VYPR

CVEs

31,173 total · page 501 of 624

  • CVE-2018-19365CriMar 21, 2019
    risk 0.61cvss 9.1epss 0.22

    The REST API in Wowza Streaming Engine 4.7.4.01 allows traversal of the directory structure and retrieval of a file via a remote, specifically crafted HTTP request.

  • CVE-2018-19276CriMar 21, 2019
    risk 0.75cvss 9.8epss 0.99

    OpenMRS before 2.24.0 is affected by an Insecure Object Deserialization vulnerability that allows an unauthenticated user to execute arbitrary commands on the targeted system via crafted XML data in a request body.

  • CVE-2018-18798CriMar 21, 2019
    risk 0.67cvss 9.8epss 0.03

    Attendance Monitoring System 1.0 has SQL Injection via the 'id' parameter to student/index.php?view=view, event/index.php?view=view, and user/index.php?view=view.

  • CVE-2018-18473CriMar 21, 2019
    risk 0.64cvss 9.8epss 0.06

    A hidden backdoor on PATLITE NH-FB Series devices with firmware version 1.45 or earlier, NH-FV Series devices with firmware version 1.10 or earlier, and NBM Series devices with firmware version 1.09 or earlier allow attackers to enable an SSH daemon via the "kankichi" or…

  • CVE-2018-11747CriMar 21, 2019
    risk 0.64cvss 9.8epss 0.01

    Previously, Puppet Discovery was shipped with a default generated TLS certificate in the nginx container. In version 1.4.0, a unique certificate will be generated on installation or the user will be able to provide their own TLS certificate for ingress.

  • CVE-2018-15509CriMar 18, 2019
    risk 0.64cvss 9.8epss 0.02

    Five9 Agent Desktop Plus 10.0.70 has Incorrect Access Control (issue 2 of 2).

  • CVE-2019-9835CriMar 15, 2019
    risk 0.62cvss 9.6epss 0.01

    The receiver (aka bridge) component of Fujitsu Wireless Keyboard Set LX901 GK900 devices allows Keystroke Injection. This occurs because it accepts unencrypted 2.4 GHz packets, even though all legitimate communication uses AES encryption.

  • CVE-2018-20182CriMar 15, 2019
    risk 0.01cvss 9.8epss 0.08

    rdesktop versions up to and including v1.8.3 contain a Buffer Overflow over the global variables in the function seamless_process_line() that results in memory corruption and probably even a remote code execution.

  • CVE-2018-20181CriMar 15, 2019
    risk 0.01cvss 9.8epss 0.08

    rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function seamless_process() and results in memory corruption and probably even a remote code execution.

  • CVE-2018-20180CriMar 15, 2019
    risk 0.01cvss 9.8epss 0.08

    rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function rdpsnddbg_process() and results in memory corruption and probably even a remote code execution.

  • CVE-2018-20179CriMar 15, 2019
    risk 0.01cvss 9.8epss 0.07

    rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function lspci_process() and results in memory corruption and probably even a remote code execution.

  • CVE-2018-20177CriMar 15, 2019
    risk 0.01cvss 9.8epss 0.08

    rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to a Heap-Based Buffer Overflow in the function rdp_in_unistr() and results in memory corruption and possibly even a remote code execution.

  • CVE-2018-19392CriMar 15, 2019
    risk 0.64cvss 9.8epss 0.01

    Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. This could allow modification of any user account's password (including the default "admin" account), without prior knowledge of their password. All that is required…

  • CVE-2019-9825CriMar 14, 2019
    risk 0.64cvss 9.8epss 0.02

    FeiFeiCMS 4.1.190209 allows remote attackers to upload and execute arbitrary PHP code by visiting index.php?s=Admin-Index to modify the set of allowable file extensions, as demonstrated by adding php to the default jpg,gif,png,jpeg setting, and then using the "add article"…

  • CVE-2019-9775CriMar 14, 2019
    risk 0.59cvss 9.1epss 0.03

    An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is an out-of-bounds read in the function dwg_dxf_BLOCK_CONTROL at dwg.spec.

