US-CERT - Vulnerability Summary for the Week of August 19, 2019

Original release date: August 26, 2019

 

The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.

High Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution . 2019-08-20 7.5 CVE-2019-7965
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8003
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an untrusted pointer dereference vulnerability. Successful exploitation could lead to arbitrary code execution . 2019-08-20 7.5 CVE-2019-8006
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8009
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution . 2019-08-20 7.5 CVE-2019-8015
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8016
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an untrusted pointer dereference vulnerability. Successful exploitation could lead to arbitrary code execution . 2019-08-20 7.5 CVE-2019-8017
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8022
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8023
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8024
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8025
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8026
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8028
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8029
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8030
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8031
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8036
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution . 2019-08-20 7.5 CVE-2019-8041
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8042
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a double free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8044
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an untrusted pointer dereference vulnerability. Successful exploitation could lead to arbitrary code execution . 2019-08-20 7.5 CVE-2019-8045
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8046
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8047
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8048
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 10.0 CVE-2019-8049
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8050
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8055
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution . 2019-08-20 10.0 CVE-2019-8060
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8061
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8098
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 7.5 CVE-2019-8100
CONFIRM
adobe -- creative_cloud Creative Cloud Desktop Application versions 4.6.1 and earlier have an insecure inherited permissions vulnerability. Successful exploitation could lead to privilege escalation. 2019-08-16 10.0 CVE-2019-7958
CONFIRM
adobe -- creative_cloud Creative Cloud Desktop Application versions 4.6.1 and earlier have a using components with known vulnerabilities vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-16 10.0 CVE-2019-7959
CONFIRM
bestwebsoft -- visitors_online The visitors-online plugin before 0.4 for WordPress has SQL injection. 2019-08-16 7.5 CVE-2015-9325
MISC
codepeople -- booking_calendar_contact_form The booking-calendar-contact-form plugin before 1.0.24 for WordPress has SQL injection. 2019-08-21 7.5 CVE-2016-10909
MISC
duplicate_post_project -- duplicate_post The duplicate-post plugin before 2.6 for WordPress has SQL injection. 2019-08-21 7.5 CVE-2014-10379
MISC
google -- android In ParseContentEncodingEntry of mkvparser.cc, there is a possible double free due to a missing reset of a freed pointer. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-127702368. 2019-08-20 9.3 CVE-2019-2126
CONFIRM
google -- android In AudioInputDescriptor::setClientActive of AudioInputDescriptor.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-124899895. 2019-08-20 7.2 CVE-2019-2127
CONFIRM
google -- android In ACELP_4t64_fx of c4t64fx.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-132647222. 2019-08-20 7.2 CVE-2019-2128
CONFIRM
ibm -- datapower_gateway IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.6, 7.6.0.0 through 7.6.0.15 and IBM MQ Appliance 8.0.0.0 through 8.0.0.12, 9.1.0.0 through 9.1.0.2, and 9.1.1 through 9.1.2 could allow a local attacker to execute arbitrary commands on the system, caused by a command injection vulnerability. IBM X-Force ID: 16188. 2019-08-20 7.2 CVE-2019-4294
XF
CONFIRM
CONFIRM
ibm -- emptoris_spend_analysis IBM Contract Management 10.1.0 through 10.1.3 and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 164064. 2019-08-20 7.5 CVE-2019-4481
XF
CONFIRM
ibm -- emptoris_spend_analysis IBM Contract Management 10.1.0 through 10.1.3 and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 164067. 2019-08-20 7.5 CVE-2019-4483
XF
CONFIRM
ibm -- informix_dynamic_server IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in onmode. IBM X-Force ID: 144430. 2019-08-20 7.2 CVE-2018-1630
CONFIRM
XF
ibm -- informix_dynamic_server IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in oninit mongohash. IBM X-Force ID: 144431. 2019-08-20 7.2 CVE-2018-1631
CONFIRM
XF
olimometer_project -- olimometer The olimometer plugin before 2.57 for WordPress has SQL injection. 2019-08-16 7.5 CVE-2016-10904
MISC
soflyy -- wp_all_import The wp-all-import plugin before 3.2.5 for WordPress has blind SQL injection. 2019-08-20 7.5 CVE-2015-9330
MISC
tribulant -- newsletters The newsletters-lite plugin before 4.6.8.6 for WordPress has PHP object injection. 2019-08-22 7.5 CVE-2018-20987
MISC
MISC
wp_front_end_profile_project -- wp_front_end_profile The wp-front-end-profile plugin before 0.2.2 for WordPress has a privilege escalation issue. 2019-08-21 7.5 CVE-2019-15111
MISC
wpbusinessintelligence -- wp_business_intelligence The wp-business-intelligence-lite plugin before 1.6.3 for WordPress has SQL injection. 2019-08-16 7.5 CVE-2015-9326
MISC
Back to top

 

