VYPR

CVEs

31,277 total · page 462 of 626

  • CVE-2013-5743CriDec 11, 2019
    risk 0.73cvss 9.8epss 0.80

    Multiple SQL injection vulnerabilities in Zabbix 1.8.x before 1.8.18rc1, 2.0.x before 2.0.9rc1, and 2.1.x before 2.1.7.

  • CVE-2013-3542CriDec 11, 2019
    risk 0.65cvss 10.0epss 0.03

    Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WP_HD, GXV3500, and possibly other camera models with firmware 1.0.4.11, have a hardcoded account "!#/" with the same password, which makes it easier for remote attackers…

  • CVE-2019-19725CriDec 11, 2019
    risk 0.64cvss 9.8epss 0.03

    sysstat through 12.2.0 has a double free in check_file_actlst in sa_common.c.

  • CVE-2019-19649CriDec 11, 2019
    risk 0.64cvss 9.8epss 0.10

    Zoho ManageEngine Applications Manager before 13620 allows a remote unauthenticated SQL injection via the SyncEventServlet eventid parameter to the SyncEventServlet.java doGet function.

  • CVE-2019-18960CriDec 11, 2019
    risk 0.57cvss 9.8epss 0.03

    Firecracker vsock implementation buffer overflow in versions 0.18.0 and 0.19.0. This can result in potentially exploitable crashes.

  • CVE-2019-18935CriKEVDec 11, 2019
    risk 0.93cvss 9.8epss 1.00

    Progress Telerik UI for ASP.NET AJAX through 2019.3.1023 contains a .NET deserialization vulnerability in the RadAsyncUpload function. This is exploitable when the encryption keys are known due to the presence of CVE-2017-11317 or CVE-2017-11357, or other means. Exploitation can…

  • CVE-2019-17270CriDec 10, 2019
    risk 0.68cvss 9.8epss 0.59

    Yachtcontrol through 2019-10-06: It's possible to perform direct Operating System commands as an unauthenticated user via the "/pages/systemcall.php?command={COMMAND}" page and parameter, where {COMMAND} will be executed and returning the results to the client. Affects…

  • CVE-2012-1577CriDec 10, 2019
    risk 0.64cvss 9.8epss 0.02

    lib/libc/stdlib/random.c in OpenBSD returns 0 when seeded with 0.

  • CVE-2019-4521CriDec 10, 2019
    risk 0.64cvss 9.8epss 0.03

    Platform System Manager in IBM Cloud Pak System 2.3 is potentially vulnerable to CVS Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 165179.

  • CVE-2019-4244CriDec 10, 2019
    risk 0.59cvss 9.1epss 0.02

    IBM SmartCloud Analytics 1.3.1 through 1.3.5 could allow a remote attacker to gain unauthorized information and unrestricted control over Zookeeper installations due to missing authentication. IBM X-Force ID: 159518.

  • CVE-2013-2167CriDec 10, 2019
    risk 0.57cvss 9.8epss 0.02

    python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache signing bypass

  • CVE-2013-2166CriDec 10, 2019
    risk 0.57cvss 9.8epss 0.02

    python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache encryption bypass

  • CVE-2013-2159CriDec 10, 2019
    risk 0.57cvss 9.8epss 0.03

    Monkey HTTP Daemon: broken user name authentication

  • CVE-2013-2095CriDec 10, 2019
    risk 0.64cvss 9.8epss 0.03

    rubygem-openshift-origin-controller: API can be used to create applications via cartridge_cache.rb URI.prase() to perform command injection

  • CVE-2019-4621CriDec 9, 2019
    risk 0.64cvss 9.8epss 0.02

    IBM DataPower Gateway 7.6.0.0-7 throug 6.0.14 and 2018.4.1.0 through 2018.4.1.5 have a default administrator account that is enabled if the IPMI LAN channel is enabled. A remote attacker could use this account to gain unauthorised access to the BMC. IBM X-Force ID: 168883.

  • CVE-2019-19230CriDec 9, 2019
    risk 0.64cvss 9.8epss 0.04

    An unsafe deserialization vulnerability exists in CA Release Automation (Nolio) 6.6 with the DataManagement component that can allow a remote attacker to execute arbitrary code.

