| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-6165 | Hig | 0.51 | 7.8 | 0.00 | Aug 19, 2019 | A DLL search path vulnerability was reported in PaperDisplay Hotkey Service version 1.2.0.8 that could allow privilege escalation. Lenovo has ended support for PaperDisplay Hotkey software as the Night light feature introduced in Windows 10 Build 1703 provides similar features. | ||
| CVE-2019-5631 | Hig | 0.51 | 7.8 | 0.01 | Aug 19, 2019 | The Rapid7 InsightAppSec broker suffers from a DLL injection vulnerability in the 'prunsrv.exe' component of the product. If exploited, a local user of the system (who must already be authenticated to the operating system) can elevate their privileges with this vulnerability to… | ||
| CVE-2019-15160 | — | Hig | 0.49 | 7.5 | 0.02 | Aug 19, 2019 | The SweetXml (aka sweet_xml) package through 0.6.6 for Erlang and Elixir allows attackers to cause a denial of service (resource consumption) via an XML entity expansion attack with an inline DTD. | |
| CVE-2019-15150 | Hig | 0.00 | 8.8 | 0.01 | Aug 19, 2019 | In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function. | ||
| CVE-2018-20976 | Hig | 0.00 | 7.8 | 0.01 | Aug 19, 2019 | An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super failure. | ||
| CVE-2017-18552 | Hig | 0.00 | 7.8 | 0.00 | Aug 19, 2019 | An issue was discovered in net/rds/af_rds.c in the Linux kernel before 4.11. There is an out of bounds write and read in the function rds_recv_track_latency. | ||
| CVE-2016-10907 | Hig | 0.44 | 7.8 | 0.00 | Aug 19, 2019 | An issue was discovered in drivers/iio/dac/ad5755.c in the Linux kernel before 4.8.6. There is an out of bounds write in the function ad5755_parse_dt. | ||
| CVE-2016-10906 | Hig | 0.39 | 7.0 | 0.00 | Aug 19, 2019 | An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arc_emac_tx and arc_emac_tx_clean. | ||
| CVE-2016-10905 | Hig | 0.44 | 7.8 | 0.01 | Aug 19, 2019 | An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8. A use-after-free is caused by the functions gfs2_clear_rgrpd and read_rindex_entry. | ||
| CVE-2019-15140 | Hig | 0.00 | 8.8 | 0.04 | Aug 18, 2019 | coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by crafting a Matlab image file that is mishandled in ReadImage in MagickCore/constitute.c. | ||
| CVE-2019-15137 | Hig | 0.49 | 7.5 | 0.01 | Aug 18, 2019 | The Access Control plugin in eProsima Fast RTPS through 1.9.0 allows fnmatch pattern matches with topic name strings (instead of the permission expressions themselves), which can lead to unintended connections between participants in a Data Distribution Service (DDS) network. | ||
| CVE-2019-15136 | Hig | 0.49 | 7.5 | 0.01 | Aug 18, 2019 | The Access Control plugin in eProsima Fast RTPS through 1.9.0 does not check partition permissions from remote participant connections, which can lead to policy bypass for a secure Data Distribution Service (DDS) partition. | ||
| CVE-2019-15135 | Hig | 0.49 | 7.5 | 0.02 | Aug 18, 2019 | The handshake protocol in Object Management Group (OMG) DDS Security 1.1 sends cleartext information about all of the capabilities of a participant (including capabilities inapplicable to the current session), which makes it easier for attackers to discover potentially sensitive… | ||
| CVE-2019-15134 | Hig | 0.00 | 7.5 | 0.02 | Aug 17, 2019 | RIOT through 2019.07 contains a memory leak in the TCP implementation (gnrc_tcp), allowing an attacker to consume all memory available for network packets and thus effectively stopping all network threads from working. This is related to _receive in… | ||
| CVE-2019-14937 | Hig | 0.49 | 7.5 | 0.01 | Aug 17, 2019 | REDCap before 9.3.0 allows time-based SQL injection in the edit calendar event via the cal_id parameter, such as cal_id=55 and sleep(3) to Calendar/calendar_popup_ajax.php. The attacker can obtain a user's login sessionid from the database, and then re-login into REDCap to… | ||