Medium Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
activity_log_project -- activity_log The aryo-activity-log plugin before 2.3.2 for WordPress has XSS. 2019-08-21 4.3 CVE-2016-10890
MISC
activity_log_project -- activity_log The aryo-activity-log plugin before 2.3.3 for WordPress has XSS. 2019-08-21 4.3 CVE-2016-10891
MISC
ad_buttons_project -- ad_buttons The ad-buttons plugin before 2.3.2 for WordPress has XSS. 2019-08-21 4.3 CVE-2017-18553
MISC
add_from_server_project -- add_from_server The add-from-server plugin before 3.3.2 for WordPress has CSRF for importing a large file. 2019-08-20 6.8 CVE-2016-10914
MISC
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure . 2019-08-20 5.0 CVE-2019-8002
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8004
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8005
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure . 2019-08-20 5.0 CVE-2019-8007
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution . 2019-08-20 6.8 CVE-2019-8008
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8010
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8011
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8012
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 6.8 CVE-2019-8013
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution . 2019-08-20 6.8 CVE-2019-8014
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure . 2019-08-20 5.0 CVE-2019-8018
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution . 2019-08-20 6.8 CVE-2019-8019
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8020
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8021
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 6.8 CVE-2019-8027
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure . 2019-08-20 5.0 CVE-2019-8032
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 6.8 CVE-2019-8033
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 6.8 CVE-2019-8034
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure . 2019-08-20 4.3 CVE-2019-8035
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure . 2019-08-20 4.3 CVE-2019-8037
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 6.8 CVE-2019-8038
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 6.8 CVE-2019-8039
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 4.3 CVE-2019-8040
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8043
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 4.3 CVE-2019-8051
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 4.3 CVE-2019-8052
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 4.3 CVE-2019-8053
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 4.3 CVE-2019-8054
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 4.3 CVE-2019-8056
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 6.8 CVE-2019-8057
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. 2019-08-20 4.3 CVE-2019-8058
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution . 2019-08-20 4.3 CVE-2019-8059
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8077
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8094
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8095
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8096
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an internal ip disclosure vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8097
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an integer overflow vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8099
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an integer overflow vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8101
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8102
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8103
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8104
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8105
CONFIRM
adobe -- acrobat_dc Adobe Acrobat and Reader versions, 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2017.011.30142 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. 2019-08-20 5.0 CVE-2019-8106
CONFIRM
adobe -- creative_cloud Creative Cloud Desktop Application versions 4.6.1 and earlier have a security bypass vulnerability. Successful exploitation could lead to denial of service. 2019-08-16 5.0 CVE-2019-7957
CONFIRM
adobe -- creative_cloud Creative Cloud Desktop Application 4.6.1 and earlier versions have an insecure transmission of sensitive data vulnerability. Successful exploitation could lead to information leakage. 2019-08-16 5.0 CVE-2019-8063
CONFIRM
analytics_tracker_project -- analytics_tracker The analytics-tracker plugin before 1.1.1 for WordPress has XSS via a search event. 2019-08-21 4.3 CVE-2017-18554
MISC
bestwebsoft -- error_log_viewer The error-log-viewer plugin before 1.0.6 for WordPress has multiple XSS issues. 2019-08-21 4.3 CVE-2017-18562
MISC
bestwebsoft -- google_analytics The bws-google-analytics plugin before 1.7.1 for WordPress has multiple XSS issues. 2019-08-21 4.3 CVE-2017-18556
MISC
bestwebsoft -- google_maps The bws-google-maps plugin before 1.3.6 for WordPress has multiple XSS issues. 2019-08-21 4.3 CVE-2017-18557
MISC
bestwebsoft -- linkedin The bws-linkedin plugin before 1.0.5 for WordPress has multiple XSS issues. 2019-08-21 4.3 CVE-2017-18516
MISC
bestwebsoft -- pagination The pagination plugin before 1.0.7 for WordPress has multiple XSS issues. 2019-08-20 4.3 CVE-2017-18527
MISC
bestwebsoft -- pdf_&_print The pdf-print plugin before 1.9.4 for WordPress has multiple XSS issues. 2019-08-20 4.3 CVE-2017-18528
MISC
bestwebsoft -- pdf_&_print The pdf-print plugin before 2.0.3 for WordPress has multiple XSS issues. 2019-08-21 4.3 CVE-2018-20970
MISC
bestwebsoft -- pinterest The bws-pinterest plugin before 1.0.5 for WordPress has multiple XSS issues. 2019-08-20 4.3 CVE-2017-18517
MISC
bestwebsoft -- promobar The promobar plugin before 1.1.1 for WordPress has multiple XSS issues. 2019-08-20 4.3 CVE-2017-18529
MISC
bestwebsoft -- rating The rating-bws plugin before 0.2 for WordPress has multiple XSS issues. 2019-08-20 4.3 CVE-2017-18530
MISC
bestwebsoft -- realty The realty plugin before 1.1.0 for WordPress has multiple XSS issues. 2019-08-20 4.3 CVE-2017-18532
MISC
bestwebsoft -- sender The sender plugin before 1.2.1 for WordPress has multiple XSS issues. 2019-08-21 4.3 CVE-2017-18564
MISC
bestwebsoft -- smtp The bws-smtp plugin before 1.1.0 for WordPress has multiple XSS issues. 2019-08-20 4.3 CVE-2017-18518
MISC
bestwebsoft -- testimonials The bws-testimonials plugin before 0.1.9 for WordPress has multiple XSS issues. 2019-08-21 4.3 CVE-2017-18558
MISC
bestwebsoft -- updater The updater plugin before 1.35 for WordPress has multiple XSS issues. 2019-08-21 4.3 CVE-2017-18565
MISC
bestwebsoft -- user_role The user-role plugin before 1.5.6 for WordPress has multiple XSS issues. 2019-08-20 4.3 CVE-2017-18566
MISC
bestwebsoft -- visitors_online The visitors-online plugin before 1.0.0 for WordPress has multiple XSS issues. 2019-08-21 4.3 CVE-2017-18537
MISC
clogica -- seo_redirection The seo-redirection plugin before 4.3 for WordPress has stored XSS. 2019-08-21 4.3 CVE-2016-10896
MISC
codection -- import_users_from_csv_with_meta The import-users-from-csv-with-meta plugin before 1.14.2.1 for WordPress has directory traversal. 2019-08-22 5.0 CVE-2019-15326
MISC
MISC
codection -- import_users_from_csv_with_meta The import-users-from-csv-with-meta plugin before 1.14.1.3 for WordPress has XSS via imported data. 2019-08-22 4.3 CVE-2019-15327
MISC
codection -- import_users_from_csv_with_meta The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has XSS. 2019-08-22 4.3 CVE-2019-15328
MISC
MISC
codection -- import_users_from_csv_with_meta The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF. 2019-08-22 6.8 CVE-2019-15329
MISC
MISC
codepeople -- booking_calendar_contact_form The booking-calendar-contact-form plugin before 1.0.24 for WordPress has XSS. 2019-08-21 4.3 CVE-2016-10908
MISC
content_audit_project -- content_audit The content-audit plugin before 1.9.2 for WordPress has XSS. 2019-08-21 4.3 CVE-2017-18560
MISC
count_per_day_project -- count_per_day The count-per-day plugin before 3.2.3 for WordPress has XSS via search words. 2019-08-21 4.3 CVE-2012-6714
MISC
cozmoslabs -- profile_builder The profile-builder plugin before 1.1.66 for WordPress has multiple XSS issues in forms. 2019-08-21 4.3 CVE-2014-10380