  • CVE-2019-19646CriDec 9, 2019
    risk 0.00cvss 9.8epss 0.05

    pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns.

  • CVE-2019-18190CriDec 9, 2019
    risk 0.64cvss 9.8epss 0.03

    Trend Micro Security (Consumer) 2020 (v16.x) is affected by a vulnerability in where null pointer dereference errors result in the crash of application, which could potentially lead to possible unsigned code execution under certain circumstances.

  • CVE-2019-19683CriDec 9, 2019
    risk 0.59cvss 9.1epss 0.02

    RoxyFileman, as shipped with nopCommerce v4.2.0, is vulnerable to ../ path traversal via d or f to Admin/RoxyFileman/ProcessRequest because of Libraries/Nop.Services/Media/RoxyFileman/FileRoxyFilemanService.cs.

  • CVE-2019-19638CriDec 8, 2019
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in libsixel 1.8.2. There is a heap-based buffer overflow in the function load_pnm at frompnm.c, due to an integer overflow.

  • CVE-2019-19637CriDec 8, 2019
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in libsixel 1.8.2. There is an integer overflow in the function sixel_decode_raw_impl at fromsixel.c.

  • CVE-2019-19636CriDec 8, 2019
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in libsixel 1.8.2. There is an integer overflow in the function sixel_encode_body at tosixel.c.

  • CVE-2019-19635CriDec 8, 2019
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in libsixel 1.8.2. There is a heap-based buffer overflow in the function sixel_decode_raw_impl at fromsixel.c.

  • CVE-2019-10769CriDec 6, 2019
    risk 0.64cvss 9.8epss 0.03

    safer-eval is a npm package to sandbox the he evaluation of code used within the eval function. Affected versions of this package are vulnerable to Arbitrary Code Execution via generating a RangeError.

  • CVE-2019-18671CriDec 6, 2019
    risk 0.57cvss 9.8epss 0.03

    Insufficient checks in the USB packet handling of the ShapeShift KeepKey hardware wallet before firmware 6.2.2 allow out-of-bounds writes in the .bss segment via crafted messages. The vulnerability could allow code execution or other forms of impact. It can be triggered by…

  • CVE-2019-16674CriDec 6, 2019
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices. Authentication Information used in a cookie is predictable and can lead to admin password compromise when captured on the…

  • CVE-2019-16672CriDec 6, 2019
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices. Sensitive Credentials data is transmitted in cleartext.

  • CVE-2019-16670CriDec 6, 2019
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices. The Authentication mechanism has no brute-force prevention.

  • CVE-2018-7282CriDec 6, 2019
    risk 0.65cvss 9.8epss 0.10

    The username parameter of the TITool PrintMonitor solution during the login request is vulnerable to and/or time-based blind SQLi.

  • CVE-2019-5544CriKEVDec 6, 2019
    risk 0.89cvss 9.8epss 0.97

    OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.

  • CVE-2019-19334CriDec 6, 2019
    risk 0.57cvss 9.8epss 0.04

    In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way libyang parses YANG files with a leaf of type "identityref". An application that uses libyang to parse untrusted YANG files may be vulnerable to this flaw, which would allow an…

  • CVE-2019-19333CriDec 6, 2019
    risk 0.57cvss 9.8epss 0.04

    In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way libyang parses YANG files with a leaf of type "bits". An application that uses libyang to parse untrusted YANG files may be vulnerable to this flaw, which would allow an attacker to…

  • CVE-2019-19617CriDec 6, 2019
    risk 0.57cvss 9.8epss 0.03

    phpMyAdmin before 4.9.2 does not escape certain Git information, related to libraries/classes/Display/GitRevision.php and libraries/classes/Footer.php.

  • CVE-2019-7195CriKEVDec 5, 2019
    risk 0.92cvss 9.8epss 0.90

    This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fix the vulnerability, QNAP recommend updating Photo Station to their latest versions.

  • CVE-2019-7194CriKEVDec 5, 2019
    risk 0.91cvss 9.8epss 0.83

    This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fix the vulnerability, QNAP recommend updating Photo Station to their latest versions.