| CVE-2019-13069 | Hig | 0.54 | 7.8 | 0.01 | Aug 17, 2019 | extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an additional user account, and then use SSH and port forwarding to reach a… | ||
| CVE-2019-15115 | Hig | 0.57 | 8.8 | 0.01 | Aug 16, 2019 | The peters-login-redirect plugin before 2.9.2 for WordPress has CSRF. | ||
| CVE-2019-15114 | Hig | 0.57 | 8.8 | 0.01 | Aug 16, 2019 | The formcraft-form-builder plugin before 1.2.2 for WordPress has CSRF. | ||
| CVE-2019-15113 | Hig | 0.57 | 8.8 | 0.01 | Aug 16, 2019 | The companion-sitemap-generator plugin before 3.7.0 for WordPress has CSRF. | ||
| CVE-2018-20974 | Hig | 0.57 | 8.8 | 0.01 | Aug 16, 2019 | The js-jobs plugin before 1.0.7 for WordPress has CSRF. | ||
| CVE-2018-20972 | Hig | 0.57 | 8.8 | 0.01 | Aug 16, 2019 | The companion-auto-update plugin before 3.2.1 for WordPress has CSRF. | ||
| CVE-2018-20971 | Hig | 0.57 | 8.8 | 0.01 | Aug 16, 2019 | The church-admin plugin before 1.2550 for WordPress has CSRF affecting the upload of a bible reading plan. | ||
| CVE-2017-18547 | Hig | 0.57 | 8.8 | 0.01 | Aug 16, 2019 | The nelio-ab-testing plugin before 4.6.4 for WordPress has CSRF in experiment forms. | ||
| CVE-2017-18546 | Hig | 0.57 | 8.8 | 0.01 | Aug 16, 2019 | The jayj-quicktag plugin before 1.3.2 for WordPress has CSRF. | ||
| CVE-2017-18545 | Hig | 0.49 | 7.5 | 0.01 | Aug 16, 2019 | The invite-anyone plugin before 1.3.16 for WordPress has incorrect escaping of untrusted Dashboard and front-end input. | ||
| CVE-2017-18544 | Hig | 0.57 | 8.8 | 0.01 | Aug 16, 2019 | The invite-anyone plugin before 1.3.16 for WordPress has admin-panel CSRF. | ||
| CVE-2015-9322 | Hig | 0.57 | 8.8 | 0.01 | Aug 16, 2019 | The erident-custom-login-and-dashboard plugin before 3.5 for WordPress has CSRF. | ||
| CVE-2019-8063 | Hig | 0.49 | 7.5 | 0.04 | Aug 16, 2019 | Creative Cloud Desktop Application 4.6.1 and earlier versions have an insecure transmission of sensitive data vulnerability. Successful exploitation could lead to information leakage. | ||
| CVE-2019-7957 | Hig | 0.49 | 7.5 | 0.04 | Aug 16, 2019 | Creative Cloud Desktop Application versions 4.6.1 and earlier have a security bypass vulnerability. Successful exploitation could lead to denial of service. | ||
| CVE-2019-15117 | Hig | 0.00 | 7.8 | 0.01 | Aug 16, 2019 | parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles a short descriptor, leading to out-of-bounds memory access. | ||
| CVE-2019-14923 | Hig | 0.58 | 8.8 | 0.04 | Aug 16, 2019 | EyesOfNetwork 5.1 allows Remote Command Execution via shell metacharacters in the module/tool_all/ host field. | ||
| CVE-2018-20969 | Hig | 0.51 | 7.8 | 0.03 | Aug 16, 2019 | do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter. | ||
| CVE-2019-15105 | Hig | 0.61 | 8.8 | 0.08 | Aug 16, 2019 | An issue was discovered in Zoho ManageEngine Application Manager through 14.2. There is a SQL Injection vulnerability in jsp/NewThresholdConfiguration.jsp via the resourceid parameter. Therefore, a low-authority user can gain the authority of SYSTEM on the server. One can… | ||
| CVE-2019-15104 | Hig | 0.61 | 8.8 | 0.08 | Aug 16, 2019 | An issue was discovered in Zoho ManageEngine OpManager through 12.4x. There is a SQL Injection vulnerability in jsp/NewThresholdConfiguration.jsp via the resourceid parameter. Therefore, a low-authority user can gain the authority of SYSTEM on the server. One can consequently… | ||
| CVE-2019-15099 | Hig | 0.49 | 7.5 | 0.04 | Aug 16, 2019 | drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor. | ||
| CVE-2019-15084 | Hig | 0.54 | 7.8 | 0.01 | Aug 16, 2019 | Realtek Waves MaxxAudio driver 1.6.2.0, as used on Dell laptops, installs with incorrect file permissions. As a result, a local attacker can escalate to SYSTEM. | ||
| CVE-2019-9852 | Hig | 0.51 | 7.8 | 0.02 | Aug 15, 2019 | LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under the share/Scripts/python, user/Scripts/python sub-directories of… | ||
