CVE-2018-9990
published 2018-04-18CVE-2018-9990: In Zulip Server versions before 1.7.2, there was an XSS issue with stream names in topic typeahead.
PriorityP423medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
EPSS
0.83%
52.9th percentile
In Zulip Server versions before 1.7.2, there was an XSS issue with stream names in topic typeahead.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| zulip | zulip_server | < 1.7.2 | 1.7.2 |
CVSS provenance
nvdv3.06.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-v9fq-pvf8-h582: In Zulip Server versions before 1
ghsa_unreviewed·2022-05-14
CVE-2018-9990 [MEDIUM] CWE-79 GHSA-v9fq-pvf8-h582: In Zulip Server versions before 1
In Zulip Server versions before 1.7.2, there was an XSS issue with stream names in topic typeahead.
Red Hat
wildfly: Anonymous access via 9990 port allows RCE via war file upload
vendor_redhat·2018-05-02·CVSS 9.8
CVE-2018-10682 [CRITICAL] CWE-306 wildfly: Anonymous access via 9990 port allows RCE via war file upload
wildfly: Anonymous access via 9990 port allows RCE via war file upload
An issue was discovered in WildFly 10.1.2.Final. It is possible for an attacker to access the administration panel on TCP port 9990 without any authentication using "anonymous" access that is automatically created. Once logged in, a misconfiguration present by default (auto-deployment) permits an anonymous user to deploy a malicious .war file, leading to remote code execution. NOTE: the vendor indicates that anonymous access is not available in the default installation; however, it remains optional because there are several use cases for it, including development environments and network architectures that have a proxy server for access control to the WildFly server
Statement: Red Hat Product Security does not conside
No detection rules found.
No public exploits indexed.
2018-04-18
Published