VYPR

CVEs

101,963 total · page 1597 of 2,040

  • CVE-2019-1968HigAug 30, 2019
    risk 0.49cvss 7.5epss 0.02

    A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an NX-API system process to unexpectedly restart. The vulnerability is due to incorrect validation of the HTTP header of a request that is sent to the NX-API.…

  • CVE-2019-1967HigAug 30, 2019
    risk 0.49cvss 7.5epss 0.02

    A vulnerability in the Network Time Protocol (NTP) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to excessive use of system resources when the affected…

  • CVE-2019-1966HigAug 30, 2019
    risk 0.51cvss 7.8epss 0.00

    A vulnerability in a specific CLI command within the local management (local-mgmt) context for Cisco UCS Fabric Interconnect Software could allow an authenticated, local attacker to gain elevated privileges as the root user on an affected device. The vulnerability is due to…

  • CVE-2019-13526HigAug 30, 2019
    risk 0.57cvss 8.8epss 0.02

    Datalogic AV7000 Linear barcode scanner all versions prior to 4.6.0.0 is vulnerable to authentication bypass, which may allow an attacker to remotely execute arbitrary code.

  • CVE-2019-12402HigAug 30, 2019
    risk 0.50cvss 7.5epss 0.16

    The file name encoding algorithm used internally in Apache Commons Compress 1.15 to 1.18 can get into an infinite loop when faced with specially crafted inputs. This can lead to a denial of service attack if an attacker can choose the file names inside of an archive created by…

  • CVE-2019-8461HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.01

    Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location…

  • CVE-2019-11364HigAug 29, 2019
    risk 0.47cvss 7.2epss 0.02

    An OS Command Injection vulnerability in Snare Central before 7.4.5 allows remote authenticated attackers to inject arbitrary OS commands via the ServerConf/DataManagement/DiskManager.php FORMNAS_share parameter.

  • CVE-2019-11363HigAug 29, 2019
    risk 0.47cvss 7.2epss 0.01

    A SQL injection vulnerability in Snare Central before 7.4.5 allows remote authenticated attackers to execute arbitrary SQL commands via the AgentConsole/UserGroupQuery.php ShowUser parameter.

  • CVE-2019-11396HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in Avira Free Security Suite 10. The permissive access rights on the SoftwareUpdater folder (files / folders and configuration) are incompatible with the privileged file manipulation performed by the product. Files can be created that can be used by an…

  • CVE-2019-14970HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.02

    A vulnerability in mkv::event_thread_t in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer overflow via a crafted .mkv file.

  • CVE-2019-14778HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.01

    The mkv::virtual_segment_c::seek method of demux/mkv/virtual_segment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free.

  • CVE-2019-14777HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.01

    The Control function of demux/mkv/mkv.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free.

  • CVE-2019-14776HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.01

    A heap-based buffer over-read exists in DemuxInit() in demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 via a crafted .mkv file.

  • CVE-2019-14533HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.01

    The Control function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 has a use-after-free.

  • CVE-2019-13608HigKEVAug 29, 2019
    risk 0.69cvss 7.5epss 0.30

    Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 (3.12.4000), and 7.6 LTSR before CU8 (3.0.8000) allows XXE attacks.

  • CVE-2019-14535HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.01

    A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file.

  • CVE-2019-14498HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.02

    A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file.

  • CVE-2019-14438HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.02

    A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg file.

  • CVE-2019-14437HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.01

    The xiph_SplitHeaders function in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 does not check array bounds properly. As a result, a heap-based buffer over-read can be triggered via a crafted .ogg file.

  • CVE-2019-15502HigAug 29, 2019
    risk 0.49cvss 7.5epss 0.02

    The TeamSpeak client before 3.3.2 allows remote servers to trigger a crash via the 0xe2 0x81 0xa8 0xe2 0x81 0xa7 byte sequence, aka Unicode characters U+2068 (FIRST STRONG ISOLATE) and U+2067 (RIGHT-TO-LEFT ISOLATE).

