Vulnerability-Lookup

CVE-2018-0711 (GCVE-0-2018-0711)

Vulnerability from cvelistv5 – Published: 2018-04-30 13:00 – Updated: 2024-09-16 22:20

Summary

Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML.

Severity ?

No CVSS data available.

CWE

Cross-site scripting

Assigner

qnap

References

URL

	Vendor	Product	Version
	QNAP	QTS	Affected: QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315 and earlier

CNVD-2018-09161

Vulnerability from cnvd - Published: 2018-05-09

Title

QNAP QTS跨站脚本漏洞（CNVD-2018-09161）

Description

QNAP QTS是中国威联通（QNAP Systems）公司的一套Turbo NAS作业系统。该系统可提供档案储存、管理、备份，多媒体应用及安全监控等功能。 QNAP QTS 4.3.3 build 20180126及之前版本和4.3.4 build 20180315及之前版本中存在跨站脚本漏洞。远程攻击者可利用该漏洞注入任意的Web脚本或HTML。

Severity

中

Patch Name

QNAP QTS跨站脚本漏洞（CNVD-2018-09161）的补丁

Patch Description

Formal description

厂商已发布漏洞修复程序，请及时关注更新： https://www.qnap.com/en/security-advisory/nas-201804-27

Reference

https://www.qnap.com/en/security-advisory/nas-201804-27

Impacted products

Name
['QNAP QTS <=4.3.3: build 20180126', 'QNAP QTS <=4.3.4: build 20180315']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-0711"
    }
  },
  "description": "QNAP QTS\u662f\u4e2d\u56fd\u5a01\u8054\u901a\uff08QNAP Systems\uff09\u516c\u53f8\u7684\u4e00\u5957Turbo NAS\u4f5c\u4e1a\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u53ef\u63d0\u4f9b\u6863\u6848\u50a8\u5b58\u3001\u7ba1\u7406\u3001\u5907\u4efd\uff0c\u591a\u5a92\u4f53\u5e94\u7528\u53ca\u5b89\u5168\u76d1\u63a7\u7b49\u529f\u80fd\u3002\r\n\r\nQNAP QTS 4.3.3 build 20180126\u53ca\u4e4b\u524d\u7248\u672c\u548c4.3.4 build 20180315\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6ce8\u5165\u4efb\u610f\u7684Web\u811a\u672c\u6216HTML\u3002",
  "discovererName": "Unknow",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.qnap.com/en/security-advisory/nas-201804-27",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-09161",
  "openTime": "2018-05-09",
  "patchDescription": "QNAP QTS\u662f\u4e2d\u56fd\u5a01\u8054\u901a\uff08QNAP Systems\uff09\u516c\u53f8\u7684\u4e00\u5957Turbo NAS\u4f5c\u4e1a\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u53ef\u63d0\u4f9b\u6863\u6848\u50a8\u5b58\u3001\u7ba1\u7406\u3001\u5907\u4efd\uff0c\u591a\u5a92\u4f53\u5e94\u7528\u53ca\u5b89\u5168\u76d1\u63a7\u7b49\u529f\u80fd\u3002\r\n\r\nQNAP QTS 4.3.3 build 20180126\u53ca\u4e4b\u524d\u7248\u672c\u548c4.3.4 build 20180315\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6ce8\u5165\u4efb\u610f\u7684Web\u811a\u672c\u6216HTML\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "QNAP QTS\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2018-09161\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "QNAP QTS \u003c=4.3.3: build 20180126",
      "QNAP QTS \u003c=4.3.4: build 20180315"
    ]
  },
  "referenceLink": "https://www.qnap.com/en/security-advisory/nas-201804-27",
  "serverity": "\u4e2d",
  "submitTime": "2018-04-28",
  "title": "QNAP QTS\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2018-09161\uff09"
}

FKIE_CVE-2018-0711

Vulnerability from fkie_nvd - Published: 2018-04-30 13:29 - Updated: 2024-11-21 03:38

Severity ?

6.1 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Summary

Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML.

References

URL	Tags
security@qnapsecurity.com.tw	http://www.securitytracker.com/id/1040779	Third Party Advisory, VDB Entry
security@qnapsecurity.com.tw	https://www.qnap.com/zh-tw/security-advisory/nas-201804-27	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1040779	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://www.qnap.com/zh-tw/security-advisory/nas-201804-27	Vendor Advisory

Impacted products

Vendor	Product	Version
qnap	qts	4.3.3.0514
qnap	qts	4.3.3.0546
qnap	qts	4.3.3.0570
qnap	qts	4.3.4.0516
qnap	qts	4.3.4.0526
qnap	qts	4.3.4.0551
qnap	qts	4.3.4.0557
qnap	qts	4.3.4.0561
qnap	qts	4.3.4.0569
qnap	qts	4.3.4.0593
qnap	qts	4.3.4.0597
qnap	qts	4.3.4.0604

