Log

CVE-2018-4113 created at 25 Sep 2019 19:31:40
Severity
+ Low
Remote
+ Remote
Type
+ Denial of service
Description
+ A security issue has been found in the handling of a function in JavaScriptCore of WebKitGTK+ < 2.20.0, where an unexpected interaction with indexing types caused an ASSERT failure.
References
+ https://webkitgtk.org/security/WSA-2018-0003.html
Notes
CVE-2018-4200 created at 25 Sep 2019 19:31:40
Severity
+ Critical
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ A memory corruption issue has been found in webkitgtk < 2.20.2, where processing maliciously crafted web content may lead to arbitrary code execution.
References
+ https://webkitgtk.org/security/WSA-2018-0004.html#CVE-2018-4200
Notes
CVE-2018-4372 created at 25 Sep 2019 19:31:40
Severity
+ Critical
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ Multiple memory corruption issues have been found in WebKitGTK+ versions prior to 2.22.4, possibly leading to arbitrary code execution while parsing crafted web content.
References
+ https://webkitgtk.org/security/WSA-2018-0008.html#CVE-2018-4372
Notes
CVE-2018-4437 created at 25 Sep 2019 19:31:40
Severity
+ Critical
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ Multiple memory corruption issues have been found in WebKitGTK+ before 2.22.5, where processing maliciously crafted web content may lead to arbitrary code execution.
References
+ https://webkitgtk.org/security/WSA-2018-0009.html#CVE-2018-4437
Notes
CVE-2018-4945 created at 25 Sep 2019 19:31:40
Severity
+ Critical
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ A type confusion issue has been found in Adobe Flash Player before 30.0.0.113, leading to arbitrary code execution.
References
+ https://helpx.adobe.com/security/products/flash-player/apsb18-19.html
Notes
CVE-2018-5000 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Information disclosure
Description
+ An integer overflow issue has been found in Adobe Flash Player before 30.0.0.113, leading to information disclosure.
References
+ https://helpx.adobe.com/security/products/flash-player/apsb18-19.html
Notes
CVE-2018-5001 created at 25 Sep 2019 19:31:40
Severity
+ High
Remote
+ Remote
Type
+ Information disclosure
Description
+ An out-of-bounds read has been found in Adobe Flash Player before 30.0.0.113, leading to information disclosure.
References
+ https://helpx.adobe.com/security/products/flash-player/apsb18-19.html
Notes
CVE-2018-5002 created at 25 Sep 2019 19:31:40
Severity
+ Critical
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ A stack-based buffer overflow has been found in Adobe Flash Player before 30.0.0.113, leading to arbitrary code execution.
References
+ https://helpx.adobe.com/security/products/flash-player/apsb18-19.html
Notes
CVE-2018-5125 created at 25 Sep 2019 19:31:40
Severity
+ Critical
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ Various memory safety bugs have been found in Thunderbird < 52.7.0 and Firefox < 59.0, some of them presenting evidence of memory corruption. Mozilla presumes that with enough effort some of these could be exploited to run arbitrary code.
References
+ https://www.mozilla.org/en-US/security/advisories/mfsa2018-09/#CVE-2018-5125
+ https://bugzilla.mozilla.org/buglist.cgi?bug_id=1416529%2C1434580%2C1434384%2C1437450%2C1437507%2C1426988%2C1438425%2C1324042%2C1437087%2C1443865%2C1425520
Notes
CVE-2018-5127 created at 25 Sep 2019 19:31:40
Severity
+ Critical
Remote
+ Remote
Type
+ Arbitrary code execution
Description
+ A buffer overflow can occur in Thunderbird < 52.7.0 when manipulating the SVG animatedPathSegList through script. This results in a potentially exploitable crash.
References
+ https://www.mozilla.org/en-US/security/advisories/mfsa2018-09/#CVE-2018-5127
+ https://bugzilla.mozilla.org/show_bug.cgi?id=1430557
Notes