MISC
cozmoslabs -- profile_builder The profile-builder plugin before 2.2.5 for WordPress has XSS. 2019-08-21 4.3 CVE-2015-9328
MISC
cozmoslabs -- profile_builder The profile-builder plugin before 2.4.2 for WordPress has multiple XSS issues. 2019-08-21 4.3 CVE-2016-10911
MISC
crafty_social_buttons_project -- crafty_social_buttons The crafty-social-buttons plugin before 1.5.8 for WordPress has XSS. 2019-08-22 4.3 CVE-2017-18578
MISC
deepsoft -- weblibrarian The weblibrarian plugin before 3.4.8.5 for WordPress has XSS via front-end short codes. 2019-08-21 4.3 CVE-2017-18538
MISC
deepsoft -- weblibrarian The weblibrarian plugin before 3.4.8.6 for WordPress has XSS via front-end short codes. 2019-08-21 4.3 CVE-2017-18539
MISC
deepsoft -- weblibrarian The weblibrarian plugin before 3.4.8.7 for WordPress has XSS via front-end short codes. 2019-08-21 4.3 CVE-2017-18540
MISC
djvulibre_project -- djvulibre In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service (application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read) by crafting a DJVU file. 2019-08-18 4.3 CVE-2019-15142
MISC
MISC
djvulibre_project -- djvulibre In DjVuLibre 3.5.27, the bitmap reader component allows attackers to cause a denial-of-service error (resource exhaustion caused by a GBitmap::read_rle_raw infinite loop) by crafting a corrupted image file, related to libdjvu/DjVmDir.cpp and libdjvu/GBitmap.cpp. 2019-08-18 4.3 CVE-2019-15143
MISC
MISC
djvulibre_project -- djvulibre In DjVuLibre 3.5.27, the sorting functionality (aka GArrayTemplate<TYPE>::sort) allows attackers to cause a denial-of-service (application crash due to an Uncontrolled Recursion) by crafting a PBM image file that is mishandled in libdjvu/GContainer.h. 2019-08-18 4.3 CVE-2019-15144
MISC
MISC
djvulibre_project -- djvulibre DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack (application crash via an out-of-bounds read) by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::get_direct_context in libdjvu/JB2Image.h because of a missing zero-bytes check in libdjvu/GBitmap.h. 2019-08-18 4.3 CVE-2019-15145
MISC
MISC
duplicate_post_project -- duplicate_post The duplicate-post plugin before 2.6 for WordPress has XSS. 2019-08-21 4.3 CVE-2014-10378
MISC
fabrix -- total_security The total-security plugin before 3.4.1 for WordPress has XSS. 2019-08-21 4.3 CVE-2016-10898
MISC
fabrix -- total_security The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability. 2019-08-21 5.0 CVE-2016-10899
MISC
football_pool_project -- football_pool The football-pool plugin before 2.6.5 for WordPress has multiple XSS issues. 2019-08-20 4.3 CVE-2017-18524
MISC
formbuilder_project -- formbuilder The formbuilder plugin before 1.06 for WordPress has multiple XSS issues. 2019-08-21 4.3 CVE-2016-10910
MISC
fullworks -- stop_user_enumeration The stop-user-enumeration plugin before 1.3.8 for WordPress has XSS. 2019-08-21 4.3 CVE-2017-18536
MISC
getawesomesupport -- awesome_support The awesome-support plugin before 3.1.7 for WordPress has XSS via custom information messages. 2019-08-20 4.3 CVE-2015-9317
MISC
getawesomesupport -- awesome_support The awesome-support plugin before 3.1.7 for WordPress has a security issue in which shortcodes are allowed in replies. 2019-08-20 5.0 CVE-2015-9318
MISC
godaddy -- godaddy_email_marketing The GoDaddy godaddy-email-marketing-sign-up-forms plugin before 1.1.3 for WordPress has CSRF. 2019-08-21 6.8 CVE-2016-10903
MISC
google -- android In ActivityManagerService.attachApplication of ActivityManagerService, there is a possible race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-131105245. 2019-08-20 6.9 CVE-2019-2121
CONFIRM
google -- android In LockTaskController.lockKeyguardIfNeeded of the LockTaskController.java, there was a difference in the handling of the default case between the WindowManager and the Settings. This could lead to a local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-127605586. 2019-08-20 6.9 CVE-2019-2122
CONFIRM
google -- android In ChangeDefaultDialerDialog.java, there is a possible escalation of privilege due to an overlay attack. This could lead to local escalation of privilege, granting privileges to a local app without the user's informed consent, with no additional privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-132275252. 2019-08-20 4.4 CVE-2019-2125
CONFIRM
google -- android In extract3GPPGlobalDescriptions of TextDescriptions.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-124781927. 2019-08-20 4.3 CVE-2019-2129
CONFIRM
google -- android In the endCall() function of TelecomManager.java, there is a possible Denial of Service due to a missing permission check. This could lead to local denial of access to Emergency Services with User execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-132438333. 2019-08-20 4.9 CVE-2019-2137
CONFIRM
gopro -- gpmf-parser GoPro GPMF-parser 1.2.2 has a heap-based buffer over-read (4 bytes) in GPMF_Next in GPMF_parser.c. 2019-08-18 4.3 CVE-2019-15146
MISC
MISC
gopro -- gpmf-parser GoPro GPMF-parser 1.2.2 has an out-of-bounds read and SEGV in GPMF_Next in GPMF_parser.c. 2019-08-18 4.3 CVE-2019-15147
MISC
MISC
gopro -- gpmf-parser GoPro GPMF-parser 1.2.2 has an out-of-bounds write in OpenMP4Source in demo/GPMF_mp4reader.c. 2019-08-18 4.3 CVE-2019-15148
MISC
MISC
gowebsolutions -- wp_customer_reviews The wp-customer-reviews plugin before 3.0.9 for WordPress has XSS in the admin tools. 2019-08-21 4.3 CVE-2016-10901
MISC
gowebsolutions -- wp_customer_reviews The wp-customer-reviews plugin before 3.0.9 for WordPress has CSRF in the admin tools. 2019-08-21 6.8 CVE-2016-10902
MISC
ibericode -- mailchimp The mailchimp-for-wp plugin before 4.1.8 for WordPress has XSS via the return value of add_query_arg. 2019-08-22 4.3 CVE-2017-18577
MISC
ibm -- api_connect IBM API Connect 2018.1 through 2018.4.1.6 developer portal could allow an unauthorized user to cause a denial of service via an unprotected API. IBM X-Force ID: 162263. 2019-08-20 5.0 CVE-2019-4402
XF
CONFIRM
ibm -- api_connect IBM API Connect 2018.1 through 2018.4.1.6 may inadvertently leak sensitive details about internal servers and network via API swagger. IBM X-force ID: 162947. 2019-08-20 5.0 CVE-2019-4437
CONFIRM
XF
ibm -- api_connect IBM API Connect 5.0.0.0 through 5.0.8.6 developer portal could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 163681. 2019-08-20 5.0 CVE-2019-4460
XF
CONFIRM
ibm -- emptoris_sourcing IBM Emptoris Sourcing 10.1.0 through 10.1.3, IBM Contract Management 10.1.0 through 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 generates an error message that includes sensitive information that could be used in further attacks against the system. IBM X-Force ID: 164068. 2019-08-20 4.0 CVE-2019-4484
XF
CONFIRM
ibm -- intelligent_operations_center IBM Intelligent Operations Center V5.1.0 through V5.2.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 162737. 2019-08-20 6.4 CVE-2019-4419
XF
CONFIRM
ibm -- security_guardium_big_data_intelligence IBM Security Guardium Big Data Intelligence 4.0 (SonarG) uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 161036. 2019-08-20 5.0 CVE-2019-4310
XF
CONFIRM
ibm -- security_guardium_big_data_intelligence IBM Security Guardium Big Data Intelligence 4.0 (SonarG) does not properly restrict the size or amount of resources that are requested or influenced by an actor. This weakness can be used to consume more resources than intended. IBM X-Force ID: 161417. 2019-08-20 5.0 CVE-2019-4338
XF
CONFIRM
ibm -- storediq IBM StoredIQ 7.6.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 158700. 2019-08-20 4.3 CVE-2019-4167
CONFIRM
XF
imagemagick -- imagemagick WriteTIFFImage in coders/tiff.c in ImageMagick 7.0.8-43 Q16 allows attackers to cause a denial-of-service (application crash resulting from a heap-based buffer over-read) via a crafted TIFF image file, related to TIFFRewriteDirectory, TIFFWriteDirectory, TIFFWriteDirectorySec, and TIFFWriteDirectoryTagColormap in tif_dirwrite.c of LibTIFF. NOTE: this occurs because of an incomplete fix for CVE-2019-11597. 2019-08-18 4.3 CVE-2019-15141
MISC
MISC
ivycat -- posts_in_page The posts-in-page plugin before 1.3.0 for WordPress has ic_add_posts template='../ directory traversal. 2019-08-22 5.5 CVE-2017-18585
MISC
MISC
