The Economics of AI-Enabled Security

Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database CVE-2018-14981
PUBLISHED: 2018-08-17

Certain LG devices based on Android 6.0 through 8.1 have incorrect access control for SystemUI application intents. The LG ID is LVE-SMP-180005.

CVE-2018-14982
PUBLISHED: 2018-08-17

Certain LG devices based on Android 6.0 through 8.1 have incorrect access control in the GNSS application. The LG ID is LVE-SMP-180004.

CVE-2018-15482
PUBLISHED: 2018-08-17

Certain LG devices based on Android 6.0 through 8.1 have incorrect access control for MLT application intents. The LG ID is LVE-SMP-180006.

CVE-2018-15473
PUBLISHED: 2018-08-17

OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.

CVE-2018-15471
PUBLISHED: 2018-08-17

An issue was discovered in xenvif_set_hash_mapping in drivers/net/xen-netback/hash.c in the Linux kernel through 4.18.1, as used in Xen through 4.11.x and other products. The Linux netback driver allows frontends to control mapping of requests to request queues. When processing a request to set or c…

Read More HERE

Leave a Reply