VYPR

CVEs

31,173 total · page 497 of 624

  • CVE-2019-10306CriApr 18, 2019
    risk 0.58cvss 9.9epss 0.02

    A sandbox bypass vulnerability in Jenkins ontrack Plugin 3.4 and earlier allowed attackers with control over ontrack DSL definitions to execute arbitrary code on the Jenkins master JVM.

  • CVE-2019-1710CriApr 17, 2019
    risk 0.64cvss 9.8epss 0.03

    A vulnerability in the sysadmin virtual machine (VM) on Cisco ASR 9000 Series Aggregation Services Routers running Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to access internal applications running on the sysadmin VM. The vulnerability is due to…

  • CVE-2019-10643CriApr 17, 2019
    risk 0.57cvss 9.8epss 0.01

    Contao 4.7 allows Use of a Key Past its Expiration Date.

  • CVE-2019-10641CriApr 17, 2019
    risk 0.57cvss 9.8epss 0.01

    Contao before 3.5.39 and 4.x before 4.7.3 has a Weak Password Recovery Mechanism for a Forgotten Password.

  • CVE-2019-9890CriApr 17, 2019
    risk 0.59cvss 9.1epss 0.01

    An issue was discovered in GitLab Community and Enterprise Edition 10.x and 11.x before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Insecure Permissions.

  • CVE-2019-9756CriApr 17, 2019
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in GitLab Community and Enterprise Edition 10.x (starting from 10.8) and 11.x before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Incorrect Access Control, a different vulnerability than CVE-2019-9732.

  • CVE-2019-9217CriApr 17, 2019
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. Its User Interface has a Misrepresentation of Critical Information.

  • CVE-2019-9174CriApr 17, 2019
    risk 0.65cvss 10.0epss 0.02

    An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows SSRF.

  • CVE-2019-0228CriApr 17, 2019
    risk 0.64cvss 9.8epss 0.09

    Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XFDF.

  • CVE-2019-6579CriApr 17, 2019
    risk 0.64cvss 9.8epss 0.02

    A vulnerability has been identified in Spectrum Power 4 (with Web Office Portal). An attacker with network access to the web server on port 80/TCP or 443/TCP could execute system commands with administrative privileges. The security vulnerability could be exploited by an…

  • CVE-2018-13808CriApr 17, 2019
    risk 0.59cvss 9.1epss 0.02

    A vulnerability has been identified in CP 1604 (All versions), CP 1616 (All versions). An attacker with network access to port 23/tcp could extract internal communication data or cause a Denial-of-Service condition. Successful exploitation requires network access to a vulnerable…

  • CVE-2018-19971CriApr 16, 2019
    risk 0.64cvss 9.8epss 0.03

    JFrog Artifactory Pro 6.5.9 has Incorrect Access Control.

  • CVE-2019-9845CriApr 16, 2019
    risk 0.64cvss 9.8epss 0.03

    madskristensen Miniblog.Core through 2019-01-16 allows remote attackers to execute arbitrary ASPX code via an IMG element with a data: URL, because SaveFilesToDisk in Controllers/BlogController.cs writes a decoded base64 string to a file without validating the extension.

  • CVE-2018-18018CriApr 15, 2019
    risk 0.64cvss 9.8epss 0.02

    SQL Injection exists in the Tribulant Slideshow Gallery plugin 1.6.8 for WordPress via the wp-admin/admin.php?page=slideshow-galleries&method=save Gallery[id] or Gallery[title] parameter.

  • CVE-2019-6609CriApr 15, 2019
    risk 0.64cvss 9.8epss 0.01

    Platform dependent weakness. This issue only impacts iSeries platforms. On these platforms, in BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 14.0.0-14.1.0.1, 13.0.0-13.1.1.3, and 12.1.1 HF2-12.1.4, the…

  • CVE-2019-4203CriApr 15, 2019
    risk 0.64cvss 9.8epss 0.02

    IBM API Connect 5.0.0.0 and 5.0.8.6 Developer Portal can be exploited by app developers to download arbitrary files from the host OS and potentially carry out SSRF attacks. IBM X-Force ID: 159124.

  • CVE-2019-4202CriApr 15, 2019
    risk 0.65cvss 10.0epss 0.04

    IBM API Connect 5.0.0.0 and 5.0.8.6 Developer Portal is vulnerable to command injection. An attacker with a specially crafted request can run arbitrary code on the server and gain complete access to the system. IBM X-Force ID: 159123.

