OPSWAT CVEs, Hashes, Application Installers Update: April 18 - April 25, 2019
April 26, 2019 | By OPSWAT
The OPSWAT Vulnerability Assessment technology supports file based and endpoint application vulnerability assessment. Learn how MetaDefender Kiosk and MetaAccess leverages this technology to protect your organization.
We continuously enhance our platform to decrease your organization's security risk and prevent malware attacks. The first table below lists the hashes of vulnerable application installers, IoT software and firmware was added to the OPSWAT database during April 18 - April 25, 2019. The second table lists the new CVEs and application versions for which support was added.
To take advantage of these capabilities, please always update your OPSWAT Vulnerability Engine to the latest version. If you have questions or interest in using the engine to better protect your organization, please contact OPSWAT.
File Based Vulnerabilities
OPSWAT Vulnerability Engine added support to detect the following vulnerable application installers, IoT software and firmware
Endpoint Application Vulnerabilities
OPSWAT Vulnerability Engine added support to detect the following application vulnerabilities
| PRODUCT | VENDOR | VERSION | CVE | CVE DETAILS | CVSS SCORE |
|---|---|---|---|---|---|
| VirtualBox | Oracle Corporation | 5.1.22 and prior | CVE-2017-10204 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2017-10204 | 4.6 |
| VirtualBox | Oracle Corporation | 5.999999.999999r999998 and prior | CVE-2018-5407 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-5407 | 1.9 |
| Oracle VM VirtualBox | Oracle Corporation | 5.1.22 and prior | CVE-2017-10204 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2017-10204 | 4.6 |
| Oracle VM VirtualBox | Oracle Corporation | 5.999999.999999r999998 and prior | CVE-2018-5407 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-5407 | 1.9 |
| WinRAR | Alexander Roshal | 5.61 and prior | CVE-2018-20250 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-20250 | 6.8 |
| MySQL Server | Oracle Corporation | 5.7.21 and prior | CVE-2018-2846 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-2846 | 4.0 |
| MySQL Server | Oracle Corporation | 5.7.21 and prior | CVE-2018-2839 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-2839 | 4.0 |
| MySQL Server | Oracle Corporation | 5.7.9 and prior | CVE-2016-0611 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0611 | 4.0 |
| MySQL Server | Oracle Corporation | 5.7.9 and prior | CVE-2016-0607 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0607 | 2.8 |
| MySQL Server | Oracle Corporation | 5.6.16 and prior | CVE-2014-0001 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2014-0001 | 7.5 |
| MySQL Server | Oracle Corporation | 5.7.11 and prior | CVE-2016-0666 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0666 | 3.5 |
| MySQL Server | Oracle Corporation | 5.7.10 and prior | CVE-2016-0646 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0646 | 4.0 |
| MySQL Server | Oracle Corporation | 5.7.11 and prior | CVE-2016-0647 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0647 | 4.0 |
| MySQL Server | Oracle Corporation | 5.7.11 and prior | CVE-2016-0648 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0648 | 4.0 |
| MySQL Server | Oracle Corporation | 5.7.10 and prior | CVE-2016-0649 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0649 | 4.0 |
| MySQL Server | Oracle Corporation | 5.7.10 and prior | CVE-2016-0650 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0650 | 4.0 |
| MySQL Server | Oracle Corporation | 5.7.9 and prior | CVE-2016-0608 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0608 | 3.5 |
| MySQL Server | Oracle Corporation | 5.7.9 and prior | CVE-2016-0609 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0609 | 1.7 |
| MySQL Server | Oracle Corporation | 5.7.10 and prior | CVE-2016-0640 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0640 | 4.9 |
| MySQL Server | Oracle Corporation | 5.7.10 and prior | CVE-2016-0641 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0641 | 4.9 |
| MySQL Server | Oracle Corporation | 5.7.11 and prior | CVE-2016-0643 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0643 | 4.0 |
| MySQL Server | Oracle Corporation | 5.7.10 and prior | CVE-2016-0644 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0644 | 4.0 |
| MySQL Server | Oracle Corporation | 5.7.11 and prior | CVE-2016-0642 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0642 | 4.3 |
| MySQL Server | Oracle Corporation | 5.7.11 and prior | CVE-2016-0655 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0655 | 3.5 |