joomunited -- wp_latest_posts The wp-latest-posts plugin before 3.7.5 for WordPress has XSS. 2019-08-20 4.3 CVE-2016-10913
MISC
kbrw -- sweet_xml The SweetXml (aka sweet_xml) package through 0.6.6 for Erlang and Elixir allows attackers to cause a denial of service (resource consumption) via an XML entity expansion attack with an inline DTD. 2019-08-19 5.0 CVE-2019-15160
MISC
MISC
linux -- linux_kernel An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8. A use-after-free is caused by the functions gfs2_clear_rgrpd and read_rindex_entry. 2019-08-18 6.1 CVE-2016-10905
MISC
linux -- linux_kernel An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arc_emac_tx and arc_emac_tx_clean. 2019-08-18 4.4 CVE-2016-10906
MISC
linux -- linux_kernel An issue was discovered in drivers/iio/dac/ad5755.c in the Linux kernel before 4.8.6. There is an out of bounds write in the function ad5755_parse_dt. 2019-08-18 4.6 CVE-2016-10907
MISC
MISC
linux -- linux_kernel An issue was discovered in drivers/i2c/i2c-core-smbus.c in the Linux kernel before 4.14.15. There is an out of bounds write in the function i2c_smbus_xfer_emulated. 2019-08-18 4.6 CVE-2017-18551
MISC
MISC
linux -- linux_kernel An issue was discovered in net/rds/af_rds.c in the Linux kernel before 4.11. There is an out of bounds write and read in the function rds_recv_track_latency. 2019-08-18 4.6 CVE-2017-18552
MISC
linux -- linux_kernel An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super failure. 2019-08-18 4.6 CVE-2018-20976
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio-raremono.c does not properly allocate memory. 2019-08-19 4.9 CVE-2019-15211
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver. 2019-08-19 4.9 CVE-2019-15212
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver. 2019-08-19 4.9 CVE-2019-15213
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.0.10. There is a use-after-free in the sound subsystem because card disconnection causes certain data structures to be deleted too early. This is related to sound/core/init.c and sound/core/info.c. 2019-08-19 4.7 CVE-2019-15214
MLIST
MISC
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver. 2019-08-19 4.9 CVE-2019-15215
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver. 2019-08-19 4.9 CVE-2019-15216
MLIST
MLIST
MLIST
MLIST
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver. 2019-08-19 4.9 CVE-2019-15217
MLIST
MLIST
MLIST
MLIST
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver. 2019-08-19 4.9 CVE-2019-15218
MLIST
MLIST
MLIST
MLIST
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver. 2019-08-19 4.9 CVE-2019-15219
MLIST
MLIST
MLIST
MLIST
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.2.1. There is a use-after-free caused by a malicious USB device in the drivers/net/wireless/intersil/p54/p54usb.c driver. 2019-08-19 4.9 CVE-2019-15220
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver. 2019-08-19 4.9 CVE-2019-15221
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.2.8. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/helper.c (motu_microbookii) driver. 2019-08-19 4.9 CVE-2019-15222
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/driver.c driver. 2019-08-19 4.9 CVE-2019-15223
MLIST
MISC
MISC
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the ath6kl_usb_alloc_urb_from_pipe function in the drivers/net/wireless/ath/ath6kl/usb.c driver. 2019-08-20 4.9 CVE-2019-15290
MLIST
MLIST
MISC
linux -- linux_kernel An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the flexcop_usb_probe function in the drivers/media/usb/b2c2/flexcop-usb.c driver. 2019-08-20 4.9 CVE-2019-15291
MLIST
MLIST
MISC
marvinlabs -- wp_customer_area The customer-area plugin before 7.4.3 for WordPress has XSS via admin pages. 2019-08-20 4.3 CVE-2017-18519
MISC
matchboxdesigngroup -- universal_analytics The universal-analytics plugin before 1.3.1 for WordPress has XSS. 2019-08-21 4.3 CVE-2016-10912
MISC
mediaburst -- booking_calendar The booking-sms plugin before 1.1.0 for WordPress has XSS. 2019-08-21 4.3 CVE-2017-18555
MISC
megamenu -- max_mega_menu The megamenu plugin before 2.4 for WordPress has XSS. 2019-08-21 4.3 CVE-2017-18525
MISC
mythemeshop -- my_wp_translate The my-wp-translate plugin before 1.0.4 for WordPress has XSS. 2019-08-20 4.3 CVE-2017-18568
MISC
mythemeshop -- my_wp_translate The my-wp-translate plugin before 1.0.4 for WordPress has CSRF. 2019-08-20 6.8 CVE-2017-18569
MISC
ncrafts -- formcraft The formcraft-form-builder plugin before 1.2.2 for WordPress has CSRF. 2019-08-16 6.8 CVE-2019-15114
MISC
nps_project -- nps lib/install/install.go in cnlh nps through 0.23.2 uses 0777 permissions for /usr/local/bin/nps and/or /usr/bin/nps, leading to a file overwrite by a local user. 2019-08-16 5.8 CVE-2019-15119
MISC
MISC
open-emr -- openemr In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the patient_id parameter. This could allow an attacker to execute arbitrary code in the context of a user's session. 2019-08-20 4.3 CVE-2019-3963
MISC
open-emr -- openemr In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the doc_id parameter. This could allow an attacker to execute arbitrary code in the context of a user's session. 2019-08-20 4.3 CVE-2019-3964
MISC
open-emr -- openemr In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the document_id parameter. This could allow an attacker to execute arbitrary code in the context of a user's session. 2019-08-20 4.3 CVE-2019-3965
MISC
optiontree_project -- optiontree The option-tree plugin before 2.5.4 for WordPress has XSS related to add_query_arg. 2019-08-20 4.3 CVE-2015-9320
MISC
MISC
optiontree_project -- optiontree The option-tree plugin before 2.6.0 for WordPress has XSS via an add_list_item or add_social_links AJAX request. 2019-08-20 4.3 CVE-2016-10895
MISC
raygun -- raygun4wp The raygun4wp plugin before 1.8.3 for WordPress has XSS in the settings, a different issue than CVE-2017-9288. 2019-08-20 4.3 CVE-2017-18531
MISC
schine.games -- mw-oauth2client In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function. 2019-08-19 6.8 CVE-2019-15150
MISC
FULLDISC
MLIST
CONFIRM
CONFIRM
BUGTRAQ
smokesignal_project -- smokesignal The smokesignal plugin before 1.2.7 for WordPress has XSS. 2019-08-21 4.3 CVE-2017-18535
MISC
soflyy -- wp_all_import The wp-all-import plugin before 3.2.5 for WordPress has reflected XSS. 2019-08-20 4.3 CVE-2015-9329
MISC
soflyy -- wp_all_import The wp-all-import plugin before 3.2.4 for WordPress has no prevention of unauthenticated requests to adminInit. 2019-08-20 5.0 CVE-2015-9331
MISC
soflyy -- wp_all_import The wp-all-import plugin before 3.4.6 for WordPress has XSS. 2019-08-20 4.3 CVE-2017-18567
MISC
soflyy -- wp_all_import The wp-all-import plugin before 3.4.7 for WordPress has XSS. 2019-08-20 4.3 CVE-2018-20978
MISC
supsystic -- popup The popup-by-supsystic plugin before 1.7.9 for WordPress has CSRF. 2019-08-20 6.8 CVE-2016-10915
MISC
swimordiesoftware -- rsvp The rsvp plugin before 2.3.8 for WordPress has persistent XSS via the note field on the attendee-list screen. 2019-08-21 4.3 CVE-2017-18563
MISC
wordpress_uninstall_project -- wordpress_uninstall The uninstall plugin before 1.2 for WordPress has CSRF to delete all tables via the wp-admin/admin-ajax.php?action=uninstall URI. 2019-08-20 5.8 CVE-2015-9332
MISC
wp-kama -- democracy_poll The democracy-poll plugin before 5.4 for WordPress has XSS via update_l10n in admin/class.DemAdminInit.php. 2019-08-20 4.3 CVE-2017-18520
MISC
MISC
wp-kama -- democracy_poll The democracy-poll plugin before 5.4 for WordPress has CSRF via wp-admin/options-general.php?page=democracy-poll&subpage=l10n. 2019-08-21 6.8 CVE-2017-18521
MISC
MISC
wp-slimstat -- slimstat_analytics The wp-slimstat plugin before 4.8.1 for WordPress has XSS. 2019-08-21 4.3 CVE-2019-15112
MISC
MISC
wp_front_end_profile_project -- wp_front_end_profile The wp-front-end-profile plugin before 0.2.2 for WordPress has XSS. 2019-08-21 4.3 CVE-2019-15110
MISC
wpmanage -- uji_countdown The uji-countdown plugin before 2.0.7 for WordPress has XSS. 2019-08-21 4.3 CVE-2016-10900
MISC
xakuro -- xo_security The xo-security plugin before 1.5.3 for WordPress has XSS. 2019-08-16 4.3 CVE-2017-18541
MISC
yofla -- 360_product_rotation The 360-product-rotation plugin before 1.4.8 for WordPress has reflected XSS. 2019-08-20 4.3 CVE-2019-15082
MISC
MISC
Back to top

