VYPR

CVEs

101,975 total · page 1562 of 2,040

  • CVE-2014-2902HigNov 21, 2019
    risk 0.49cvss 7.5epss 0.01

    wolfssl before 3.2.0 does not properly authorize CA certificate for signing other certificates.

  • CVE-2014-2901HigNov 21, 2019
    risk 0.49cvss 7.5epss 0.01

    wolfssl before 3.2.0 does not properly issue certificates for a server's hostname.

  • CVE-2019-19207HigNov 21, 2019
    risk 0.59cvss 8.8epss 0.23

    rConfig 3.9.2 allows devices.php?searchColumn= SQL injection.

  • CVE-2015-3140HigNov 21, 2019
    risk 0.60cvss 8.8epss 0.01

    Multiple cross-site request forgery (CSRF) vulnerabilities in Synametrics Technologies SynaMan before 3.5 Build 1451, Syncrify before 3.7 Build 856, and SynTail before 1.5 Build 567

  • CVE-2014-8356HigNov 21, 2019
    risk 0.61cvss 8.8epss 0.06

    The web administrative portal in Zhone zNID 2426A before S3.0.501 allows remote authenticated users to bypass intended access restrictions via a modified server response, related to an insecure direct object reference.

  • CVE-2019-19204HigNov 21, 2019
    risk 0.42cvss 7.5epss 0.07

    An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function fetch_interval_quantifier (formerly known as fetch_range_quantifier) in regparse.c, PFETCH is called without checking PEND. This leads to a heap-based buffer over-read.

  • CVE-2019-19203HigNov 21, 2019
    risk 0.42cvss 7.5epss 0.04

    An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function gb18030_mbc_enc_len in file gb18030.c, a UChar pointer is dereferenced without checking if it passed the end of the matched string. This leads to a heap-based buffer over-read.

  • CVE-2019-5637HigNov 21, 2019
    risk 0.49cvss 7.5epss 0.01

    When Beckhoff TwinCAT is configured to use the Profinet driver, a denial of service of the controller could be reached by sending a malformed UDP packet to the device. This issue affects TwinCAT 2 version 2304 (and prior) and TwinCAT 3.1 version 4204.0 (and prior).

  • CVE-2019-19202HigNov 21, 2019
    risk 0.57cvss 8.8epss 0.01

    In Vtiger 7.x before 7.2.0, the My Preferences saving functionality allows a user without administrative privileges to change his own role by adding roleid=H2 to a POST request.

  • CVE-2013-3314HigNov 21, 2019
    risk 0.52cvss 7.5epss 0.07

    The Loftek Nexus 543 IP Camera allows remote attackers to obtain (1) IP addresses via a request to get_realip.cgi or (2) firmware versions (ui and system), timestamp, serial number, p2p port number, and wifi status via a request to get_status.cgi.

  • CVE-2013-3313HigNov 21, 2019
    risk 0.49cvss 7.5epss 0.03

    The Loftek Nexus 543 IP Camera stores passwords in cleartext, which allows remote attackers to obtain sensitive information via an HTTP GET request to check_users.cgi. NOTE: cleartext passwords can also be obtained from proc/kcore when leveraging the directory traversal…

  • CVE-2013-3312HigNov 21, 2019
    risk 0.57cvss 8.8epss 0.01

    Multiple cross-site request forgery (CSRF) vulnerabilities in the Loftek Nexus 543 IP Camera allow remote attackers to hijack the authentication of unspecified victims for requests that change (1) passwords or (2) firewall configuration, as demonstrated by a request to…

  • CVE-2013-3311HigNov 21, 2019
    risk 0.49cvss 7.5epss 0.04

    Directory traversal vulnerability in the Loftek Nexus 543 IP Camera allows remote attackers to read arbitrary files via a .. (dot dot) in the URL of an HTTP GET request.

  • CVE-2019-19197HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.01

    IOCTL Handling in the kyrld.sys driver in Kyrol Internet Security 9.0.6.9 allows an attacker to achieve privilege escalation, denial-of-service, and code execution via usermode because 0x9C402401 using METHOD_NEITHER results in a read primitive.