| MySQL Server | Oracle Corporation | 5.6.22 and prior | CVE-2015-4756 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2015-4756 | 4.0 |
| MySQL Server | Oracle Corporation | 5.6.26 and prior | CVE-2016-3471 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-3471 | 7.1 |
| MySQL Server | Oracle Corporation | 5.7.11 and prior | CVE-2016-5444 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-5444 | 4.3 |
| MySQL Server | Oracle Corporation | 5.7.10 and prior | CVE-2016-3452 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-3452 | 4.3 |
| MySQL Server | Oracle Corporation | 5.7.11 and prior | CVE-2016-2047 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-2047 | 4.3 |
| MySQL Server | Oracle Corporation | 5.7.10 and prior | CVE-2016-0668 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0668 | 1.7 |
| MySQL Server | Oracle Corporation | 5.7.10 and prior | CVE-2016-0665 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0665 | 3.5 |
| MySQL Server | Oracle Corporation | 5.7.10 and prior | CVE-2016-0661 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0661 | 3.5 |
| MySQL Server | Oracle Corporation | 5.6.27 and prior | CVE-2016-0610 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0610 | 3.5 |
| Apache HTTP Server | Apache Software Foundation | 2.4.38 and prior | CVE-2019-0217 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-0217 | 6.0 |
| Apache HTTP Server | Apache Software Foundation | 2.4.38 and prior | CVE-2019-0211 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-0211 | 7.2 |
| Apache HTTP Server | Apache Software Foundation | 2.4.37 and prior | CVE-2019-0190 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-0190 | 5.0 |
| Apache HTTP Server | Apache Software Foundation | 2.4.27 and prior | CVE-2017-9798 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2017-9798 | 5.0 |
| Apache HTTP Server | Apache Software Foundation | 2.4.37 and prior | CVE-2018-17199 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-17199 | 5.0 |
| Apache HTTP Server | Apache Software Foundation | 2.4.37 and prior | CVE-2018-17189 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-17189 | 5.0 |
| Apache HTTP Server | Apache Software Foundation | 2.4.34 and prior | CVE-2018-11763 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-11763 | 4.3 |
| Apache HTTP Server | Apache Software Foundation | 2.4.38 and prior | CVE-2019-0215 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-0215 | 6.0 |
| Apache HTTP Server | Apache Software Foundation | 2.4.29 and prior | CVE-2018-1312 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-1312 | 6.8 |
| Apache HTTP Server | Apache Software Foundation | 2.4.29 and prior | CVE-2018-1301 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-1301 | 4.3 |
| Apache HTTP Server | Apache Software Foundation | 2.4.29 and prior | CVE-2018-1283 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-1283 | 3.5 |
| Apache HTTP Server | Apache Software Foundation | 2.4.29 and prior | CVE-2017-15710 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2017-15710 | 5.0 |
| Apache HTTP Server | Apache Software Foundation | 2.4.29 and prior | CVE-2017-15715 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2017-15715 | 6.8 |
| Node.js | Joyent, Inc. | 8.11.3.999998 and prior | CVE-2018-5407 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-5407 | 1.9 |
| Node.js | Joyent, Inc. | 11.4 and prior | CVE-2018-0735 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-0735 | 4.3 |
| Node.js | Joyent, Inc. | 8.14 and prior | CVE-2018-0734 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-0734 | 4.3 |
| Node.js | Joyent, Inc. | 8.11.3.999998 and prior | CVE-2018-5407 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-5407 | 1.9 |
- ファイルアップロードの保護 – 10 のベストプラクティスで サイバー攻撃を防御
- MetaDefenderによる世界で最も危険なマルウェアEmotetの防御
- OPSWAT Expands Global Availability of Critical Infrastructure Protection
- OPSWAT Announces Expansion of Cybersecurity Training Program
- Avoiding storage data leaks and PII regulation noncompliance
- How OPSWAT Can Help Detect and Prevent the VMware WorkSpace ONE Access exploit (CVE-2020-4006)
- Protecting Critical Infrastructure from Advanced Cyberattacks
- MetaDefender Cloud Hash Reputation Database Now Exceeds 40 Billion
- OPSWAT Continues to Expand OESIS Framework with New Partners
- 6 Potential Security Gaps in File Transfer Process for Critical Infrastructure
Sign up for Blog updates
Get information and insight from the leaders in advanced threat prevention.