VYPR

CVEs

101,963 total · page 1588 of 2,040

  • CVE-2019-2063HigSep 27, 2019
    risk 0.57cvss 8.8epss 0.01

    In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution in the media server with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions:…

  • CVE-2019-2062HigSep 27, 2019
    risk 0.57cvss 8.8epss 0.01

    In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117660045

  • CVE-2019-2061HigSep 27, 2019
    risk 0.57cvss 8.8epss 0.01

    In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112610994

  • CVE-2019-2059HigSep 27, 2019
    risk 0.57cvss 8.8epss 0.01

    In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-118386824

  • CVE-2019-2055HigSep 27, 2019
    risk 0.57cvss 8.8epss 0.01

    In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-113164693

  • CVE-2018-9425HigSep 27, 2019
    risk 0.51cvss 7.8epss 0.00

    In Platform, there is a possible bypass of user interaction requirements due to missing permission checks. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions:…

  • CVE-2019-16924HigSep 27, 2019
    risk 0.57cvss 8.8epss 0.01

    The Nulock application 1.5.0 for mobile devices sends a cleartext password over Bluetooth, which allows remote attackers (after sniffing the network) to take control of the lock.

  • CVE-2019-11755HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    A crafted S/MIME message consisting of an inner encryption layer and an outer SignedData layer was shown as having a valid digital signature, although the signer might have had no access to the contents of the encrypted message, and might have stripped a different signature from…

  • CVE-2019-11753HigSep 27, 2019
    risk 0.51cvss 7.8epss 0.00

    The Firefox installer allows Firefox to be installed to a custom user writable location, leaving it unprotected from manipulation by unprivileged users or malware. If the Mozilla Maintenance Service is manipulated to update this unprotected location and the updated maintenance…

  • CVE-2019-11752HigSep 27, 2019
    risk 0.57cvss 8.8epss 0.02

    It is possible to delete an IndexedDB key value and subsequently try to extract it during conversion. This results in a use-after-free and a potentially exploitable crash. This vulnerability affects Firefox < 69, Thunderbird < 68.1, Thunderbird < 60.9, Firefox ESR < 60.9, and…

  • CVE-2019-11751HigSep 27, 2019
    risk 0.57cvss 8.8epss 0.01

    Logging-related command line parameters are not properly sanitized when Firefox is launched by another program, such as when a user clicks on malicious links in a chat application. This can be used to write a log file to an arbitrary location such as the Windows 'Startup'…

  • CVE-2019-11746HigSep 27, 2019
    risk 0.57cvss 8.8epss 0.02

    A use-after-free vulnerability can occur while manipulating video elements if the body is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Firefox < 69, Thunderbird < 68.1, Thunderbird < 60.9, Firefox ESR < 60.9, and Firefox…

  • CVE-2019-11740HigSep 27, 2019
    risk 0.57cvss 8.8epss 0.02

    Mozilla developers and community members reported memory safety bugs present in Firefox 68, Firefox ESR 68, and Firefox 60.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary…

  • CVE-2019-11736HigSep 27, 2019
    risk 0.46cvss 7.0epss 0.00

    The Mozilla Maintenance Service does not guard against files being hardlinked to another file in the updates directory, allowing for the replacement of local files, including the Maintenance Service executable, which is run with privileged access. Additionally, there was a race…

  • CVE-2019-11735HigSep 27, 2019
    risk 0.57cvss 8.8epss 0.01

    Mozilla developers and community members reported memory safety bugs present in Firefox 68 and Firefox ESR 68. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This…

  • CVE-2019-9853HigSep 27, 2019
    risk 0.51cvss 7.8epss 0.03

    LibreOffice documents can contain macros. The execution of those macros is controlled by the document security settings, typically execution of macros are blocked by default. A URL decoding flaw existed in how the urls to the macros within the document were processed and…

  • CVE-2019-8075HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.03

    Adobe Flash Player version 32.0.0.192 and earlier versions have a Same Origin Policy Bypass vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.

  • CVE-2019-8072HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.07

    ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Security bypass vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.

  • CVE-2018-19592HigSep 27, 2019
    risk 0.51cvss 7.8epss 0.01

    The "CLink4Service" service is installed with Corsair Link 4.9.7.35 with insecure permissions by default. This allows unprivileged users to take control of the service and execute commands in the context of NT AUTHORITY\SYSTEM, leading to total system takeover, a similar issue…

  • CVE-2019-16921HigSep 27, 2019
    risk 0.42cvss 7.5epss 0.02

    In the Linux kernel before 4.17, hns_roce_alloc_ucontext in drivers/infiniband/hw/hns/hns_roce_main.c does not initialize the resp data structure, which might allow attackers to obtain sensitive information from kernel stack memory, aka CID-df7e40425813.