  • CVE-2019-9774CriMar 14, 2019
    risk 0.59cvss 9.1epss 0.03

    An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is an out-of-bounds read in the function bit_read_B at bits.c.

  • CVE-2019-9762CriMar 14, 2019
    risk 0.64cvss 9.8epss 0.05

    A SQL Injection was discovered in PHPSHE 1.7 in include/plugin/payment/alipay/pay.php with the parameter id. The vulnerability does not need any authentication.

  • CVE-2019-9760CriMar 14, 2019
    risk 0.71cvss 9.8epss 0.53

    FTPGetter Standard v.5.97.0.177 allows remote code execution when a user initiates an FTP connection to an attacker-controlled machine that sends crafted responses. Long responses can also crash the FTP client with memory corruption.

  • CVE-2019-1723CriMar 13, 2019
    risk 0.64cvss 9.8epss 0.06

    A vulnerability in the Cisco Common Services Platform Collector (CSPC) could allow an unauthenticated, remote attacker to access an affected device by using an account that has a default, static password. This account does not have administrator privileges. The vulnerability…

  • CVE-2019-9750CriMar 13, 2019
    risk 0.59cvss 9.1epss 0.01

    In IoTivity through 1.3.1, the CoAP server interface can be used for Distributed Denial of Service attacks using source IP address spoofing and UDP-based traffic amplification. The reflected traffic is 6 times bigger than spoofed requests. This occurs because the construction of…

  • CVE-2019-9748CriMar 13, 2019
    risk 0.59cvss 9.1epss 0.02

    In tinysvcmdns through 2018-01-16, an mDNS server processing a crafted packet can perform arbitrary data read operations up to 16383 bytes from the start of the buffer. This can lead to a segmentation fault in uncompress_nlabel in mdns.c and a crash of the server (depending on…

  • CVE-2015-2254CriMar 13, 2019
    risk 0.59cvss 9.1epss 0.01

    Huawei OceanStor UDS devices with software before V100R002C01SPC102 might allow remote attackers to capture and change patch loading information resulting in the deletion of directory files and compromise of system functions when loading a patch.

  • CVE-2019-5919CriMar 12, 2019
    risk 0.00cvss 9.1epss 0.01

    An incomplete cryptography of the data store function by using hidden tag in Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to obtain information of the stored data, to register invalid value, or alter the value via unspecified vectors.

  • CVE-2019-5918CriMar 12, 2019
    risk 0.59cvss 9.1epss 0.02

    Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to conduct XML External Entity (XXE) attacks via unspecified vectors.

  • CVE-2019-9687CriMar 11, 2019
    risk 0.64cvss 9.8epss 0.02

    PoDoFo 0.9.6 has a heap-based buffer overflow in PdfString::ConvertUTF16toUTF8 in base/PdfString.cpp.

  • CVE-2019-9659CriMar 11, 2019
    risk 0.59cvss 9.1epss 0.01

    The Chuango 433 MHz burglar-alarm product line uses static codes in the RF remote control, allowing an attacker to arm, disarm, or trigger the alarm remotely via replay attacks, as demonstrated by Chuango branded products, and non-Chuango branded products such as the Eminent…

  • CVE-2019-9651CriMar 11, 2019
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered in SDCMS V1.7. In the \app\admin\controller\themecontroller.php file, the check_bad() function's filtering is not strict, resulting in PHP code execution. This occurs because some dangerous PHP functions (such as "eval") are blocked but others (such as…

  • CVE-2019-9641CriMar 9, 2019
    risk 0.64cvss 9.8epss 0.09

    An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_TIFF.

  • CVE-2019-8280CriMar 8, 2019
    risk 0.64cvss 9.8epss 0.04

    UltraVNC revision 1203 has out-of-bounds access vulnerability in VNC client inside RAW decoder, which can potentially result code execution. This attack appear to be exploitable via network connectivity. This vulnerability has been fixed in revision 1204.