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.3.0514:*:*:*:*:*:*:*",
              "matchCriteriaId": "A5AA78A4-00D2-4168-8B48-0A23DD8B3C00",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.3.0546:*:*:*:*:*:*:*",
              "matchCriteriaId": "4BAA1736-2B5E-4F7B-9DC0-065CF4EF9A60",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.3.0570:*:*:*:*:*:*:*",
              "matchCriteriaId": "BE14B09E-69EE-479C-B523-D77C36A9D0D2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.4.0516:*:*:*:*:*:*:*",
              "matchCriteriaId": "995F09C6-D7C2-493D-815E-E837B371E2E5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.4.0526:*:*:*:*:*:*:*",
              "matchCriteriaId": "2BCCA5A5-C789-42FE-8652-F03618F095BE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.4.0551:*:*:*:*:*:*:*",
              "matchCriteriaId": "3230EF50-B2CC-4A4D-B353-7BE461BB235D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.4.0557:*:*:*:*:*:*:*",
              "matchCriteriaId": "0DC8B14B-3882-44C4-9CE8-C5D6FC0BE00A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.4.0561:*:*:*:*:*:*:*",
              "matchCriteriaId": "D30204B8-097B-42EB-A7EC-9142F7D41EB0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.4.0569:*:*:*:*:*:*:*",
              "matchCriteriaId": "945AE50D-8745-42B2-9B89-04B21C98657B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.4.0593:*:*:*:*:*:*:*",
              "matchCriteriaId": "9BD98EC7-C26E-4AAB-AC6C-56A82C8C2432",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.4.0597:*:*:*:*:*:*:*",
              "matchCriteriaId": "1FDBAE33-D3A8-46C7-8C4E-CB0C12ED08B0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.3.4.0604:*:*:*:*:*:*:*",
              "matchCriteriaId": "A99818FC-0BC5-45A9-AD55-C02FC0AB1959",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad Cross-Site Scripting (XSS) en QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315,y sus versiones anteriores, permite que los atacantes remotos inyecten scripts web o HTML arbitrarios."
    }
  ],
  "id": "CVE-2018-0711",
  "lastModified": "2024-11-21T03:38:47.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2018-04-30T13:29:00.323",
  "references": [
    {
      "source": "security@qnapsecurity.com.tw",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1040779"
    },
    {
      "source": "security@qnapsecurity.com.tw",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.qnap.com/zh-tw/security-advisory/nas-201804-27"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1040779"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.qnap.com/zh-tw/security-advisory/nas-201804-27"
    }
  ],
  "sourceIdentifier": "security@qnapsecurity.com.tw",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-HHJ6-GG8R-R35G

Vulnerability from github – Published: 2022-05-14 03:20 – Updated: 2022-05-14 03:20

Details

Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML.

Severity ?

6.1 (Medium)


                  
                    CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2018-0711"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2018-04-30T13:29:00Z",
    "severity": "MODERATE"
  },
  "details": "Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML.",
  "id": "GHSA-hhj6-gg8r-r35g",
  "modified": "2022-05-14T03:20:23Z",
  "published": "2022-05-14T03:20:23Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0711"
    },
    {
      "type": "WEB",
      "url": "https://www.qnap.com/zh-tw/security-advisory/nas-201804-27"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1040779"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2018-0711

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML.

Aliases

CVE-2018-0711

Aliases

CVE-2018-0711

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-0711",
    "description": "Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML.",
    "id": "GSD-2018-0711"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-0711"
      ],
      "details": "Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML.",
      "id": "GSD-2018-0711",
      "modified": "2023-12-13T01:22:25.049851Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@qnap.com",
        "DATE_PUBLIC": "2018-04-27T00:00:00",
        "ID": "CVE-2018-0711",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "QTS",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315 and earlier"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "QNAP"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Cross-site scripting"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.qnap.com/zh-tw/security-advisory/nas-201804-27",
            "refsource": "CONFIRM",
            "url": "https://www.qnap.com/zh-tw/security-advisory/nas-201804-27"
          },
          {
            "name": "1040779",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1040779"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.3.0546:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.4.0516:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.4.0597:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.4.0551:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.4.0557:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.4.0561:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.4.0569:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.3.0514:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.3.0570:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.4.0526:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.4.0593:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:qnap:qts:4.3.4.0604:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@qnap.com",
          "ID": "CVE-2018-0711"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-79"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.qnap.com/zh-tw/security-advisory/nas-201804-27",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://www.qnap.com/zh-tw/security-advisory/nas-201804-27"
            },
            {
              "name": "1040779",
              "refsource": "SECTRACK",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securitytracker.com/id/1040779"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 2.7
        }
      },
      "lastModifiedDate": "2018-06-06T13:15Z",
      "publishedDate": "2018-04-30T13:29Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-0711 (GCVE-0-2018-0711)

CNVD-2018-09161

FKIE_CVE-2018-0711

GHSA-HHJ6-GG8R-R35G

GSD-2018-0711

Tags

Sightings

Nomenclature