  • CVE-2019-4012CriApr 15, 2019
    risk 0.64cvss 9.8epss 0.02

    IBM BigFix WebUI Profile Management 6 and Software Distribution 23 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID:…

  • CVE-2019-6526CriApr 15, 2019
    risk 0.64cvss 9.8epss 0.01

    Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an…

  • CVE-2017-7774CriApr 15, 2019
    risk 0.59cvss 9.1epss 0.01

    Out-of-bounds read in Graphite2 Library in Firefox before 54 in graphite2::Silf::readGraphite function.

  • CVE-2019-10880CriApr 12, 2019
    risk 0.64cvss 9.8epss 0.08

    Within multiple XEROX products a vulnerability allows remote command execution on the Linux system, as the "nobody" user through a crafted "HTTP" request (OS Command Injection vulnerability in the HTTP interface). Depending upon configuration authentication may not be necessary.

  • CVE-2017-14199CriApr 12, 2019
    risk 0.00cvss 9.8epss 0.02

    A buffer overflow has been found in the Zephyr Project's getaddrinfo() implementation in 1.9.0 and 1.10.0.

  • CVE-2019-11196CriApr 12, 2019
    risk 0.64cvss 9.8epss 0.06

    An authentication bypass vulnerability in all versions of ValuePLUS Integrated University Management System (IUMS) allows unauthenticated, remote attackers to gain administrator privileges via the Teachers Web Panel (TWP) User ID or Password field. If exploited, the attackers…

  • CVE-2019-7644CriApr 11, 2019
    risk 0.64cvss 9.8epss 0.02

    Auth0 Auth0-WCF-Service-JWT before 1.0.4 leaks the expected JWT signature in an error message when it cannot successfully validate the JWT signature. If this error message is presented to an attacker, they can forge an arbitrary JWT token that will be accepted by the vulnerable…

  • CVE-2019-9974CriApr 11, 2019
    risk 0.59cvss 9.1epss 0.03

    diag_tool.cgi on DASAN H660RM GPON routers with firmware 1.03-0022 lacks any authorization check, which allows remote attackers to run a ping command via a GET request to enumerate LAN devices or crash the router with a DoS attack.

  • CVE-2019-9733CriApr 11, 2019
    risk 0.68cvss 9.8epss 0.54

    An issue was discovered in JFrog Artifactory 6.7.3. By default, the access-admin account is used to reset the password of the admin account in case an administrator gets locked out from the Artifactory console. This is only allowable from a connection directly from localhost,…

  • CVE-2019-5715CriApr 11, 2019
    risk 0.64cvss 9.8epss 0.02

    All versions of SilverStripe 3 prior to 3.6.7 and 3.7.3, and all versions of SilverStripe 4 prior to 4.0.7, 4.1.5, 4.2.4, and 4.3.1 allows Reflected SQL Injection through Form and DataObject.

  • CVE-2019-5672CriApr 11, 2019
    risk 0.59cvss 9.1epss 0.01

    NVIDIA Jetson TX1 and TX2 contain a vulnerability in the Linux for Tegra (L4T) operating system (on all versions prior to R28.3) where the Secure Shell (SSH) keys provided in the sample rootfs are not replaced by unique host keys after sample rootsfs generation and flashing,…

  • CVE-2018-19300CriApr 11, 2019
    risk 0.70cvss 9.8epss 0.74

    On D-Link DAP-1530 (A1) before firmware version 1.06b01, DAP-1610 (A1) before firmware version 1.06b01, DWR-111 (A1) before firmware version 1.02v02, DWR-116 (A1) before firmware version 1.06b03, DWR-512 (B1) before firmware version 2.02b01, DWR-711 (A1) through firmware version…

  • CVE-2019-6318CriApr 11, 2019
    risk 0.64cvss 9.8epss 0.03

    HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code.

  • CVE-2019-11072CriApr 10, 2019
    risk 0.06cvss 9.8epss 0.74

    lighttpd before 1.4.54 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a malicious HTTP GET request, as demonstrated by mishandling of /%2F? in…

  • CVE-2019-0285CriApr 10, 2019
    risk 0.67cvss 9.8epss 0.07

    The .NET SDK WebForm Viewer in SAP Crystal Reports for Visual Studio (fixed in version 2010) discloses sensitive database information including credentials which can be misused by the attacker.

  • CVE-2019-11068CriApr 10, 2019
    risk 0.57cvss 9.8epss 0.05

    libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded.

