VYPR

CVEs

1,630 total · page 23 of 33

  • CVE-2019-7286KEVDec 18, 2019
    risk 0.15cvss epss 0.16

    A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4, macOS Mojave 10.14.3 Supplemental Update. An application may be able to gain elevated privileges.

  • CVE-2019-7287KEVDec 18, 2019
    risk 0.12cvss epss 0.05

    A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4. An application may be able to execute arbitrary code with kernel privileges.

  • CVE-2019-4716KEVDec 18, 2019
    risk 0.22cvss epss 0.86

    IBM Planning Analytics 2.0.0 through 2.0.8 is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "admin", and then execute code as root or SYSTEM via TM1 scripting. IBM X-Force ID: 172094.

  • CVE-2019-7481KEVDec 17, 2019
    risk 0.26cvss epss 1.00

    Vulnerability in SonicWall SMA100 allow unauthenticated user to gain read-only access to unauthorized resources. This vulnerablity impacted SMA100 version 9.0.0.3 and earlier.

  • CVE-2019-18935KEVDec 11, 2019
    risk 0.28cvss epss 1.00

    Progress Telerik UI for ASP.NET AJAX through 2019.3.1023 contains a .NET deserialization vulnerability in the RadAsyncUpload function. This is exploitable when the encryption keys are known due to the presence of CVE-2017-11317 or CVE-2017-11357, or other means. Exploitation can…

  • CVE-2019-1458KEVDec 10, 2019
    risk 0.28cvss epss 0.74

    An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'.

  • CVE-2019-5544KEVDec 6, 2019
    risk 0.25cvss epss 0.97

    OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.

  • CVE-2019-7195KEVDec 5, 2019
    risk 0.29cvss epss 0.90

    This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fix the vulnerability, QNAP recommend updating Photo Station to their latest versions.

  • CVE-2019-7194KEVDec 5, 2019
    risk 0.29cvss epss 0.83

    This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fix the vulnerability, QNAP recommend updating Photo Station to their latest versions.

  • CVE-2019-7193KEVDec 5, 2019
    risk 0.20cvss epss 0.14

    This improper input validation vulnerability allows remote attackers to inject arbitrary code to the system. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.

  • CVE-2019-7192KEVDec 5, 2019
    risk 0.29cvss epss 0.88

    This improper access control vulnerability allows remote attackers to gain unauthorized access to the system. To fix these vulnerabilities, QNAP recommend updating Photo Station to their latest versions.

  • CVE-2019-15271KEVNov 26, 2019
    risk 0.12cvss epss 0.06

    A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The attacker must have either a valid credential or an active session token.…

  • CVE-2019-5825KEVNov 25, 2019
    risk 0.21cvss epss 0.56

    Out of bounds write in JavaScript in Google Chrome prior to 73.0.3683.86 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-13720KEVNov 25, 2019
    risk 0.22cvss epss 0.73

    Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2019-19006KEVNov 21, 2019
    risk 0.14cvss epss 0.37

    Sangoma FreePBX 115.0.16.26 and below, 14.0.13.11 and below, 13.0.197.13 and below have Incorrect Access Control.

  • CVE-2019-6693KEVNov 21, 2019
    risk 0.24cvss epss 0.05

    Use of a hard-coded cryptographic key to cipher sensitive data in FortiOS configuration backup file may allow an attacker with access to the backup file to decipher the sensitive data, via knowledge of the hard-coded key. The aforementioned sensitive data includes users'…

  • CVE-2019-1429KEVNov 12, 2019
    risk 0.22cvss epss 0.73

    A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1426, CVE-2019-1427, CVE-2019-1428.

  • CVE-2019-1405KEVNov 12, 2019
    risk 0.25cvss epss 0.30

    An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka 'Windows UPnP Service Elevation of Privilege Vulnerability'.

  • CVE-2019-1388KEVNov 12, 2019
    risk 0.19cvss epss 0.09

    An elevation of privilege vulnerability exists in the Windows Certificate Dialog when it does not properly enforce user privileges, aka 'Windows Certificate Dialog Elevation of Privilege Vulnerability'.

  • CVE-2019-1385KEVNov 12, 2019
    risk 0.18cvss epss 0.04

    An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application to…

  • CVE-2019-18187KEVOct 28, 2019
    risk 0.18cvss epss 0.25

    Trend Micro OfficeScan versions 11.0 and XG (12.0) could be exploited by an attacker utilizing a directory traversal vulnerability to extract files from an arbitrary zip file to a specific folder on the OfficeScan server, which could potentially lead to remote code execution…

  • CVE-2019-11043KEVOct 28, 2019
    risk 0.29cvss epss 0.99

    In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space reserved for FCGI protocol data, thus opening the possibility of remote code…

  • CVE-2019-3010KEVOct 16, 2019
    risk 0.19cvss epss 0.14

    Vulnerability in the Oracle Solaris product of Oracle Systems (component: XScreenSaver). The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise…

  • CVE-2019-16278KEVOct 14, 2019
    risk 0.23cvss epss 0.99

    Directory Traversal in the function http_verify in nostromo nhttpd through 1.9.6 allows an attacker to achieve remote code execution via a crafted HTTP request.

