How severe is CVE-2018-7119?

This vulnerability has a severity rating of HIGH with a CVSS score of 7 out of 10.

What type of vulnerability is CVE-2018-7119?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2018-7119 - HIGH Severity | CVSS 7

Vulnerability Description

A Local Disclosure of Sensitive Information vulnerability was identified in HPE NonStop Safeguard earlier than version SPR T9750L01^AIC or T9750H05^AIH, and later versions when the PASSWORD-PROMPT configuration attribute is not set to BLIND; all versions on H-series. STDSEC-STANDARD SECURITY PROD All prior versions before T6533L01^ADU or T6533H05^ADW, and later versions when the PASSWORD-PROMPT configuration attribute is not set to BLIND and all versions on H-series . Note that some commands in NonStop Safeguard and NonStop Standard Security software require username and password to be passed as command line parameters, which may lead to a local disclosure of the credentials.

Related Vulnerabilities

CVE-2015-8543

HIGH

CVSS:7.0(High)

The networking implementation in the Linux kernel through 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol families, which allows local users t...

NVD-CWE-Other2015

CVE-2016-3584

HIGH

CVSS:7.0(High)

Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect confidentiality, integrity, and availability via vectors related to Libadimalloc.

NVD-CWE-Other2016

CVE-2016-4558

HIGH

CVSS:7.0(High)

The BPF subsystem in the Linux kernel before 4.5.5 mishandles reference counts, which allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a c...

NVD-CWE-Other2016

CVE-2016-4639

HIGH

CVSS:7.0(High)

Login Window in Apple OS X before 10.11.6 does not properly initialize memory, which allows local users to cause a denial of service via unspecified vectors.

NVD-CWE-Other2016

CVE-2016-5625

HIGH

CVSS:7.0(High)

Unspecified vulnerability in Oracle MySQL 5.7.14 and earlier allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Packaging.

NVD-CWE-Other2016

CVE-2017-0155

HIGH

CVSS:7.0(High)

The Graphics component in the kernel in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; and Windows 7 SP1 allows local users to gain privileges via a crafted application, aka "Windows...

NVD-CWE-Other2017