 

Low Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
ibm -- business_automation_workflow IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, and 18.0.0.2 could allow a user to obtain highly sensitive information from another user by inserting links that would be clicked on by unsuspecting users. IBM X-Force ID: 162771. 2019-08-20 3.5 CVE-2019-4425
XF
CONFIRM
ibm -- cloud_private IBM Cloud Private 3.1.1 and 3.1.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 158146. 2019-08-20 3.5 CVE-2019-4120
CONFIRM
XF
ibm -- emptoris_spend_analysis IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 164066. 2019-08-20 3.5 CVE-2019-4482
XF
CONFIRM
ibm -- intelligent_operations_center IBM Intelligent Operations Center V5.1.0 through V5.2.0 could disclose detailed error messages, revealing sensitive information that could aid in further attacks against the system. IBM X-Force ID: 162738. 2019-08-20 2.1 CVE-2019-4420
XF
CONFIRM
linux -- linux_kernel An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aac_send_raw_srb does not initialize the reply structure. 2019-08-18 2.1 CVE-2017-18549
MISC
linux -- linux_kernel An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aac_get_hba_info does not initialize the hbainfo structure. 2019-08-18 2.1 CVE-2017-18550
MISC
open-xchange -- open-xchange_appsuite OX App Suite 7.10.0 to 7.10.2 allows XSS. 2019-08-20 3.5 CVE-2019-11522
MISC
vanderbilt -- redcap REDCap before 9.3.0 allows XSS attacks against non-administrator accounts on the Data Import Tool page via a CSV data import file. 2019-08-21 3.5 CVE-2019-15127
CONFIRM
Back to top

