OPSWAT CVEs, Hashes, Application Installers Update: March 1 - March 8, 2023
March 09, 2023 | By OPSWAT
The OPSWAT Vulnerability Assessment technology supports file based and endpoint application vulnerability assessment. Learn how MetaDefender Kiosk and MetaAccess leverages this technology to protect your organization.
We continuously enhance our platform to decrease your organization's security risk and prevent malware attacks. The first table below lists the hashes of vulnerable application installers, IoT software and firmware was added to the OPSWAT database during March 1 - March 8, 2023. The second table lists the new CVEs and application versions for which support was added.
To take advantage of these capabilities, please always update your OPSWAT Vulnerability Engine to the latest version. If you have questions or interest in using the engine to better protect your organization, please contact OPSWAT.
File Based Vulnerabilities
OPSWAT Vulnerability Engine added support to detect the following vulnerable application installers, IoT software and firmware
Endpoint Application Vulnerabilities
OPSWAT Vulnerability Engine added support to detect the following application vulnerabilities
| PRODUCT | VENDOR | VERSION | CVE | CVE DETAILS | CVSS SCORE |
|---|---|---|---|---|---|
| Open Office | Apache Software Foundation | 4.1.5 and prior | CVE-2018-11790 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-11790 | 4.6 |
| OpenOffice | Apache Software Foundation | 4.1.5 and prior | CVE-2018-11790 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-11790 | 4.6 |
| Apache HTTP Server | Apache Software Foundation | 2.2.6 and prior | CVE-2007-5000 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2007-5000 | 4.3 |
| Apache HTTP Server | Apache Software Foundation | 2.4.48 and prior | CVE-2021-33193 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2021-33193 | 5.0 |
| Apache HTTP Server | Apache Software Foundation | 2.2.11.999998 and prior | CVE-2009-1956 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2009-1956 | 6.4 |
| Python 3.6 | Python Software Foundation | 3.7.15.999998 and prior | CVE-2022-37454 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2022-37454 | |
| Python 3.8 | Python Software Foundation | 3.8.15.999998 and prior | CVE-2022-37454 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2022-37454 | |
| Python 3.9 | Python Software Foundation | 3.9.15.999998 and prior | CVE-2022-37454 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2022-37454 | |
| Python 3.10 | Python Software Foundation | 3.10.8.999998 and prior | CVE-2022-37454 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2022-37454 | |
| PHP | The PHP Group | 8.1.11.999998 and prior | CVE-2022-37454 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2022-37454 | |
| PHP | The PHP Group | 8.2.2.999998 and prior | CVE-2023-0568 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-0568 | |
| PHP | The PHP Group | 8.1.11.999998 and prior | CVE-2022-37454 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2022-37454 | |
| PHP | The PHP Group | 8.2.2.999998 and prior | CVE-2023-0568 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-0568 | |
| iOS | Apple Inc. | 16.2.999998 and prior | CVE-2023-23511 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-23511 | |
| iOS | Apple Inc. | 16.2.999998 and prior | CVE-2023-23512 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-23512 | |
| The KMPlayer | KMP Media co.,Ltd | 4.2.2.15 and prior | CVE-2018-5200 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-5200 | 6.8 |
| com.truekey.android | McAfee LLC | 4.0.0.0 and prior | CVE-2018-6682 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-6682 | 4.3 |
| VLC media player | VideoLAN | 3.0.1 and prior | CVE-2018-11516 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-11516 | 6.8 |
| VLC media player | VideoLAN | 3.0.6 and prior | CVE-2019-5460 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-5460 | 4.3 |
| VLC | VideoLAN | 3.0.1 and prior | CVE-2018-11516 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-11516 | 6.8 |
| VLC | VideoLAN | 3.0.6 and prior | CVE-2019-5460 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-5460 | 4.3 |
| VLC | VideoLAN | 3.0.10.999998 and prior | CVE-2020-13428 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2020-13428 | 6.8 |
| Node.js LTS | Joyent, Inc. | 18.14.0.999998 and prior | CVE-2023-23919 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-23919 | |
| Node.js LTS | Joyent, Inc. | 18.14.0.999998 and prior | CVE-2023-23920 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-23920 | |