  • CVE-2019-7307HigAug 29, 2019
    risk 0.46cvss 7.0epss 0.00

    Apport before versions 2.14.1-0ubuntu3.29+esm1, 2.20.1-0ubuntu2.19, 2.20.9-0ubuntu7.7, 2.20.10-0ubuntu27.1, 2.20.11-0ubuntu5 contained a TOCTTOU vulnerability when reading the users ~/.apport-ignore.xml file, which allows a local attacker to replace this file with a symlink to…

  • CVE-2019-3394HigAug 29, 2019
    risk 0.58cvss 8.8epss 0.11

    There was a local file disclosure vulnerability in Confluence Server and Confluence Data Center via page exporting. An attacker with permission to editing a page is able to exploit this issue to read arbitrary file on the server under /confluence/WEB-INF…

  • CVE-2019-15781HigAug 29, 2019
    risk 0.57cvss 8.8epss 0.01

    The facebook-by-weblizar plugin before 2.8.5 for WordPress has CSRF.

  • CVE-2019-15779HigAug 29, 2019
    risk 0.57cvss 8.8epss 0.01

    The insta-gallery plugin before 2.4.8 for WordPress has no nonce validation for qligg_dismiss_notice or qligg_form_item_delete.

  • CVE-2019-15745HigAug 29, 2019
    risk 0.57cvss 8.8epss 0.01

    The Eques elf smart plug and the mobile app use a hardcoded AES 256 bit key to encrypt the commands and responses between the device and the app. The communication happens over UDP port 27431. An attacker on the local network can use the same key to encrypt and send commands to…

  • CVE-2019-15787HigAug 29, 2019
    risk 0.00cvss 7.5epss 0.01

    libZetta.rs through 0.1.2 has an integer overflow in the zpool parser (for error stats) that leads to a panic.

  • CVE-2019-15770HigAug 29, 2019
    risk 0.57cvss 8.8epss 0.01

    The woo-address-book plugin before 1.6.0 for WordPress has save calls without nonce verification checks.

  • CVE-2019-15769HigAug 29, 2019
    risk 0.57cvss 8.8epss 0.01

    The handl-utm-grabber plugin before 2.6.5 for WordPress has CSRF via add_option and update_option.

  • CVE-2019-15767HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.01

    In GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmd_load function in frontend/cmd.cc via a crafted chess position in an EPD file.

  • CVE-2019-5530HigAug 29, 2019
    risk 0.51cvss 7.8epss 0.01

    Windows binaries generated with InstallBuilder versions earlier than 19.7.0 are vulnerable to tampering even if they contain a valid Authenticode signature.

  • CVE-2019-13408HigAug 29, 2019
    risk 0.49cvss 7.5epss 0.02

    A relative path traversal vulnerability found in Advan VD-1 firmware versions up to 230. It allows attackers to download arbitrary files via url cgibin/ExportSettings.cgi?Download=filepath, without any authentication.

  • CVE-2019-13406HigAug 29, 2019
    risk 0.49cvss 7.5epss 0.02

    A broken access control vulnerability found in Advan VD-1 firmware versions up to 230. An attacker can send a POST request to cgibin/ApkUpload.cgi to install arbitrary APK without any authentication.

  • CVE-2019-11248HigAug 29, 2019
    risk 0.58cvss 8.2epss 0.61

    The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and…

  • CVE-2019-11247HigAug 29, 2019
    risk 0.46cvss 8.1epss 0.02

    The Kubernetes kube-apiserver mistakenly allows access to a cluster-scoped custom resource if the request is made as if the resource were namespaced. Authorizations for the resource accessed in this manner are enforced using roles and role bindings within the namespace, meaning…

  • CVE-2019-11060HigAug 29, 2019
    risk 0.49cvss 7.5epss 0.03

    The web api server on Port 8080 of ASUS HG100 firmware up to 1.05.12, which is vulnerable to Slowloris HTTP Denial of Service: an attacker can cause a Denial of Service (DoS) by sending headers very slowly to keep HTTP or HTTPS connections and associated resources alive for a…

  • CVE-2017-14202HigAug 29, 2019
    risk 0.00cvss 7.8epss 0.01

    Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the shell component of Zephyr allows a serial or telnet connected user to cause a crash, possibly with arbitrary code execution. This issue affects: Zephyr shell versions prior to 1.14.0 on…

  • CVE-2017-14201HigAug 29, 2019
    risk 0.00cvss 7.8epss 0.01

    Use After Free vulnerability in the Zephyr shell allows a serial or telnet connected user to cause denial of service, and possibly remote code execution. This issue affects: Zephyr shell versions prior to 1.14.0 on all.