 

Severity Not Yet Assigned

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
acdsee -- photo_studio_standard
 
An issue was discovered in ACDSee Photo Studio Standard 22.1 Build 1159. There is a User Mode Write AV starting at IDE_ACDStd!IEP_ShowPlugInDialog+0x000000000023d060. 2019-08-21 not yet calculated CVE-2019-15293
MISC
adplub -- adplug
 
AdPlug 2.3.1 has a double free in the Cu6mPlayer class in u6m.h. 2019-08-18 not yet calculated CVE-2019-15151
MISC
ampache -- ampache
 
An issue was discovered in Ampache through 3.9.1. A stored XSS exists in the localplay.php LocalPlay "add instance" functionality. The injected code is reflected in the instances menu. This vulnerability can be abused to force an admin to create a new privileged user whose credentials are known by the attacker. 2019-08-22 not yet calculated CVE-2019-12386
MISC
ampache -- ampache
 
An issue was discovered in Ampache through 3.9.1. The search engine is affected by a SQL Injection, so any user able to perform lib/class/search.class.php searches (even guest users) can dump any data contained in the database (sessions, hashed passwords, etc.). This may lead to a full compromise of admin accounts, when combined with the weak password generator algorithm used in the lostpassword functionality. 2019-08-22 not yet calculated CVE-2019-12385
MISC
apache -- commons_beanutils In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an attacker to access the classloader via the class property available on all Java objects. We, however were not using this by default characteristic of the PropertyUtilsBean. 2019-08-20 not yet calculated CVE-2019-10086
MLIST
MLIST
apache -- santuario_xml_security_for_java In version 2.0.3 Apache Santuario XML Security for Java, a caching mechanism was introduced to speed up creating new XML documents using a static pool of DocumentBuilders. However, if some untrusted code can register a malicious implementation with the thread context class loader first, then this implementation might be cached and re-used by Apache Santuario - XML Security for Java, leading to potential security flaws when validating signed documents, etc. The vulnerability affects Apache Santuario - XML Security for Java 2.0.x releases from 2.0.3 and all 2.1.x releases before 2.1.4. 2019-08-23 not yet calculated CVE-2019-12400
CONFIRM
aspose -- aspose.cells
 
An exploitable out-of-bounds read vulnerability exists in the LabelSst record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the vulnerability. 2019-08-21 not yet calculated CVE-2019-5032
MISC
aspose -- aspose.cells
 
An exploitable out-of-bounds read vulnerability exists in the Number record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the vulnerability. 2019-08-21 not yet calculated CVE-2019-5033
MISC
aspose -- aspose.words
 
An exploitable Stack Based Buffer Overflow vulnerability exists in the EnumMetaInfo function of Aspose Aspose.Words library, version 18.11.0.0. A specially crafted doc file can cause a stack-based buffer overflow, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger this vulnerability. 2019-08-21 not yet calculated CVE-2019-5041
MISC
assign-deep -- assign-deep
 
assign-deep is vulnerable to Prototype Pollution in versions before 0.4.8 and version 1.0.0. The function assign-deep could be tricked into adding or modifying properties of Object.prototype using either a constructor or a _proto_ payload. 2019-08-20 not yet calculated CVE-2019-10745
CONFIRM
asymmetric-infosec -- power-response
 
Power-Response before 2019-02-02 allows directory traversal (up to the application's main directory) via a plugin. 2019-08-23 not yet calculated CVE-2019-15519
MISC
atlassian -- confluence
 
