OPSWAT CVEs, Hashes, Application Installers Update: August 15 - August 22, 2018
The OPSWAT Metadefender Vulnerability Engine identifies known application vulnerabilities and reports them by severity level. The Vulnerability Engine allows system administrators to identify vulnerabilities in files and data being brought into a secure network and on endpoints within a network, significantly expediting remediation of the issue.
Common Vulnerabilities and Exposures (CVE) is a catalog of publicly known cyber security vulnerabilities that's sponsored by the United States Department of Homeland Security. The first table below lists the new CVEs and product versions for which support was added to the Metadefender database during the week of August 15 - August 22, 2018. The second table lists the hashes and application installers for which support was added.
Newly Supported CVEs and Product Versions as of August 22, 2018
| PRODUCT | VENDOR | VERSION | CVE | CVE DETAILS | CVSS SCORE |
|---|---|---|---|---|---|
| Apache HTTP Server | Apache Software Foundation | 2.4.33 and prior | CVE-2018-1333 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-1333 | 5.0 |
| GIMP | Spencer Kimball, Peter Mattis and the GIMP Development Team | 2.10.2 and prior | CVE-2018-12713 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-12713 | 6.4 |
| Java | Oracle Corporation | 8.0.1720 and prior | CVE-2018-2952 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-2952 | 4.3 |
| Java | Oracle Corporation | 10.0.01.0 and prior | CVE-2018-2972 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-2972 | 4.3 |
| Java | Oracle Corporation | 10.0.00 and prior | CVE-2018-2826 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-2826 | 5.1 |
| Java | Oracle Corporation | 10.0.00 and prior | CVE-2018-2825 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-2825 | 5.1 |
| Cisco AnyConnect Secure Mobility Client | Cisco Systems, Inc. | 4.5(58) and prior | CVE-2018-0373 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-0373 | 4.9 |
| Python | Python Software Foundation | 3.7 and prior | CVE-2018-1061 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-1061 | 5.0 |
| Python | Python Software Foundation | 3.7 and prior | CVE-2018-1060 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-1060 | 5.0 |
| LINE | LINE Corporation | 4.3.0.724 and prior | CVE-2018-0609 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-0609 | 6.8 |
| iTunes | Apple Inc. | 9.2.1 and prior | CVE-2018-4246 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-4246 | 6.8 |
| Safari | Apple Inc. | 9.1.3 and prior | CVE-2018-4246 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-4246 | 6.8 |
| Safari | Apple Inc. | 9.1.3 and prior | CVE-2018-4246 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-4246 | 6.8 |
| iCloud | Apple Inc. | 7.4.9998 and prior | CVE-2018-4246 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-4246 | 6.8 |
| Mozilla Firefox | Mozilla Corporation | 47.0.1 and prior | CVE-2016-0718 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0718 | 7.5 |
| Mozilla Firefox | Mozilla Corporation | 47.0.1 and prior | CVE-2016-0718 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-0718 | 7.5 |
Newly Supported Hashes as of August 22, 2018
- ファイルアップロードの保護 – 10 のベストプラクティスで サイバー攻撃を防御
- MetaDefenderによる世界で最も危険なマルウェアEmotetの防御
- OPSWAT Expands Global Availability of Critical Infrastructure Protection
- OPSWAT Announces Expansion of Cybersecurity Training Program
- Avoiding storage data leaks and PII regulation noncompliance
- How OPSWAT Can Help Detect and Prevent the VMware WorkSpace ONE Access exploit (CVE-2020-4006)
- Protecting Critical Infrastructure from Advanced Cyberattacks
- MetaDefender Cloud Hash Reputation Database Now Exceeds 40 Billion
- OPSWAT Continues to Expand OESIS Framework with New Partners
- 6 Potential Security Gaps in File Transfer Process for Critical Infrastructure