VYPR

CVEs

100,082 total · page 1633 of 2,002

  • CVE-2019-6213HigMar 5, 2019
    risk 0.54cvss 7.8epss 0.05

    A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. An application may be able to execute arbitrary code with kernel privileges.

  • CVE-2019-6212HigMar 5, 2019
    risk 0.57cvss 8.8epss 0.02

    Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2019-6211HigMar 5, 2019
    risk 0.57cvss 8.8epss 0.01

    A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3. Processing maliciously crafted web content may lead to arbitrary code execution.

  • CVE-2019-6210HigMar 5, 2019
    risk 0.51cvss 7.8epss 0.02

    A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. A malicious application may be able to execute arbitrary code with kernel privileges.

  • CVE-2019-6205HigMar 5, 2019
    risk 0.54cvss 7.8epss 0.04

    A memory corruption issue was addressed with improved lock state checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may cause unexpected changes in memory shared between processes.

  • CVE-2019-6202HigMar 5, 2019
    risk 0.51cvss 7.8epss 0.01

    An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, watchOS 5.1.3. A malicious application may be able to elevate privileges.

  • CVE-2019-6200HigMar 5, 2019
    risk 0.57cvss 8.8epss 0.01

    An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3. An attacker in a privileged network position may be able to execute arbitrary code.

  • CVE-2018-19636HigMar 5, 2019
    risk 0.47cvss 7.3epss 0.00

    Supportutils, before version 3.1-5.7.1, when run with command line argument -A searched the file system for a ndspath binary. If an attacker provides one at an arbitrary location it is executed with root privileges

  • CVE-2019-8259HigMar 5, 2019
    risk 0.49cvss 7.5epss 0.03

    UltraVNC revision 1198 contains multiple memory leaks (CWE-655) in VNC client code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack…

  • CVE-2019-9572HigMar 5, 2019
    risk 0.47cvss 7.2epss 0.02

    SchoolCMS version 2.3.1 allows file upload via the theme upload feature at admin.php?m=admin&c=theme&a=upload by using the .zip extension along with the _Static substring, changing the Content-Type to application/zip, and placing PHP code after the ZIP header. This ultimately…

  • CVE-2019-9563HigMar 4, 2019
    risk 0.49cvss 7.5epss 0.01

    In BlueMind 3.5.x before 3.5.11 Hotfix 7 and 4.x before 4.0-beta3, the contact application mishandles temporary uploads.

  • CVE-2019-9549HigMar 3, 2019
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in PopojiCMS v2.0.1. It has CSRF via the po-admin/route.php?mod=user&act=addnew URI, as demonstrated by adding a level=1 account, a similar issue to CVE-2018-18935.

  • CVE-2019-9545HigMar 1, 2019
    risk 0.57cvss 8.8epss 0.02

    An issue was discovered in Poppler 0.74.0. A recursive function call, in JBIG2Stream::readTextRegion() located in JBIG2Stream.cc, can be triggered by sending a crafted pdf file to (for example) the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation…

  • CVE-2019-9544HigMar 1, 2019
    risk 0.57cvss 8.8epss 0.02

    An issue was discovered in Bento4 1.5.1-628. An out of bounds write occurs in AP4_CttsTableEntry::AP4_CttsTableEntry() located in Core/Ap4Array.h. It can be triggered by sending a crafted file to (for example) the mp42hls binary. It allows an attacker to cause Denial of Service…

  • CVE-2019-9543HigMar 1, 2019
    risk 0.57cvss 8.8epss 0.03

    An issue was discovered in Poppler 0.74.0. A recursive function call, in JBIG2Stream::readGenericBitmap() located in JBIG2Stream.cc, can be triggered by sending a crafted pdf file to (for example) the pdfseparate binary. It allows an attacker to cause Denial of Service…

  • CVE-2018-8790HigMar 1, 2019
    risk 0.51cvss 7.8epss 0.00

    Check Point ZoneAlarm version 15.3.064.17729 and below expose a WCF service that can allow a local low privileged user to execute arbitrary code as SYSTEM.