The Live:Text Box macro in the Old Street Live Input Macros app before 2.11 for Confluence has XSS, leading to theft of the Administrator Session Cookie. 2019-08-20 not yet calculated CVE-2019-15233
MISC
MISC
atlassian -- jira The MigratePriorityScheme resource in Jira before version 8.3.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the priority icon url of an issue priority. 2019-08-23 not yet calculated CVE-2019-11584
MISC
atlassian -- jira The wikirenderer component in Jira before version 7.13.6, and from version 8.0.0 before version 8.3.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in image attribute specification. 2019-08-23 not yet calculated CVE-2019-8444
MISC
atlassian -- jira
 
The ChangeSharedFilterOwner resource in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to attack users, in some cases be able to obtain a user's Cross-site request forgery (CSRF) token, via a open redirect vulnerability. 2019-08-23 not yet calculated CVE-2019-11589
MISC
atlassian -- jira
 
The ServiceExecutor resource in Jira before version 8.3.2 allows remote attackers to trigger the creation of export files via a Cross-site request forgery (CSRF) vulnerability. 2019-08-23 not yet calculated CVE-2019-8447
MISC
atlassian -- jira
 
Several worklog rest resources in Jira before version 7.13.7, and from version 8.0.0 before version 8.3.2 allow remote attackers to view worklog time information via a missing permissions check. 2019-08-23 not yet calculated CVE-2019-8445
MISC
atlassian -- jira
 
The /rest/issueNav/1/issueTable resource in Jira before version 8.3.2 allows remote attackers to enumerate usernames via an incorrect authorisation check. 2019-08-23 not yet calculated CVE-2019-8446
MISC
atlassian -- jira
 
The AddResolution.jspa resource in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to create new resolutions via a Cross-site request forgery (CSRF) vulnerability. 2019-08-23 not yet calculated CVE-2019-11586
MISC
atlassian -- jira
 
The ViewSystemInfo class doGarbageCollection method in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to trigger garbage collection via a Cross-site request forgery (CSRF) vulnerability. 2019-08-23 not yet calculated CVE-2019-11588
MISC
atlassian -- jira
 
Various exposed resources of the ViewLogging class in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allow remote attackers to modify various settings via Cross-site request forgery (CSRF). 2019-08-23 not yet calculated CVE-2019-11587
MISC
atlassian -- jira
 
The startup.jsp resource in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to redirect users to a different website which they may use as part of performing a phishing attack via an open redirect. 2019-08-23 not yet calculated CVE-2019-11585
MISC
atlassian -- universal_plugin_manager
 
The Uninstall REST endpoint in Atlassian Universal Plugin Manager before version 2.22.19, from version 3.0.0 before version 3.0.3 and from version 4.0.0 before version 4.0.3 allows remote attackers to uninstall plugins using a Cross-Site Request Forgery (CSRF) vulnerability on an authenticated administrator. 2019-08-23 not yet calculated CVE-2019-14999
MISC
autodesk -- design_review
 
DLL preloading vulnerability in Autodesk Design Review versions 2011, 2012, 2013, and 2018. An attacker may trick a user into opening a malicious DWF file that may leverage a DLL preloading vulnerability, which may result in code execution. 2019-08-23 not yet calculated CVE-2019-7362
CONFIRM
autodesk -- design_review
 
Use-after-free vulnerability in Autodesk Design Review versions 2011, 2012, 2013, and 2018. An attacker may trick a user into opening a malicious DWF file that may leverage a use-after-free vulnerability, which may result in code execution. 2019-08-23 not yet calculated CVE-2019-7363
CONFIRM
autodesk -- multiple_products
 
DLL preloading vulnerability in versions 2017, 2018, 2019, and 2020 of Autodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD Architecture, AutoCAD Electrical, AutoCAD Map 3D, AutoCAD Mechanical, AutoCAD MEP, AutoCAD Plant 3D and version 2017 of AutoCAD P&ID. An attacker may trick a user into opening a malicious DWG file that may leverage a DLL preloading vulnerability in AutoCAD which may result in code execution. 2019-08-23 not yet calculated CVE-2019-7364
CONFIRM
belwith_products -- hickory_smart_ethernet_bridge
 
A cleartext transmission of sensitive information vulnerability is present in Hickory Smart Ethernet Bridge from Belwith Products, LLC. Captured data reveals that the Hickory Smart Ethernet Bridge device communicates over the network to an MQTT broker without using encryption. This exposed the default username and password used to authenticate to the MQTT broker. This issue affects Hickory Smart Ethernet Bridge, model number H077646. The firmware does not appear to contain versioning information. 2019-08-22 not yet calculated CVE-2019-5635
MISC
MISC
belwith_products -- hickory_smart_for_andriod
 
An insecure storage of sensitive information vulnerability is present in Hickory Smart for Android mobile devices from Belwith Products, LLC. The application's database was found to contain information that could be used to control the lock devices remotely. This issue affects Hickory Smart for Android, version 01.01.43 and prior versions. 2019-08-22 not yet calculated CVE-2019-5632
MISC
MISC
belwith_products -- hickory_smart_for_andriod
 
An inclusion of sensitive information in log files vulnerability is present in Hickory Smart for Android mobile devices from Belwith Products, LLC. Communications to the internet API services and direct connections to the lock via Bluetooth Low Energy (BLE) from the mobile application are logged in a debug log on the Android device at HickorySmartLog/Logs/SRDeviceLog.txt. This information was found stored in the Android device's default USB or SDcard storage paths and is accessible without rooting the device. This issue affects Hickory Smart for Android, version 01.01.43 and prior versions. 2019-08-22 not yet calculated CVE-2019-5634
MISC
MISC
belwith_products -- hickory_smart_for_ios
 