| CVE-2019-10081 | Hig | 0.50 | 7.5 | 0.15 | Aug 15, 2019 | HTTP/2 (2.4.20 through 2.4.39) very early pushes, for example configured with "H2PushResource", could lead to an overwrite of memory in the pushing request's pool, leading to crashes. The memory copied is that of the configured push link header values, not data supplied by the… | ||
| CVE-2019-12792 | Hig | 0.58 | 8.8 | 0.05 | Aug 15, 2019 | A command injection vulnerability in UploadHandler.php in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root. | ||
| CVE-2019-12791 | Hig | 0.58 | 8.8 | 0.07 | Aug 15, 2019 | A directory traversal vulnerability in the v-list-user script in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root via the password reset form. | ||
| CVE-2019-3974 | Hig | 0.53 | 8.1 | 0.02 | Aug 15, 2019 | Nessus 8.5.2 and earlier on Windows platforms were found to contain an issue where certain system files could be overwritten arbitrarily, potentially creating a denial of service condition. | ||
| CVE-2019-13516 | Hig | 0.57 | 8.8 | 0.01 | Aug 15, 2019 | In OSIsoft PI Web API and prior, the affected product is vulnerable to a direct attack due to a cross-site request forgery protection setting that has not taken effect. | ||
| CVE-2019-13514 | Hig | 0.51 | 7.8 | 0.03 | Aug 15, 2019 | In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and prior, processing a specially crafted project file may trigger a use-after-free vulnerability, which may allow information disclosure, remote code execution, or crash of the application. | ||
| CVE-2019-13513 | Hig | 0.51 | 7.8 | 0.04 | Aug 15, 2019 | In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and prior, processing a specially crafted project file may trigger multiple out-of-bounds read vulnerabilities, which may allow information disclosure, remote code execution, or crash of the application. | ||
| CVE-2019-13510 | Hig | 0.52 | 7.8 | 0.12 | Aug 15, 2019 | Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena file opened by an unsuspecting user may result in the application crashing or the execution of arbitrary code. | ||
| CVE-2019-12809 | — | Hig | 0.57 | 8.8 | 0.01 | Aug 15, 2019 | Yes24ViewerX ActiveX Control 1.0.327.50126 and earlier versions contains a vulnerability that could allow remote attackers to download and execute arbitrary files by setting the arguments to the ActiveX method. This can be leveraged for code execution. | |
| CVE-2019-9012 | Hig | 0.49 | 7.5 | 0.02 | Aug 15, 2019 | An issue was discovered in 3S-Smart CODESYS V3 products. A crafted communication request may cause uncontrolled memory allocations in the affected CODESYS products and may result in a denial-of-service condition. All variants of the following CODESYS V3 products in all versions… | ||
| CVE-2018-14669 | Hig | 0.42 | 7.5 | 0.02 | Aug 15, 2019 | ClickHouse MySQL client before versions 1.1.54390 had "LOAD DATA LOCAL INFILE" functionality enabled that allowed a malicious MySQL database read arbitrary files from the connected ClickHouse server. | ||
| CVE-2018-14668 | Hig | 0.50 | 8.8 | 0.01 | Aug 15, 2019 | In ClickHouse before 1.1.54388, "remote" table function allowed arbitrary symbols in "user", "password" and "default_database" fields which led to Cross Protocol Request Forgery Attacks. | ||
| CVE-2019-9013 | Hig | 0.57 | 8.8 | 0.00 | Aug 15, 2019 | An issue was discovered in 3S-Smart CODESYS V3 products. The application may utilize non-TLS based encryption, which results in user credentials being insufficiently protected during transport. All variants of the following CODESYS V3 products in all versions containing the… |
- risk 0.51cvss 7.8epss 0.00
A DLL search path vulnerability was reported in PaperDisplay Hotkey Service version 1.2.0.8 that could allow privilege escalation. Lenovo has ended support for PaperDisplay Hotkey software as the Night light feature introduced in Windows 10 Build 1703 provides similar features.