  • CVE-2019-0040CriApr 10, 2019
    risk 0.59cvss 9.1epss 0.02

    On Junos OS, rpcbind should only be listening to port 111 on the internal routing instance (IRI). External packets destined to port 111 should be dropped. Due to an information leak vulnerability, responses were being generated from the source address of the management interface…

  • CVE-2019-0036CriApr 10, 2019
    risk 0.64cvss 9.8epss 0.01

    When configuring a stateless firewall filter in Junos OS, terms named using the format "internal-n" (e.g. "internal-1", "internal-2", etc.) are silently ignored. No warning is issued during configuration, and the config is committed without error, but the filter criteria will…

  • CVE-2019-0008CriApr 10, 2019
    risk 0.64cvss 9.8epss 0.05

    A certain sequence of valid BGP or IPv6 BFD packets may trigger a stack based buffer overflow in the Junos OS Packet Forwarding Engine manager (FXPC) process on QFX5000 series, EX4300, EX4600 devices. This issue can result in a crash of the fxpc daemon or may potentially lead to…

  • CVE-2005-3590CriApr 10, 2019
    risk 0.64cvss 9.8epss 0.02

    The getgrouplist function in the GNU C library (glibc) before version 2.3.5, when invoked with a zero argument, writes to the passed pointer even if the specified array size is zero, leading to a buffer overflow and potentially allowing attackers to corrupt memory.

  • CVE-2019-10945CriApr 10, 2019
    risk 0.70cvss 9.8epss 0.38

    An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory.

  • CVE-2019-7139CriApr 10, 2019
    risk 0.65cvss 9.8epss 0.15

    An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which causes sensitive data leakage. This issue is fixed in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.

  • CVE-2019-7551CriApr 10, 2019
    risk 0.59cvss 9.0epss 0.02

    Cantemo Portal before 3.2.13, 3.3.x before 3.3.8, and 3.4.x before 3.4.9 has XSS. Leveraging this vulnerability would enable performing actions as users, including administrative users. This could enable account creation and deletion as well as deletion of information contained…

  • CVE-2019-4013CriApr 10, 2019
    risk 0.63cvss 9.0epss 0.14

    IBM BigFix Platform 9.5 could allow any authenticated user to upload any file to any location on the server with root privileges. This results in code execution on underlying system with root privileges. IBM X-Force ID: 155887.

  • CVE-2019-6140CriApr 9, 2019
    risk 0.64cvss 9.8epss 0.01

    A configuration issue has been discovered in Forcepoint Email Security 8.4.x and 8.5.x: the product is left in a vulnerable state if the hybrid registration process is not completed.

  • CVE-2019-0813CriApr 9, 2019
    risk 0.64cvss 9.8epss 0.04

    An elevation of privilege vulnerability exists when Windows Admin Center improperly impersonates operations in certain situations, aka 'Windows Admin Center Elevation of Privilege Vulnerability'.

  • CVE-2019-0786CriApr 9, 2019
    risk 0.64cvss 9.8epss 0.07

    An elevation of privilege vulnerability exists in the Microsoft Server Message Block (SMB) Server when an attacker with valid credentials attempts to open a specially crafted file over the SMB protocol on the same machine, aka 'SMB Server Elevation of Privilege Vulnerability'.

  • CVE-2018-16530CriApr 9, 2019
    risk 0.64cvss 9.8epss 0.03

    A stack-based buffer overflow in Forcepoint Email Security version 8.5 allows an attacker to craft malicious input and potentially crash a process creating a denial-of-service. While no known Remote Code Execution (RCE) vulnerabilities exist, as with all buffer overflows, the…

  • CVE-2019-9134CriApr 9, 2019
    risk 0.64cvss 9.8epss 0.02

    Architectural Information System 1.0 and earlier versions have a Stack-based buffer overflow, allows remote attackers to execute arbitrary code.

  • CVE-2019-7174CriApr 9, 2019
    risk 0.64cvss 9.8epss 0.02

    Roxy Fileman 1.4.5 allows attackers to execute renamefile.php (aka Rename File), createdir.php (aka Create Directory), fileslist.php (aka Echo File List), and movefile.php (aka Move File) operations.

  • CVE-2018-19586CriApr 9, 2019
    risk 0.65cvss 9.9epss 0.05

    Silverpeas 5.15 through 6.0.2 is affected by an authenticated Directory Traversal vulnerability that can be triggered during file uploads because core/webapi/upload/FileUploadData.java mishandles a StringUtil.java call. This vulnerability enables regular users to write arbitrary…

  • CVE-2019-3940CriApr 9, 2019
    risk 0.64cvss 9.8epss 0.04

    Advantech WebAccess 8.3.4 is vulnerable to file upload attacks via unauthenticated RPC call. An unauthenticated, remote attacker can use this vulnerability to execute arbitrary code.

  • CVE-2019-0726CriApr 9, 2019
    risk 0.68cvss 9.8epss 0.54

    A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, aka 'Windows DHCP Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0697, CVE-2019-0698.