| Max CVSS | 7.5 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-10878 | 6.1 |
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write and a denial of service or unspecified other impact is possible by mounting and operating a crafted ext4 filesystem image.
|
05-10-2023 - 14:15 | 26-07-2018 - 18:29 | |
| CVE-2018-10877 | 6.8 |
Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.
|
13-02-2023 - 04:51 | 18-07-2018 - 15:29 | |
| CVE-2018-10879 | 6.1 |
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image.
|
13-02-2023 - 04:51 | 26-07-2018 - 18:29 | |
| CVE-2018-10876 | 4.9 |
A flaw was found in Linux kernel in the ext4 filesystem code. A use-after-free is possible in ext4_ext_remove_space() function when mounting and operating a crafted ext4 image.
|
13-02-2023 - 04:51 | 26-07-2018 - 18:29 | |
| CVE-2018-10874 | 4.6 |
In ansible it was found that inventory variables are loaded from current working directory when running ad-hoc command which are under attacker's control, allowing to run arbitrary code as a result.
|
13-02-2023 - 04:51 | 02-07-2018 - 13:29 | |
| CVE-2018-10872 | 4.9 |
A flaw was found in the way the Linux kernel handled exceptions delivered after a stack switch operation via Mov SS or Pop SS instructions. During the stack switch operation, processor does not deliver interrupts and exceptions, they are delivered on
|
12-02-2023 - 23:31 | 10-07-2018 - 19:29 | |
| CVE-2018-10875 | 4.6 |
A flaw was found in ansible. ansible.cfg is read from the current working directory which can be altered to make it point to a plugin or a module path under the control of an attacker, thus allowing the attacker to execute arbitrary code.
|
04-08-2021 - 17:14 | 13-07-2018 - 22:29 | |
| CVE-2018-1087 | 4.6 |
kernel KVM before versions kernel 4.16, kernel 4.16-rc7, kernel 4.17-rc1, kernel 4.17-rc2 and kernel 4.17-rc3 is vulnerable to a flaw in the way the Linux kernel's KVM hypervisor handled exceptions delivered after a stack switch operation via Mov SS
|
09-10-2019 - 23:38 | 15-05-2018 - 16:29 | |
| CVE-2018-10871 | 4.0 |
389-ds-base before versions 1.3.8.5, 1.4.0.12 is vulnerable to a Cleartext Storage of Sensitive Information. By default, when the Replica and/or retroChangeLog plugins are enabled, 389-ds-base stores passwords in plaintext format in their respective
|
09-10-2019 - 23:33 | 18-07-2018 - 13:29 | |
| CVE-2018-10870 | 7.5 |
redhat-certification does not properly sanitize paths in rhcertStore.py:__saveResultsFile. A remote attacker could use this flaw to overwrite any file, potentially gaining remote code execution.
|
09-10-2019 - 23:33 | 19-07-2018 - 22:29 | |
| CVE-2018-10873 | 6.5 |
A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked sufficient bounds checks. A malicious client or server, after authentication, could send specially crafted messages to its p
|
09-10-2019 - 23:33 | 17-08-2018 - 12:29 |