| Node.js LTS | Joyent, Inc. | 18.14.0.999998 and prior | CVE-2023-23918 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-23918 | |
| Node.js LTS | Joyent, Inc. | 18.14.0.999998 and prior | CVE-2023-23919 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-23919 | |
| Node.js LTS | Joyent, Inc. | 18.14.0.999998 and prior | CVE-2023-23920 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-23920 | |
| Node.js LTS | Joyent, Inc. | 18.14.0.999998 and prior | CVE-2023-23918 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-23918 | |
| kibana | Rashid Khan | 6.1.2.999998 and prior | CVE-2018-3820 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-3820 | 4.3 |
| kibana | Rashid Khan | 6.1.2.999998 and prior | CVE-2018-3821 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-3821 | 4.3 |
| sequelize | Sascha Depold | 7.0.0 and prior | CVE-2023-22578 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-22578 | |
| sequelize | Sascha Depold | 6.19.0.999998 and prior | CVE-2023-25813 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2023-25813 | |
| org.elasticsearch:elasticsearch | org.elasticsearch | 7.2.0.999998 and prior | CVE-2019-7614 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-7614 | 4.3 |
| org.apache.activemq:activemq-all | org.apache.activemq | 5.15.4.999998 and prior | CVE-2015-7559 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2015-7559 | 4.0 |
| org.apache.activemq:activemq-client | org.apache.activemq | 5.15.4.999998 and prior | CVE-2015-7559 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2015-7559 | 4.0 |
| org.apache.activemq:activemq-core | org.apache.activemq | 5.15.4.999998 and prior | CVE-2015-7559 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2015-7559 | 4.0 |
| org.jvnet.hudson.plugins:labmanager | org.jvnet.hudson.plugins | 0.2.8 and prior | CVE-2019-10382 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-10382 | 5.8 |
| org.jenkins-ci.plugins:labmanage | org.jenkins-ci.plugins | 0.2.8 and prior | CVE-2019-10382 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-10382 | 5.8 |
| io.jenkins:configuration-as-code | io.jenkins | 1.24 and prior | CVE-2019-10343 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-10343 | 2.1 |
| io.jenkins:configuration-as-code | io.jenkins | 1.26 and prior | CVE-2019-10367 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-10367 | 2.1 |
| org.jenkins-ci.plugins:configuration-as-code | org.jenkins-ci.plugins | 1.24 and prior | CVE-2019-10343 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-10343 | 2.1 |
| org.jenkins-ci.plugins:configuration-as-code | org.jenkins-ci.plugins | 1.26 and prior | CVE-2019-10367 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-10367 | 2.1 |
| TeamCity | JetBrains | 2022.10.1.999998 and prior | CVE-2022-48342 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2022-48342 | |
| TeamCity | JetBrains | 2022.10.1.999998 and prior | CVE-2022-48343 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2022-48343 | |
| TeamCity | JetBrains | 2022.10.1.999998 and prior | CVE-2022-48344 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2022-48344 | |
| org.quartz-scheduler.internal:quartz-core | org.quartz-scheduler.internal | 2.3.1 and prior | CVE-2019-13990 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2019-13990 | 7.5 |
| Xen | Linux Foundation | 4.13.1 and prior | CVE-2020-15565 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2020-15565 | 6.1 |
| Xen | Citrix Systems, Inc. | 4.13.1 and prior | CVE-2020-15565 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2020-15565 | 6.1 |
| Cisco Advanced Malware Protection for Endpoints | Cisco Systems, Inc. | 1.12.3.999998 and prior | CVE-2020-3350 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2020-3350 | 3.3 |
| QEMU | QEMU Team | 1.5.2.999998 and prior | CVE-2013-4536 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2013-4536 | 4.6 |
- ファイルアップロードの保護 – 10 のベストプラクティスで サイバー攻撃を防御
- MetaDefenderによる世界で最も危険なマルウェアEmotetの防御
- OPSWAT Expands Global Availability of Critical Infrastructure Protection
- OPSWAT Announces Expansion of Cybersecurity Training Program
- Avoiding storage data leaks and PII regulation noncompliance
- How OPSWAT Can Help Detect and Prevent the VMware WorkSpace ONE Access exploit (CVE-2020-4006)
- Protecting Critical Infrastructure from Advanced Cyberattacks
- MetaDefender Cloud Hash Reputation Database Now Exceeds 40 Billion
- OPSWAT Continues to Expand OESIS Framework with New Partners
- 6 Potential Security Gaps in File Transfer Process for Critical Infrastructure
Sign up for Blog updates
Get information and insight from the leaders in advanced threat prevention.