  • CVE-2019-8275CriMar 8, 2019
    risk 0.64cvss 9.8epss 0.04

    UltraVNC revision 1211 has multiple improper null termination vulnerabilities in VNC server code, which result in out-of-bound data being accessed by remote users. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision…

  • CVE-2019-8274CriMar 8, 2019
    risk 0.64cvss 9.8epss 0.08

    UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer offer handler, which can potentially in result code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision…

  • CVE-2019-8273CriMar 8, 2019
    risk 0.64cvss 9.8epss 0.08

    UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer request handler, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision…

  • CVE-2019-8272CriMar 8, 2019
    risk 0.64cvss 9.8epss 0.04

    UltraVNC revision 1211 has multiple off-by-one vulnerabilities in VNC server code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 1212.

  • CVE-2019-8271CriMar 8, 2019
    risk 0.64cvss 9.8epss 0.08

    UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer handler, which can potentially result code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1212.

  • CVE-2019-8268CriMar 8, 2019
    risk 0.64cvss 9.8epss 0.04

    UltraVNC revision 1206 has multiple off-by-one vulnerabilities in VNC client code connected with improper usage of ClientConnection::ReadString function, which can potentially result code execution. This attack appears to be exploitable via network connectivity. These…

  • CVE-2019-8266CriMar 8, 2019
    risk 0.64cvss 9.8epss 0.03

    UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of ClientConnection::Copybuffer function in VNC client code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity.…

  • CVE-2019-8265CriMar 8, 2019
    risk 0.64cvss 9.8epss 0.03

    UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of SETPIXELS macro in VNC client code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. These vulnerabilities…

  • CVE-2019-8264CriMar 8, 2019
    risk 0.64cvss 9.8epss 0.03

    UltraVNC revision 1203 has out-of-bounds access vulnerability in VNC client inside Ultra2 decoder, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1204.

  • CVE-2019-9636CriMar 8, 2019
    risk 0.01cvss 9.8epss 0.09

    Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc) during NFKC normalization. The impact is: Information disclosure (credentials, cookies, etc. that are cached against a given hostname). The…

  • CVE-2019-1003034CriMar 8, 2019
    risk 0.58cvss 9.9epss 0.03

    A sandbox bypass vulnerability exists in Jenkins Job DSL Plugin 1.71 and earlier in job-dsl-core/src/main/groovy/javaposse/jobdsl/dsl/AbstractDslScriptLoader.groovy, job-dsl-plugin/build.gradle, job-dsl-plugin/src/main/groovy/javaposse/jobdsl/plugin/JobDslWhitelist.groovy,…

  • CVE-2019-1003032CriMar 8, 2019
    risk 0.65cvss 9.9epss 0.02

    A sandbox bypass vulnerability exists in Jenkins Email Extension Plugin 2.64 and earlier in pom.xml, src/main/java/hudson/plugins/emailext/ExtendedEmailPublisher.java, src/main/java/hudson/plugins/emailext/plugins/content/EmailExtScript.java,…

  • CVE-2019-1003031CriMar 8, 2019
    risk 0.58cvss 9.9epss 0.03

    A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM.

  • CVE-2019-1003030CriKEVMar 8, 2019
    risk 0.21cvss 9.9epss 0.76

    A sandbox bypass vulnerability exists in Jenkins Pipeline: Groovy Plugin 2.63 and earlier in pom.xml, src/main/java/org/jenkinsci/plugins/workflow/cps/CpsGroovyShell.java that allows attackers able to control pipeline scripts to execute arbitrary code on the Jenkins master JVM.

  • CVE-2019-1003029CriKEVMar 8, 2019
    risk 0.21cvss 9.9epss 0.74

    A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows…

  • CVE-2019-9631CriMar 8, 2019
    risk 0.64cvss 9.8epss 0.04

    Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.

  • CVE-2019-9121CriMar 7, 2019
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary…

  • CVE-2019-9120CriMar 7, 2019
    risk 0.64cvss 9.8epss 0.06

    An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary…

  • CVE-2019-9119CriMar 7, 2019
    risk 0.64cvss 9.8epss 0.06

    An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary…

  • CVE-2019-9118CriMar 7, 2019
    risk 0.64cvss 9.8epss 0.06

    An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary…

  • CVE-2019-9117CriMar 7, 2019
    risk 0.64cvss 9.8epss 0.06

    An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary…