Nih Ncbi Toolbox vulnerabilities
3 known vulnerabilities affecting nih/ncbi_toolbox.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-16716P2CRITICALCVSS 9.1PoC≥ 2.0.7, ≤ 2.2.262019-05-02
CVE-2018-16716 [CRITICAL] CWE-22 CVE-2018-16716: A path traversal vulnerability exists in viewcgi.c in the 2.0.7 through 2.2.26 legacy versions of th
A path traversal vulnerability exists in viewcgi.c in the 2.0.7 through 2.2.26 legacy versions of the NCBI ToolBox, which may result in reading of arbitrary files (i.e., significant information disclosure) or file deletion via the nph-viewgif.cgi query string.
nvd
CVE-2018-16717P3CRITICALCVSS 9.8≥ 2.0.7, ≤ 2.2.262019-05-02
CVE-2018-16717 [CRITICAL] CWE-787 CVE-2018-16717: A heap-based buffer overflow exists in nph-viewgif.cgi in the 2.0.7 through 2.2.26 legacy versions o
A heap-based buffer overflow exists in nph-viewgif.cgi in the 2.0.7 through 2.2.26 legacy versions of the NCBI ToolBox.
nvd
CVE-2018-16718P4MEDIUMCVSS 6.1≥ 2.0.7, ≤ 2.2.262019-05-02
CVE-2018-16718 [MEDIUM] CWE-79 CVE-2018-16718: An XSS vulnerability exists in wwwblast.c in the 2.0.7 through 2.2.26 legacy versions of the NCBI To
An XSS vulnerability exists in wwwblast.c in the 2.0.7 through 2.2.26 legacy versions of the NCBI ToolBox via a crafted -z1 argument.
nvd