The OPSWAT Metadefender Vulnerability Engine identifies known application vulnerabilities and reports them by severity level. The Vulnerability Engine allows system administrators to identify vulnerabilities in files and data being brought into a secure network and on endpoints within a network, significantly expediting remediation of the issue.
Common Vulnerabilities and Exposures (CVE) is a catalog of publicly known cyber security vulnerabilities that's sponsored by the United States Department of Homeland Security. The first table below lists the new CVEs and product versions for which support was added to the Metadefender database during the week of September 5 - September 12, 2018. The second table lists the hashes and application installers for which support was added.
Newly Supported CVEs and Product Versions as of September 12, 2018
| PRODUCT | VENDOR | VERSION | CVE | CVE DETAILS | CVSS SCORE |
|---|---|---|---|---|---|
| Microsoft Office | Microsoft Corporation | 16 and prior | CVE-2018-8310 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-8310 | 5.0 |
| Microsoft Office | Microsoft Corporation | 16 and prior | CVE-2018-8281 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-8281 | 9.3 |
| Microsoft Word | Microsoft Corporation | 16 and prior | CVE-2018-8310 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-8310 | 5.0 |
| VLC media player | VideoLAN | 2.2.8 and prior | CVE-2018-11529 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-11529 | 6.8 |
| Microsoft Visual Studio | Microsoft Corporation | 2017 and prior | CVE-2018-8172 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-8172 | 9.3 |
| PHP | The PHP Group | 7.2.2 and prior | CVE-2018-7584 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-7584 | 7.5 |
| QEMU | QEMU Team | 2.8.0 and prior | CVE-2017-7980 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2017-7980 | 4.6 |
| QEMU | QEMU Team | 2.8.0 and prior | CVE-2017-2615 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2017-2615 | 9.0 |
| QEMU | QEMU Team | 2.7.9999.9998 and prior | CVE-2017-2620 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2017-2620 | 9.0 |
| QEMU | QEMU Team | 2.9.1 and prior | CVE-2017-15038 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2017-15038 | 1.9 |
| QEMU | QEMU Team | 3.0.0 and prior | CVE-2017-18043 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2017-18043 | 2.1 |
| QEMU | QEMU Team | 2.8.9998 and prior | CVE-2016-9602 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-9602 | 9.0 |
| QEMU | QEMU Team | 2.8.9999.9998 and prior | CVE-2016-9603 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2016-9603 | 9.0 |
| Microsoft Lync | Microsoft Corporation | 2013 and prior | CVE-2018-8238 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-8238 | 9.3 |
| Adobe Flash Player | Adobe Systems Inc. | 29.0.0.171 and prior | CVE-2018-5001 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-5001 | 4.3 |
| Adobe Flash Player | Adobe Systems Inc. | 29.0.0.171 and prior | CVE-2018-5000 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-5000 | 4.3 |
| Adobe Flash Player | Adobe Systems Inc. | 29.0.0.171 and prior | CVE-2018-4945 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-4945 | 6.8 |
| Adobe Flash Player | Adobe Systems Inc. | 29.0.0.171 and prior | CVE-2018-5001 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-5001 | 4.3 |
| Adobe Flash Player | Adobe Systems Inc. | 29.0.0.171 and prior | CVE-2018-5000 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-5000 | 4.3 |
| Adobe Flash Player | Adobe Systems Inc. | 29.0.0.171 and prior | CVE-2018-4945 | https://metadefender.opswat.com/vulnerabilities#!/CVE-2018-4945 | 6.8 |
Newly Supported Hashes as of September 12, 2018
| HASH | CVES |
|---|