  • CVE-2017-18594HigAug 29, 2019
    risk 0.00cvss 7.5epss 0.03

    nse_libssh2.cc in Nmap 7.70 is subject to a denial of service condition due to a double free when an SSH connection fails, as demonstrated by a leading \n character to ssh-brute.nse or ssh-auth-methods.nse.

  • CVE-2019-9931HigAug 28, 2019
    risk 0.49cvss 7.5epss 0.01

    Various Lexmark printers contain a denial of service vulnerability in the SNMP service that can be exploited to crash the device.

  • CVE-2019-15752HigKEVAug 28, 2019
    risk 0.68cvss 7.8epss 0.30

    Docker Desktop Community Edition before 2.1.0.1 allows local users to gain privileges by placing a Trojan horse docker-credential-wincred.exe file in %PROGRAMDATA%\DockerDesktop\version-bin\ as a low-privilege user, and then waiting for an admin or service user to authenticate…

  • CVE-2019-10056HigAug 28, 2019
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Suricata 4.1.3. The code mishandles the case of sending a network packet with the right type, such that the function DecodeEthernet in decode-ethernet.c is executed a second time. At this point, the algorithm cuts the first part of the packet and…

  • CVE-2019-10055HigAug 28, 2019
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Suricata 4.1.3. The function ftp_pasv_response lacks a check for the length of part1 and part2, leading to a crash within the ftp/mod.rs file.

  • CVE-2019-10054HigAug 28, 2019
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Suricata 4.1.3. The function process_reply_record_v3 lacks a check for the length of reply.data. It causes an invalid memory access and the program crashes within the nfs/nfs3.rs file.

  • CVE-2019-10052HigAug 28, 2019
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Suricata 4.1.3. If the network packet does not have the right length, the parser tries to access a part of a DHCP packet. At this point, the Rust environment runs into a panic in parse_clientid_option in the dhcp/parser.rs file.

  • CVE-2019-10051HigAug 28, 2019
    risk 0.00cvss 7.5epss 0.02

    An issue was discovered in Suricata 4.1.3. If the function filetracker_newchunk encounters an unsafe "Some(sfcm) => { ft.new_chunk }" item, then the program enters an smb/files.rs error condition and crashes.

  • CVE-2019-1965HigAug 28, 2019
    risk 0.50cvss 7.7epss 0.02

    A vulnerability in the Virtual Shell (VSH) session management for Cisco NX-OS Software could allow an authenticated, remote attacker to cause a VSH process to fail to delete upon termination. This can lead to a build-up of VSH processes that overtime can deplete system memory.…

  • CVE-2019-1964HigAug 28, 2019
    risk 0.56cvss 8.6epss 0.02

    A vulnerability in the IPv6 traffic processing of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an unexpected restart of the netstack process on an affected device. The vulnerability is due to improper validation of IPv6 traffic sent through an…

  • CVE-2019-1963HigAug 28, 2019
    risk 0.50cvss 7.7epss 0.02

    A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, remote attacker to cause the SNMP application on an affected device to restart unexpectedly. The vulnerability is…

  • CVE-2019-1962HigAug 28, 2019
    risk 0.56cvss 8.6epss 0.02

    A vulnerability in the Cisco Fabric Services component of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause process crashes, which can result in a denial of service (DoS) condition on an affected system. The vulnerability is due to insufficient…

  • CVE-2019-15720HigAug 28, 2019
    risk 0.51cvss 7.8epss 0.00

    CloudBerry Backup v6.1.2.34 allows local privilege escalation via a Pre or Post backup action. With only user-level access, a user can modify the backup plan and add a Pre backup action script that executes on behalf of NT AUTHORITY\SYSTEM.