  • CVE-2018-20799HigMar 1, 2019
    risk 0.49cvss 7.5epss 0.02

    In pfSense 2.4.4_1, blocking of source IP addresses on the basis of failed HTTPS authentication is inconsistent with blocking of source IP addresses on the basis of failed SSH authentication (the behavior does not match the sshguard documentation), which might make it easier for…

  • CVE-2018-20798HigMar 1, 2019
    risk 0.49cvss 7.5epss 0.01

    The expiretable configuration in pfSense 2.4.4_1 establishes block durations that are incompatible with the block durations implemented by sshguard, which might make it easier for attackers to bypass intended access restrictions.

  • CVE-2019-9484HigMar 1, 2019
    risk 0.49cvss 7.5epss 0.02

    The Glen Dimplex Deutschland GmbH implementation of the Carel pCOWeb configuration tool allows remote attackers to obtain access via an HTTP session on port 10000, as demonstrated by reading the modem password (which is 1234), or reconfiguring "party mode" or "vacation mode."

  • CVE-2019-6551HigFeb 28, 2019
    risk 0.49cvss 7.5epss 0.03

    Pangea Communications Internet FAX ATA all Versions 3.1.8 and prior allow an attacker to bypass user authentication using a specially crafted URL to cause the device to reboot, which may be used to cause a continual denial-of-service condition.

  • CVE-2019-6555HigFeb 28, 2019
    risk 0.51cvss 7.8epss 0.02

    Cscape, 9.80 SP4 and prior. An improper input validation vulnerability may be exploited by processing specially crafted POC files. This may allow an attacker to read confidential information and remotely execute arbitrary code.

  • CVE-2019-1674HigFeb 28, 2019
    risk 0.55cvss 7.8epss 0.11

    A vulnerability in the update service of Cisco Webex Meetings Desktop App and Cisco Webex Productivity Tools for Windows could allow an authenticated, local attacker to execute arbitrary commands as a privileged user. The vulnerability is due to insufficient validation of…

  • CVE-2018-18496HigFeb 28, 2019
    risk 0.57cvss 8.8epss 0.01

    When the RSS Feed preview about:feeds page is framed within another page, it can be used in concert with scripted content for a clickjacking attack that confuses users into downloading and executing an executable file from a temporary directory. *Note: This issue only affects…

  • CVE-2018-12406HigFeb 28, 2019
    risk 0.57cvss 8.8epss 0.01

    Mozilla developers and community members reported memory safety bugs present in Firefox 63. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects…

  • CVE-2018-12401HigFeb 28, 2019
    risk 0.49cvss 7.5epss 0.02

    Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service (DOS) attacks. This vulnerability affects Firefox < 63.

  • CVE-2018-12397HigFeb 28, 2019
    risk 0.46cvss 7.1epss 0.00

    A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to run content scripts in local pages without permission warnings when a local file…

  • CVE-2018-12395HigFeb 28, 2019
    risk 0.49cvss 7.5epss 0.03

    By rewriting the Host: request headers using the webRequest API, a WebExtension can bypass domain restrictions through domain fronting. This would allow access to domains that share a host that are otherwise restricted. This vulnerability affects Firefox ESR < 60.3 and Firefox <…

  • CVE-2018-12393HigFeb 28, 2019
    risk 0.49cvss 7.5epss 0.04

    A potential vulnerability was found in 32-bit builds where an integer overflow during the conversion of scripts to an internal UTF-16 representation could result in allocating a buffer too small for the conversion. This leads to a possible out-of-bounds write. *Note: 64-bit…

  • CVE-2018-12391HigFeb 28, 2019
    risk 0.57cvss 8.8epss 0.02

    During HTTP Live Stream playback on Firefox for Android, audio data can be accessed across origins in violation of security policies. Because the problem is in the underlying Android service, this issue is addressed by treating all HLS streams as cross-origin and opaque to…

  • CVE-2018-12389HigFeb 28, 2019
    risk 0.57cvss 8.8epss 0.02

    Mozilla developers and community members reported memory safety bugs present in Firefox ESR 60.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability…

  • CVE-2018-12388HigFeb 28, 2019
    risk 0.57cvss 8.8epss 0.01

    Mozilla developers and community members reported memory safety bugs present in Firefox 62. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects…

  • CVE-2019-2000HigFeb 28, 2019
    risk 0.54cvss 7.8epss 0.01

    In several functions of binder.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android…