  • CVE-2019-2215KEVOct 11, 2019
    risk 0.19cvss epss 0.72

    A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate…

  • CVE-2019-1322KEVOct 10, 2019
    risk 0.24cvss epss 0.19

    An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1320, CVE-2019-1340.

  • CVE-2019-1315KEVOct 10, 2019
    risk 0.19cvss epss 0.03

    An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1339, CVE-2019-1342.

  • CVE-2019-16928KEVSep 27, 2019
    risk 0.19cvss epss 0.42

    Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846. There is a heap-based buffer overflow in string_vformat in string.c involving a long EHLO command.

  • CVE-2019-16920KEVSep 27, 2019
    risk 0.20cvss epss 1.00

    Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. The issue occurs when the attacker sends an arbitrary input to a "PingTest" device common gateway interface that could lead to common injection. An attacker who…

  • CVE-2019-16759KEVSep 24, 2019
    risk 0.23cvss epss 1.00

    vBulletin 5.x through 5.5.4 allows remote command execution via the widgetConfig[code] parameter in an ajax/render/widget_php routestring request.

  • CVE-2019-1367KEVSep 23, 2019
    risk 0.25cvss epss 0.53

    A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1221.

  • CVE-2019-16057KEVSep 16, 2019
    risk 0.26cvss epss 0.87

    The login_mgr.cgi script in D-Link DNS-320 through 2.05.B10 is vulnerable to remote command injection.

  • CVE-2019-16256KEVSep 12, 2019
    risk 0.17cvss epss 0.05

    Some Samsung devices include the SIMalliance Toolbox Browser (aka S@T Browser) on the UICC, which might allow remote attackers to retrieve location and IMEI information, or retrieve other data or execute certain commands, via SIM Toolkit (STK) instructions in an SMS message, aka…

  • CVE-2019-1297KEVSep 11, 2019
    risk 0.15cvss epss 0.20

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.

  • CVE-2019-1253KEVSep 11, 2019
    risk 0.23cvss epss 0.12

    An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID…

  • CVE-2019-1215KEVSep 11, 2019
    risk 0.21cvss epss 0.19

    An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1253, CVE-2019-1278, CVE-2019-1303.

  • CVE-2019-1214KEVSep 11, 2019
    risk 0.12cvss epss 0.01

    An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.

  • CVE-2019-15949KEVSep 5, 2019
    risk 0.22cvss epss 0.78

    Nagios XI before 5.6.6 allows remote command execution as root. The exploit requires access to the server as the nagios user, or access as the admin user via the web interface. The getprofile.sh script, invoked by downloading a system profile (profile.php?cmd=download), is…

  • CVE-2019-13608KEVAug 29, 2019
    risk 0.24cvss epss 0.30

    Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 (3.12.4000), and 7.6 LTSR before CU8 (3.0.8000) allows XXE attacks.

  • CVE-2019-15752KEVAug 28, 2019
    risk 0.19cvss epss 0.30

    Docker Desktop Community Edition before 2.1.0.1 allows local users to gain privileges by placing a Trojan horse docker-credential-wincred.exe file in %PROGRAMDATA%\DockerDesktop\version-bin\ as a low-privilege user, and then waiting for an admin or service user to authenticate…

  • CVE-2019-15107KEVAug 16, 2019
    risk 0.29cvss epss 1.00

    An issue was discovered in Webmin <=1.920. The parameter old in password_change.cgi contains a command injection vulnerability.

  • CVE-2019-0344KEVAug 14, 2019
    risk 0.15cvss epss 0.07

    Due to unsafe deserialization used in SAP Commerce Cloud (virtualjdbc extension), versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, it is possible to execute arbitrary code on a target machine with 'Hybris' user rights, resulting in Code Injection.

  • CVE-2019-11581KEVAug 9, 2019
    risk 0.20cvss epss 0.85

    There was a server-side template injection vulnerability in Jira Server and Data Center, in the ContactAdministrators and the SendBulkMail actions. An attacker is able to remotely execute code on systems that run a vulnerable version of Jira Server or Data Center. All versions…

  • CVE-2019-0193KEVAug 1, 2019
    risk 0.12cvss epss 0.84

    In Apache Solr, the DataImportHandler, an optional but popular module to pull in data from databases and other sources, has a feature in which the whole DIH configuration can come from a request's "dataConfig" parameter. The debug mode of the DIH admin screen uses this to allow…

  • CVE-2019-1132KEVJul 29, 2019
    risk 0.18cvss epss 0.10

    An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'.

  • CVE-2019-1130KEVJul 29, 2019
    risk 0.18cvss epss 0.02

    An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1129.

  • CVE-2019-1129KEVJul 29, 2019
    risk 0.18cvss epss 0.02

    An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1130.

  • CVE-2019-11707KEVJul 23, 2019
    risk 0.22cvss epss 0.38

    A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 60.7.1, Firefox < 67.0.3,…

  • CVE-2019-11708KEVJul 23, 2019
    risk 0.21cvss epss 0.56

    Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result…

  • CVE-2019-1579KEVJul 19, 2019
    risk 0.25cvss epss 0.39

    Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11-h1 and earlier, and PAN-OS 8.1.2 and earlier with GlobalProtect Portal or GlobalProtect Gateway Interface enabled may allow an unauthenticated remote attacker to execute arbitrary code.