- risk 0.51cvss 7.8epss 0.01
The Rapid7 InsightAppSec broker suffers from a DLL injection vulnerability in the 'prunsrv.exe' component of the product. If exploited, a local user of the system (who must already be authenticated to the operating system) can elevate their privileges with this vulnerability to…
- risk 0.49cvss 7.5epss 0.02
The SweetXml (aka sweet_xml) package through 0.6.6 for Erlang and Elixir allows attackers to cause a denial of service (resource consumption) via an XML entity expansion attack with an inline DTD.
- risk 0.00cvss 8.8epss 0.01
In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function.
- risk 0.00cvss 7.8epss 0.01
An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super failure.
- risk 0.00cvss 7.8epss 0.00
An issue was discovered in net/rds/af_rds.c in the Linux kernel before 4.11. There is an out of bounds write and read in the function rds_recv_track_latency.
- risk 0.44cvss 7.8epss 0.00
An issue was discovered in drivers/iio/dac/ad5755.c in the Linux kernel before 4.8.6. There is an out of bounds write in the function ad5755_parse_dt.
- risk 0.39cvss 7.0epss 0.00
An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arc_emac_tx and arc_emac_tx_clean.
- risk 0.44cvss 7.8epss 0.01
An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8. A use-after-free is caused by the functions gfs2_clear_rgrpd and read_rindex_entry.
- risk 0.00cvss 8.8epss 0.04
coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by crafting a Matlab image file that is mishandled in ReadImage in MagickCore/constitute.c.
- risk 0.49cvss 7.5epss 0.01
The Access Control plugin in eProsima Fast RTPS through 1.9.0 allows fnmatch pattern matches with topic name strings (instead of the permission expressions themselves), which can lead to unintended connections between participants in a Data Distribution Service (DDS) network.
- risk 0.49cvss 7.5epss 0.01
The Access Control plugin in eProsima Fast RTPS through 1.9.0 does not check partition permissions from remote participant connections, which can lead to policy bypass for a secure Data Distribution Service (DDS) partition.
- risk 0.49cvss 7.5epss 0.02
The handshake protocol in Object Management Group (OMG) DDS Security 1.1 sends cleartext information about all of the capabilities of a participant (including capabilities inapplicable to the current session), which makes it easier for attackers to discover potentially sensitive…
- risk 0.00cvss 7.5epss 0.02
RIOT through 2019.07 contains a memory leak in the TCP implementation (gnrc_tcp), allowing an attacker to consume all memory available for network packets and thus effectively stopping all network threads from working. This is related to _receive in…
- risk 0.49cvss 7.5epss 0.01
REDCap before 9.3.0 allows time-based SQL injection in the edit calendar event via the cal_id parameter, such as cal_id=55 and sleep(3) to Calendar/calendar_popup_ajax.php. The attacker can obtain a user's login sessionid from the database, and then re-login into REDCap to…
- risk 0.54cvss 7.8epss 0.01
extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an additional user account, and then use SSH and port forwarding to reach a…
- risk 0.57cvss 8.8epss 0.01
The peters-login-redirect plugin before 2.9.2 for WordPress has CSRF.
- risk 0.57cvss 8.8epss 0.01
The formcraft-form-builder plugin before 1.2.2 for WordPress has CSRF.
- risk 0.57cvss 8.8epss 0.01
The companion-sitemap-generator plugin before 3.7.0 for WordPress has CSRF.
- risk 0.57cvss 8.8epss 0.01
The js-jobs plugin before 1.0.7 for WordPress has CSRF.
- risk 0.57cvss 8.8epss 0.01
The companion-auto-update plugin before 3.2.1 for WordPress has CSRF.
- risk 0.57cvss 8.8epss 0.01
The church-admin plugin before 1.2550 for WordPress has CSRF affecting the upload of a bible reading plan.
- risk 0.57cvss 8.8epss 0.01
The nelio-ab-testing plugin before 4.6.4 for WordPress has CSRF in experiment forms.
- risk 0.57cvss 8.8epss 0.01
The jayj-quicktag plugin before 1.3.2 for WordPress has CSRF.
- risk 0.49cvss 7.5epss 0.01
The invite-anyone plugin before 1.3.16 for WordPress has incorrect escaping of untrusted Dashboard and front-end input.
- risk 0.57cvss 8.8epss 0.01
The invite-anyone plugin before 1.3.16 for WordPress has admin-panel CSRF.
- risk 0.57cvss 8.8epss 0.01
The erident-custom-login-and-dashboard plugin before 3.5 for WordPress has CSRF.
- risk 0.49cvss 7.5epss 0.04
Creative Cloud Desktop Application 4.6.1 and earlier versions have an insecure transmission of sensitive data vulnerability. Successful exploitation could lead to information leakage.