  • CVE-2019-16902HigSep 27, 2019
    risk 0.53cvss 7.5epss 0.10

    In the ARforms plugin 3.7.1 for WordPress, arf_delete_file in arformcontroller.php allows unauthenticated deletion of an arbitrary file by supplying the full pathname.

  • CVE-2019-11279HigSep 26, 2019
    risk 0.57cvss 8.8epss 0.01

    CF UAA versions prior to 74.1.0 can request scopes for a client that shouldn't be allowed by submitting an array of requested scopes. A remote malicious user can escalate their own privileges to any scope, allowing them to take control of UAA and the resources it controls.

  • CVE-2019-15862HigSep 26, 2019
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in CKFinder through 2.6.2.1. Improper checks of file names allows remote attackers to upload files without any extension (even if the application was configured to accept files only with a defined set of extensions). This affects CKFinder for ASP,…

  • CVE-2019-11278HigSep 26, 2019
    risk 0.57cvss 8.8epss 0.01

    CF UAA versions prior to 74.1.0, allow external input to be directly queried against. A remote malicious user with 'client.write' and 'groups.update' can craft a SCIM query, which leaks information that allows an escalation of privileges, ultimately allowing the malicious user…

  • CVE-2019-16667HigSep 26, 2019
    risk 0.65cvss 8.8epss 0.55

    diag_command.php in pfSense 2.4.4-p3 allows CSRF via the txtCommand or txtRecallBuffer field, as demonstrated by executing OS commands. This occurs because csrf_callback() produces a "CSRF token expired" error and a Try Again button when a CSRF token is missing.

  • CVE-2019-6175HigSep 26, 2019
    risk 0.49cvss 7.5epss 0.02

    A denial of service vulnerability was reported in Lenovo System Update versions prior to 5.07.0088 that could allow configuration files to be written to non-standard locations.

  • CVE-2019-6161HigSep 26, 2019
    risk 0.49cvss 7.5epss 0.01

    An internal product security audit discovered a session handling vulnerability in the web interface of ThinkAgile CP-SB (Storage Block) BMC in firmware versions prior to 1908.M. This vulnerability allows session IDs to be reused, which could provide unauthorized access to the…

  • CVE-2019-16869HigSep 26, 2019
    risk 0.49cvss 7.5epss 0.08

    Netty before 4.1.42.Final mishandles whitespace before the colon in HTTP headers (such as a "Transfer-Encoding : chunked" line), which leads to HTTP request smuggling.

  • CVE-2019-12091HigSep 26, 2019
    risk 0.51cvss 7.8epss 0.01

    The Netskope client service, v57 before 57.2.0.219 and v60 before 60.2.0.214, running with NT\SYSTEM privilege, accepts network connections from localhost. The connection handling function in this service suffers from command injection vulnerability. Local users can use this…

  • CVE-2019-10882HigSep 26, 2019
    risk 0.51cvss 7.8epss 0.00

    The Netskope client service, v57 before 57.2.0.219 and v60 before 60.2.0.214, running with NT\SYSTEM privilege, accepts network connections from localhost. The connection handling function in this service suffers from a stack based buffer overflow in "doHandshakefromServer"…

  • CVE-2019-10097HigSep 26, 2019
    risk 0.51cvss 7.2epss 0.53

    In Apache HTTP Server 2.4.32-2.4.39, when mod_remoteip was configured to use a trusted intermediary proxy server using the "PROXY" protocol, a specially crafted PROXY header could trigger a stack buffer overflow or NULL pointer deference. This vulnerability could only be…

  • CVE-2019-0203HigSep 26, 2019
    risk 0.49cvss 7.5epss 0.03

    In Apache Subversion versions up to and including 1.9.10, 1.10.4, 1.12.0, Subversion's svnserve server process may exit when a client sends certain sequences of protocol commands. This can lead to disruption for users of the server.

  • CVE-2019-14844HigSep 26, 2019
    risk 0.00cvss 7.5epss 0.04

    A flaw was found in, Fedora versions of krb5 from 1.16.1 to, including 1.17.x, in the way a Kerberos client could crash the KDC by sending one of the RFC 4556 "enctypes". A remote unauthenticated user could use this flaw to crash the KDC.

