Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 1 - 10 of 132973 in total

Debian: CVE-2018-17456: git -- security update Vulnerability

  • Severity: 4
  • Published: October 05, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From DSA-4311:

joernchen of Phenoelit discovered that git, a fast, scalable,

distributed revision control system, is prone to an arbitrary code

...

MFSA2018-25 Thunderbird: Security vulnerabilities fixed in Thunderbird 60.2.1 (CVE-2018-12376) Vulnerability

  • Severity: 4
  • Published: October 04, 2018

Mozilla developers and community members Alex Gaynor, Boris Zbarsky, Christoph Diehl, Christian Holler, Jason Kratzer, Jed Davis, Tyson Smith, Bogdan Tara, Karl Tomlinson, Mats Palmgren, Nika Layzell, Ted Campbell, and Andrei Cristian Petcu reported memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed ...

MFSA2018-25 Thunderbird: Security vulnerabilities fixed in Thunderbird 60.2.1 (CVE-2018-12385) Vulnerability

  • Severity: 4
  • Published: October 04, 2018

A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination with another vulnerability allowing an attacker to write data into the local cache or from locally installed malware. This issue also trigger...