| Max CVSS | 5.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-5950 | 4.3 |
Cross-site scripting (XSS) vulnerability in the web UI in Mailman before 2.1.26 allows remote attackers to inject arbitrary web script or HTML via a user-options URL.
|
10-11-2020 - 19:39 | 23-01-2018 - 16:29 | |
| CVE-2017-15289 | 2.1 |
The mode4and5 write functions in hw/display/cirrus_vga.c in Qemu allow local OS guest privileged users to cause a denial of service (out-of-bounds write access and Qemu process crash) via vectors related to dst calculation.
|
10-11-2020 - 18:53 | 16-10-2017 - 18:29 | |
| CVE-2018-6871 | 5.0 |
LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document, which use the COM.MICROSOFT.WEBSERVICE function.
|
03-10-2019 - 00:03 | 09-02-2018 - 06:29 | |
| CVE-2018-1054 | 5.0 |
An out-of-bounds memory read flaw was found in the way 389-ds-base handled certain LDAP search filters, affecting all versions including 1.4.x. A remote, unauthenticated attacker could potentially use this flaw to make ns-slapd crash via a specially
|
17-07-2018 - 01:29 | 07-03-2018 - 13:29 |