  • CVE-2015-9448HigSep 26, 2019
    risk 0.57cvss 8.8epss 0.02

    The sendpress plugin before 1.2 for WordPress has SQL Injection via the wp-admin/admin.php?page=sp-queue listid parameter.

  • CVE-2015-9446HigSep 26, 2019
    risk 0.57cvss 8.8epss 0.02

    The unite-gallery-lite plugin before 1.5 for WordPress has SQL injection via data[galleryID] to wp-admin/admin-ajax.php.

  • CVE-2015-9445HigSep 26, 2019
    risk 0.57cvss 8.8epss 0.01

    The unite-gallery-lite plugin before 1.5 for WordPress has CSRF and SQL injection via wp-admin/admin-ajax.php in a unitegallery_ajax_action operation.

  • CVE-2019-16901HigSep 26, 2019
    risk 0.49cvss 7.5epss 0.01

    Advantech WebAccess/HMI Designer 2.1.9.31 has Exception Handler Chain corruption starting at Unknown Symbol @ 0x0000000000000000 called from ntdll!RtlRaiseStatus+0x00000000000000b4.

  • CVE-2019-16900HigSep 26, 2019
    risk 0.49cvss 7.5epss 0.01

    Advantech WebAccess/HMI Designer 2.1.9.31 has a User Mode Write AV starting at MSVCR90!memcpy+0x000000000000015c.

  • CVE-2019-16899HigSep 26, 2019
    risk 0.49cvss 7.5epss 0.01

    In Advantech WebAccess/HMI Designer 2.1.9.31, Data from a Faulting Address controls Code Flow starting at PM_V3!CTagInfoThreadBase::GetNICInfo+0x0000000000512918.

  • CVE-2015-9449HigSep 26, 2019
    risk 0.47cvss 7.2epss 0.02

    The microblog-poster plugin before 1.6.2 for WordPress has SQL Injection via the wp-admin/options-general.php?page=microblogposter.php account_id parameter.

  • CVE-2015-9415HigSep 26, 2019
    risk 0.49cvss 7.5epss 0.03

    The bj-lazy-load plugin before 1.0 for WordPress has Remote File Inclusion.

  • CVE-2019-16253HigSep 25, 2019
    risk 0.51cvss 7.8epss 0.01

    The Text-to-speech Engine (aka SamsungTTS) application before 3.0.02.7 and 3.0.00.101 for Android allows a local attacker to escalate privileges, e.g., to system privileges. The Samsung case ID is 101755.

  • CVE-2019-12717HigSep 25, 2019
    risk 0.51cvss 7.8epss 0.00

    A vulnerability in a CLI command related to the virtualization manager (VMAN) in Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with root privileges. The vulnerability is due to…

  • CVE-2019-12671HigSep 25, 2019
    risk 0.51cvss 7.8epss 0.00

    A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to gain shell access on an affected device and execute commands on the underlying operating system (OS). The vulnerability is due to insufficient enforcement of the consent token in…

  • CVE-2019-12669HigSep 25, 2019
    risk 0.49cvss 7.5epss 0.02

    A vulnerability in the RADIUS Change of Authorization (CoA) code of Cisco TrustSec, a feature within Cisco IOS XE Software, could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper…

  • CVE-2019-12665HigSep 25, 2019
    risk 0.48cvss 7.4epss 0.01

    A vulnerability in the HTTP client feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to read and modify data that should normally have been sent via an encrypted channel. The vulnerability is due to TCP port information not being considered…

  • CVE-2019-12664HigSep 25, 2019
    risk 0.49cvss 7.5epss 0.01

    A vulnerability in the Dialer interface feature for ISDN connections in Cisco IOS XE Software for Cisco 4000 Series Integrated Services Routers (ISRs) could allow an unauthenticated, adjacent attacker to pass IPv4 traffic through an ISDN channel prior to successful PPP…

  • CVE-2019-12663HigSep 25, 2019
    risk 0.56cvss 8.6epss 0.02

    A vulnerability in the Cisco TrustSec (CTS) Protected Access Credential (PAC) provisioning module of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability…

  • CVE-2019-12659HigSep 25, 2019
    risk 0.49cvss 7.5epss 0.02

    A vulnerability in the HTTP server code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the HTTP server to crash. The vulnerability is due to a logical error in the logging mechanism. An attacker could exploit this vulnerability by generating a…

  • CVE-2019-12658HigSep 25, 2019
    risk 0.49cvss 7.5epss 0.02

    A vulnerability in the filesystem resource management code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to exhaust filesystem resources on an affected device and cause a denial of service (DoS) condition. The vulnerability is due to ineffective…