  • CVE-2019-1999HigFeb 28, 2019
    risk 0.54cvss 7.8epss 0.01

    In binder_alloc_free_page of binder_alloc.c, there is a possible double free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android.…

  • CVE-2019-1997HigFeb 28, 2019
    risk 0.49cvss 7.5epss 0.01

    In random_get_bytes of random.c, there is a possible degradation of randomness due to an insecure default value. This could lead to local information disclosure via an insecure wireless connection with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2019-1994HigFeb 28, 2019
    risk 0.57cvss 8.8epss 0.01

    In refresh of DevelopmentTiles.java, there is the possibility of leaving development settings accessible due to an insecure default value. This could lead to unwanted access to development settings, with no additional execution privileges needed. User interaction is needed for…

  • CVE-2019-1993HigFeb 28, 2019
    risk 0.51cvss 7.8epss 0.00

    In register_app of btif_hd.cc, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions:…

  • CVE-2019-1992HigFeb 28, 2019
    risk 0.49cvss 7.5epss 0.01

    In bta_hl_sdp_query_results of bta_hl_main.cc, there is a possible use-after-free due to a race condition. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions:…

  • CVE-2019-1991HigFeb 28, 2019
    risk 0.57cvss 8.8epss 0.02

    In btif_dm_data_copy of btif_core.cc, there is a possible out of bounds write due to a buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0…

  • CVE-2019-1988HigFeb 28, 2019
    risk 0.57cvss 8.8epss 0.02

    In sample6 of SkSwizzler.cpp, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution in system_server with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android.…

  • CVE-2019-1987HigFeb 28, 2019
    risk 0.51cvss 7.8epss 0.01

    In onSetSampleX of SkSwizzler.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0…

  • CVE-2019-1986HigFeb 28, 2019
    risk 0.57cvss 8.8epss 0.01

    In SkSwizzler::onSetSampleX of SkSwizzler.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege in system_server with no additional execution privileges needed. User interaction is needed for exploitation.…

  • CVE-2019-3599HigFeb 28, 2019
    risk 0.49cvss 7.5epss 0.02

    Information Disclosure vulnerability in Remote logging (which is disabled by default) in McAfee Agent (MA) 5.x allows remote unauthenticated users to access sensitive information via remote logging when it is enabled.

  • CVE-2019-3582HigFeb 28, 2019
    risk 0.56cvss 8.6epss 0.00

    Privilege Escalation vulnerability in Microsoft Windows client in McAfee Endpoint Security (ENS) 10.6.1 and earlier allows local users to gain elevated privileges via a specific set of circumstances.

  • CVE-2019-9214HigFeb 28, 2019
    risk 0.49cvss 7.5epss 0.04

    In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the RPCAP dissector could crash. This was addressed in epan/dissectors/packet-rpcap.c by avoiding an attempted dereference of a NULL conversation.

  • CVE-2019-9208HigFeb 28, 2019
    risk 0.49cvss 7.5epss 0.04

    In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the TCAP dissector could crash. This was addressed in epan/dissectors/asn1/tcap/tcap.cnf by avoiding NULL pointer dereferences.

  • CVE-2019-5670HigFeb 27, 2019
    risk 0.51cvss 7.8epss 0.00

    NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiEscape in which the software uses a sequential operation to read from or write to a buffer, but it uses an incorrect length value that causes it to access memory that is…

  • CVE-2019-5669HigFeb 27, 2019
    risk 0.51cvss 7.8epss 0.00

    NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiEscape in which the software uses a sequential operation to read from or write to a buffer, but it uses an incorrect length value that causes it to access memory that is…

  • CVE-2019-5668HigFeb 27, 2019
    risk 0.51cvss 7.8epss 0.00

    NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiSubmitCommandVirtual in which the application dereferences a pointer that it expects to be valid, but is NULL, which may lead to denial of service or escalation…

  • CVE-2019-5667HigFeb 27, 2019
    risk 0.51cvss 7.8epss 0.00

    NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiSetRootPageTable in which the application dereferences a pointer that it expects to be valid, but is NULL, which may lead to code execution, denial of service or…

  • CVE-2019-5666HigFeb 27, 2019
    risk 0.51cvss 7.8epss 0.00

    NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) create context command DDI DxgkDdiCreateContext in which the product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly…