allow the attacker to bypass user authentication security controls in ASG and ProxySG. This vulnerability only affects authentication of network users in intercepted traffic. It does not affect administrator user authentication for the ASG and ProxySG management consoles.
CVSS Score
9.8
EPSS Score
0.098
Published
2018-05-29
A stack exhaustion vulnerability in the search function of dtSearch 7.90.8538.1 and prior allows remote attackers to cause a denial of service condition by sending a specially crafted HTTP request.
CVSS Score
7.5
EPSS Score
0.123
Published
2018-05-29
upload.php on NUUO NVRmini 2 devices allows Arbitrary File Upload, such as upload of .php files.
CVSS Score
9.8
EPSS Score
0.221
Published
2018-05-29
An issue was discovered in CScms v4.1. A Cross-site request forgery (CSRF) vulnerability in plugins/sys/admin/Sys.php allows remote attackers to change the administrator's username and password via /admin.php/sys/editpass_save.
CVSS Score
8.8
EPSS Score
0.002
Published
2018-05-29
WUZHI CMS 4.1.0 has SQL Injection via an api/sms_check.php?param= URI.
CVSS Score
9.8
EPSS Score
0.003
Published
2018-05-29
Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp.
CVSS Score
9.8
EPSS Score
0.003
Published
2018-05-29
An issue was discovered in the ChangUonDyU Advanced Statistics plugin 1.0.2 for MyBB. changstats.php has XSS, as demonstrated by a subject field.
CVSS Score
6.1
EPSS Score
0.008
Published
2018-05-29
An issue was discovered in SITEMAKIN SLAC (Site Login and Access Control) v1.0. The parameter "my_item_search" in users.php is exploitable using SQL injection.
CVSS Score
9.8
EPSS Score
0.031
Published
2018-05-29