  • CVE-2019-7193CriKEVDec 5, 2019
    risk 0.83cvss 9.8epss 0.14

    This improper input validation vulnerability allows remote attackers to inject arbitrary code to the system. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.

  • CVE-2019-7192CriKEVDec 5, 2019
    risk 0.92cvss 9.8epss 0.88

    This improper access control vulnerability allows remote attackers to gain unauthorized access to the system. To fix these vulnerabilities, QNAP recommend updating Photo Station to their latest versions.

  • CVE-2019-7183CriDec 5, 2019
    risk 0.64cvss 9.8epss 0.02

    This improper link resolution vulnerability allows remote attackers to access system files. To fix this vulnerability, QNAP recommend updating QTS to their latest versions.

  • CVE-2019-19595CriDec 5, 2019
    risk 0.64cvss 9.8epss 0.04

    reset/modules/advanced_form_maker_edit/multiupload/upload.php in the RESET.PRO Adobe Stock API integration 4.8 for PrestaShop allows remote attackers to execute arbitrary code by uploading a .php file.

  • CVE-2019-19594CriDec 5, 2019
    risk 0.64cvss 9.8epss 0.04

    reset/modules/fotoliaFoto/multi_upload.php in the RESET.PRO Adobe Stock API Integration for PrestaShop 1.6 and 1.7 allows remote attackers to execute arbitrary code by uploading a .php file.

  • CVE-2019-15897CriDec 5, 2019
    risk 0.63cvss 9.6epss 0.03

    beegfs-ctl in ThinkParQ BeeGFS through 7.1.3 allows Authentication Bypass via communication with a BeeGFS metadata server (which is typically not exposed to external networks).

  • CVE-2019-14910CriDec 5, 2019
    risk 0.64cvss 9.8epss 0.01

    A vulnerability was found in keycloak 7.x, when keycloak is configured with LDAP user federation and StartTLS is used instead of SSL/TLS from the LDAP server (ldaps), in this case user authentication succeeds even if invalid password has entered.

  • CVE-2019-19317CriDec 5, 2019
    risk 0.57cvss 9.8epss 0.04

    lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact.

  • CVE-2019-19589CriDec 5, 2019
    risk 0.64cvss 9.8epss 0.02

    The Lever PDF Embedder plugin 4.4 for WordPress does not block the distribution of polyglot PDF documents that are valid JAR archives. Note: It has been argued that "The vulnerability reported in PDF Embedder Plugin is not valid as the plugin itself doesn't control or manage the…

  • CVE-2019-19521CriDec 5, 2019
    risk 0.64cvss 9.8epss 0.03

    libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiusd. This is related to gen/auth_subr.c and gen/authenticate.c in libc (and login/login.c and xenocara/app/xenodm/greeter/verify.c).

  • CVE-2013-2745CriDec 4, 2019
    risk 0.64cvss 9.8epss 0.02

    An SQL Injection vulnerability exists in MiniDLNA prior to 1.1.0

  • CVE-2019-19228CriDec 4, 2019
    risk 0.64cvss 9.8epss 0.02

    Fronius Solar Inverter devices before 3.14.1 (HM 1.12.1) allow attackers to bypass authentication because the password for the today account is stored in the /tmp/web_users.conf file.

  • CVE-2019-19576CriDec 4, 2019
    risk 0.62cvss 9.8epss 0.26

    class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for Joomla! and other products, omits .phar from the set of dangerous file extensions.

  • CVE-2019-17556CriDec 4, 2019
    risk 0.00cvss 9.8epss 0.04

    Apache Olingo versions 4.0.0 to 4.6.0 provide the AbstractService class, which is public API, uses ObjectInputStream and doesn't check classes being deserialized. If an attacker can feed malicious metadata to the class, then it may result in running attacker's code in the worse…

  • CVE-2019-11940CriDec 4, 2019
    risk 0.00cvss 9.8epss 0.01

    In the course of decompressing HPACK inside the HTTP2 protocol, an unexpected sequence of header table resize operations can place the header table into a corrupted state, leading to a use-after-free condition and undefined behavior. This issue affects Proxygen from v0.29.0…