- risk 0.49cvss 7.5epss 0.04
Creative Cloud Desktop Application versions 4.6.1 and earlier have a security bypass vulnerability. Successful exploitation could lead to denial of service.
- risk 0.00cvss 7.8epss 0.01
parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles a short descriptor, leading to out-of-bounds memory access.
- risk 0.58cvss 8.8epss 0.04
EyesOfNetwork 5.1 allows Remote Command Execution via shell metacharacters in the module/tool_all/ host field.
- risk 0.51cvss 7.8epss 0.03
do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter.
- risk 0.61cvss 8.8epss 0.08
An issue was discovered in Zoho ManageEngine Application Manager through 14.2. There is a SQL Injection vulnerability in jsp/NewThresholdConfiguration.jsp via the resourceid parameter. Therefore, a low-authority user can gain the authority of SYSTEM on the server. One can…
- risk 0.61cvss 8.8epss 0.08
An issue was discovered in Zoho ManageEngine OpManager through 12.4x. There is a SQL Injection vulnerability in jsp/NewThresholdConfiguration.jsp via the resourceid parameter. Therefore, a low-authority user can gain the authority of SYSTEM on the server. One can consequently…
- risk 0.49cvss 7.5epss 0.04
drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
- risk 0.54cvss 7.8epss 0.01
Realtek Waves MaxxAudio driver 1.6.2.0, as used on Dell laptops, installs with incorrect file permissions. As a result, a local attacker can escalate to SYSTEM.
- risk 0.51cvss 7.8epss 0.02
LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under the share/Scripts/python, user/Scripts/python sub-directories of…
- risk 0.50cvss 7.5epss 0.15
HTTP/2 (2.4.20 through 2.4.39) very early pushes, for example configured with "H2PushResource", could lead to an overwrite of memory in the pushing request's pool, leading to crashes. The memory copied is that of the configured push link header values, not data supplied by the…
- risk 0.58cvss 8.8epss 0.05
A command injection vulnerability in UploadHandler.php in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root.
- risk 0.58cvss 8.8epss 0.07
A directory traversal vulnerability in the v-list-user script in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root via the password reset form.
- risk 0.53cvss 8.1epss 0.02
Nessus 8.5.2 and earlier on Windows platforms were found to contain an issue where certain system files could be overwritten arbitrarily, potentially creating a denial of service condition.
- risk 0.57cvss 8.8epss 0.01
In OSIsoft PI Web API and prior, the affected product is vulnerable to a direct attack due to a cross-site request forgery protection setting that has not taken effect.
- risk 0.51cvss 7.8epss 0.03
In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and prior, processing a specially crafted project file may trigger a use-after-free vulnerability, which may allow information disclosure, remote code execution, or crash of the application.
- risk 0.51cvss 7.8epss 0.04
In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and prior, processing a specially crafted project file may trigger multiple out-of-bounds read vulnerabilities, which may allow information disclosure, remote code execution, or crash of the application.
- risk 0.52cvss 7.8epss 0.12
Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena file opened by an unsuspecting user may result in the application crashing or the execution of arbitrary code.
- risk 0.57cvss 8.8epss 0.01
Yes24ViewerX ActiveX Control 1.0.327.50126 and earlier versions contains a vulnerability that could allow remote attackers to download and execute arbitrary files by setting the arguments to the ActiveX method. This can be leveraged for code execution.
- risk 0.49cvss 7.5epss 0.02
An issue was discovered in 3S-Smart CODESYS V3 products. A crafted communication request may cause uncontrolled memory allocations in the affected CODESYS products and may result in a denial-of-service condition. All variants of the following CODESYS V3 products in all versions…
- risk 0.42cvss 7.5epss 0.02
ClickHouse MySQL client before versions 1.1.54390 had "LOAD DATA LOCAL INFILE" functionality enabled that allowed a malicious MySQL database read arbitrary files from the connected ClickHouse server.
- risk 0.50cvss 8.8epss 0.01
In ClickHouse before 1.1.54388, "remote" table function allowed arbitrary symbols in "user", "password" and "default_database" fields which led to Cross Protocol Request Forgery Attacks.
- risk 0.57cvss 8.8epss 0.00
An issue was discovered in 3S-Smart CODESYS V3 products. The application may utilize non-TLS based encryption, which results in user credentials being insufficiently protected during transport. All variants of the following CODESYS V3 products in all versions containing the…