  • CVE-2019-19191HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    Shibboleth Service Provider (SP) 3.x before 3.1.0 shipped a spec file that calls chown on files in a directory controlled by the service user (the shibd account) after installation. This allows the user to escalate to root by pointing symlinks to files such as /etc/shadow.

  • CVE-2019-16758HigNov 21, 2019
    risk 0.53cvss 7.5epss 0.17

    In Lexmark Services Monitor 2.27.4.0.39 (running on TCP port 2070), a remote attacker can use a directory traversal technique using /../../../ or ..%2F..%2F..%2F to obtain local files on the host operating system.

  • CVE-2019-16406HigNov 21, 2019
    risk 0.44cvss 7.8epss 0.00

    Centreon Web 19.04.4 has weak permissions within the OVA (aka VMware virtual machine) and OVF (aka VirtualBox virtual machine) files, allowing attackers to gain privileges via a Trojan horse Centreon-autodisco executable file that is launched by cron.

  • CVE-2019-16405HigNov 21, 2019
    risk 0.45cvss 7.2epss 0.27

    Centreon Web before 2.8.30, 18.10.x before 18.10.8, 19.04.x before 19.04.5 and 19.10.x before 19.10.2 allows Remote Code Execution by an administrator who can modify Macro Expression location settings. CVE-2019-16405 and CVE-2019-17501 are similar to one another and may be the…

  • CVE-2019-15511HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.01

    An exploitable local privilege escalation vulnerability exists in the GalaxyClientService installed by GOG Galaxy. Due to Improper Access Control, an attacker can send unauthenticated local TCP packets to the service to gain SYSTEM privileges in Windows system where GOG Galaxy…

  • CVE-2019-5072HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.02

    An exploitable command injection vulnerability exists in the /goform/WanParameterSetting functionality of Tenda AC9 Router AC1200 Smart Dual-Band Gigabit WiFi Route (AC9V1.0 Firmware V15.03.05.16multiTRU). A specially crafted HTTP POST request can cause a command injection in…

  • CVE-2019-5071HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.02

    An exploitable command injection vulnerability exists in the /goform/WanParameterSetting functionality of Tenda AC9 Router AC1200 Smart Dual-Band Gigabit WiFi Route (AC9V1.0 Firmware V15.03.05.16multiTRU). A specially crafted HTTP POST request can cause a command injection in…

  • CVE-2019-10767HigNov 21, 2019
    risk 0.42cvss 7.5epss 0.02

    An attacker can include file contents from outside the `/adapter/xxx/` directory, where `xxx` is the name of an existent adapter like "admin". It is exploited using the administrative web panel with a request for an adapter file. **Note:** The attacker has to be logged in if the…

  • CVE-2019-5087HigNov 21, 2019
    risk 0.57cvss 8.8epss 0.04

    An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools 1.0.7. An integer overflow can occur while calculating the row's allocation size, that could be exploited to corrupt memory and eventually…

  • CVE-2019-5086HigNov 21, 2019
    risk 0.57cvss 8.8epss 0.03

    An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools, version 1.0.7. An integer overflow can occur while walking through tiles that could be exploited to corrupt memory and execute arbitrary…

  • CVE-2019-17650HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    An Improper Neutralization of Special Elements used in a Command vulnerability in one of FortiClient for Mac OS root processes, may allow a local user of the system on which FortiClient is running to execute unauthorized code as root by bypassing a security check.

  • CVE-2019-17272HigNov 21, 2019
    risk 0.47cvss 7.2epss 0.01

    All versions of ONTAP Select Deploy administration utility are susceptible to a vulnerability which when successfully exploited could allow an administrative user to escalate their privileges.

  • CVE-2019-2339HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    Out of bound access due to lack of check of whiltelist array size while reading the image elf segments. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and…

  • CVE-2019-2335HigNov 21, 2019
    risk 0.49cvss 7.5epss 0.01

    While processing Attach Reject message, Valid exit condition is not met resulting into an infinite loop in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables…

  • CVE-2019-2329HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    Use after free issue in cleanup routine due to missing pointer sanitization for a failed start of a trusted application. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205,…

  • CVE-2019-2315HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    While invoking the API to copy from fd or local buffer to the secure buffer, Parameters being populated are from non secure environment. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,…

  • CVE-2019-2297HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    Buffer overflow can occur while processing non-standard NAN message from user space. in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure…

  • CVE-2019-2266HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    Possible double free issue in kernel while handling the camera sensor and its sub modules power sequence in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired…

  • CVE-2019-2251HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer…

  • CVE-2019-18958HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.01

    Nitro Pro before 13.2 creates a debug.log file in the directory where a .pdf file is located, if the .pdf document was produced by an OCR operation on the JPEG output of a scanner. Reportedly, this can have a security risk if debug.log is later edited and then executed.

  • CVE-2019-17421HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.01

    Incorrect file permissions on the packaged Nipper executable file in Zoho ManageEngine OpManager 12.4.072 and Firewall Analyzer 12.4.072 allow local users to elevate privileges to root by overwriting this file with a malicious payload.

  • CVE-2019-16548HigNov 21, 2019
    risk 0.50cvss 8.8epss 0.01

    A cross-site request forgery vulnerability in Jenkins Google Compute Engine Plugin 4.1.1 and earlier in ComputeEngineCloud#doProvision could be used to provision new agents.

  • CVE-2019-16544HigNov 21, 2019
    risk 0.57cvss 8.8epss 0.01

    Jenkins QMetry for JIRA - Test Management Plugin 1.12 and earlier stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system.

  • CVE-2019-16538HigNov 21, 2019
    risk 0.50cvss 8.8epss 0.01

    A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.67 and earlier related to the handling of default parameter expressions in closures allowed attackers to execute arbitrary code in sandboxed scripts.

  • CVE-2019-10617HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    Low privilege users can access service configuration which contains registry data that admins uses to create or delete entries in the registry in QCA6174_9377.WIN.1.0 in QCA6174_9377

  • CVE-2019-10566HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    Buffer overflow can occur in wlan module if supported rates or extended rates element length is greater than max rate set length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon…

  • CVE-2019-10563HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    Buffer over-read can occur in fast message handler due to improper input validation while processing a message from firmware in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice…

  • CVE-2019-10503HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds access can occur in camera driver due to improper validation of array index in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in…

  • CVE-2019-10486HigNov 21, 2019
    risk 0.46cvss 7.0epss 0.00

    Race condition due to the lack of resource lock which will be concurrently modified in the memcpy statement leads to out of bound access in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,…

  • CVE-2018-13916HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds memory access in Qurt kernel function when using the identifier to access Qurt kernel buffer to retrieve thread data. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon…

  • CVE-2014-1937HigNov 21, 2019
    risk 0.49cvss 7.5epss 0.01

    Gamera before 3.4.1 insecurely creates temporary files.

  • CVE-2014-1936HigNov 21, 2019
    risk 0.49cvss 7.5epss 0.01

    rc before 1.7.1-5 insecurely creates temporary files.

  • CVE-2012-4524HigNov 21, 2019
    risk 0.49cvss 7.5epss 0.03

    xlockmore before 5.43 'dclock' security bypass vulnerability

  • CVE-2013-7172HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.00

    Slackware 13.1, 13.37, 14.0 and 14.1 contain world-writable permissions on the iodbctest and iodbctestw programs within the libiodbc package, which could allow local users to use RPATH information to execute arbitrary code with root privileges.

  • CVE-2012-3543HigNov 21, 2019
    risk 0.42cvss 7.5epss 0.03

    mono 2.10.x ASP.NET Web Form Hash collision DoS

  • CVE-2012-2350HigNov 21, 2019
    risk 0.42cvss 7.5epss 0.01

    pam_shield before 0.9.4: Default configuration does not perform protective action