An insecure storage of sensitive information vulnerability is present in Hickory Smart for iOS mobile devices from Belwith Products, LLC. The application's database was found to contain information that could be used to control the lock devices remotely. This issue affects Hickory Smart for iOS, version 01.01.07 and prior versions. 2019-08-22 not yet calculated CVE-2019-5633
MISC
MISC
bitdefender -- bitdefender_free_antivirus_2020 An Untrusted Search Path vulnerability in the ServiceInstance.dll library versions 1.0.15.119 and lower, as used in Bitdefender Antivirus Free 2020 versions prior to 1.0.15.138, allows an attacker to load an arbitrary DLL file from the search path. 2019-08-21 not yet calculated CVE-2019-15295
CONFIRM
bolt -- bolt
 
Bolt before 3.6.10 has XSS via an image's alt or title field. 2019-08-23 not yet calculated CVE-2019-15484
MISC
MISC
bolt -- bolt
 
Bolt before 3.6.10 has XSS via createFolder or createFile in Controller/Async/FilesystemManager.php. 2019-08-23 not yet calculated CVE-2019-15485
MISC
MISC
bolt -- bolt
 
Bolt before 3.6.10 has XSS via a title that is mishandled in the system log. 2019-08-23 not yet calculated CVE-2019-15483
MISC
MISC
bosch -- prosyst_mbs_sdk_and_bosch_iot_gateway_software
 
A directory traversal vulnerability in remote access to backup & restore in earlier versions than ProSyst mBS SDK 8.2.6 and Bosch IoT Gateway Software 9.2.0 allows remote attackers to write or delete files at any location. 2019-08-21 not yet calculated CVE-2019-11601
CONFIRM
bosch -- prosyst_mbs_sdk_and_bosch_iot_gateway_software
 
A HTTP Traversal Attack in earlier versions than ProSyst mBS SDK 8.2.6 and Bosch IoT Gateway Software 9.0.2 allows remote attackers to read files outside the http root. 2019-08-21 not yet calculated CVE-2019-11603
CONFIRM
bosch -- prosyst_mbs_sdk_and_bosch_iot_gateway_software
 
Leakage of stack traces in remote access to backup & restore in earlier versions than ProSyst mBS SDK 8.2.6 and Bosch IoT Gateway Software 9.2.0 allows remote attackers to gather information about the file system structure. 2019-08-21 not yet calculated CVE-2019-11602
CONFIRM
bosch -- prosyst_mbs_sdk_and_bosch_iot_gateway_software
 
A Server-Side Request Forgery (SSRF) vulnerability in the backup & restore functionality in earlier versions than ProSyst mBS SDK 8.2.6 and Bosch IoT Gateway Software 9.3.0 allows a remote attacker to forge GET requests to arbitrary URLs. In addition, this could potentially allow an attacker to read sensitive zip files from the local server. 2019-08-21 not yet calculated CVE-2019-11897
CONFIRM
cesnet -- proxystatistics-simplesamlphp-module The proxystatistics module before 3.1.0 for SimpleSAMLphp allows SQL Injection in lib/Auth/Process/DatabaseCommand.php. 2019-08-23 not yet calculated CVE-2019-15537
MISC
MISC
cisco -- enterprise_network_functions_infrastructure_software
 
A vulnerability in the web server functionality of Cisco Enterprise Network Functions Virtualization Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to perform file enumeration on an affected system. The vulnerability is due to the web server responding with different error codes for existing and non-existing files. An attacker could exploit this vulnerability by sending GET requests for different file names. A successful exploit could allow the attacker to enumerate files residing on the system. 2019-08-21 not yet calculated CVE-2019-12623
CISCO
cisco -- enterprise_network_functions_virtualization_infrastructure_software
 
A vulnerability in Cisco Enterprise Network Functions Virtualization Infrastructure Software (NFVIS) could allow an authenticated, remote attacker with administrator privileges to overwrite files on the underlying operating system (OS) of an affected device. The vulnerability is due to improper input validation in an NFVIS file-system command. An attacker could exploit this vulnerability by using crafted variables during the execution of an affected command. A successful exploit could allow the attacker to overwrite arbitrary files on the underlying OS. 2019-08-21 not yet calculated CVE-2019-1984
CISCO
cisco -- firepower_threat_defense_software
 
A vulnerability in the application policy configuration of the Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data. The vulnerability is due to insufficient application identification. An attacker could exploit this vulnerability by sending crafted traffic to an affected device. A successful exploit could allow the attacker to gain unauthorized read access to sensitive data. 2019-08-21 not yet calculated CVE-2019-12627
CISCO
cisco -- hyperflex_software
 
A vulnerability in Cisco HyperFlex Software could allow an unauthenticated, remote attacker to perform a man-in-the-middle attack. The vulnerability is due to insufficient key management. An attacker could exploit this vulnerability by obtaining a specific encryption key for the cluster. A successful exploit could allow the attacker to perform a man-in-the-middle attack against other nodes in the cluster. 2019-08-21 not yet calculated CVE-2019-12621
CISCO
cisco -- integrated_management_controller A vulnerability in the Intelligent Platform Management Interface (IPMI) implementation of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to view sensitive system information. The vulnerability is due to insufficient security restrictions imposed by the affected software. A successful exploit could allow the attacker to view sensitive information that belongs to other users. The attacker could then use this information to conduct additional attacks. 2019-08-21 not yet calculated CVE-2019-1908
CISCO
cisco -- integrated_management_controller A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges on an affected device. An attacker would need to have valid administrator credentials on the device. The vulnerability is due to insufficient validation of user-supplied input by the affected software. An attacker with elevated privileges could exploit this vulnerability by sending crafted commands to the administrative web management interface of the affected software. A successful exploit could allow the attacker to inject and execute arbitrary, system-level commands with root privileges on an affected device. 2019-08-21 not yet calculated CVE-2019-1850
CISCO
cisco -- integrated_management_controller
 
A vulnerability in the command-line interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker with read-only credentials to inject arbitrary commands that could allow them to obtain root privileges. The vulnerability is due to insufficient validation of user-supplied input on the command-line interface. An attacker could exploit this vulnerability by authenticating with read-only privileges via the CLI of an affected device and submitting crafted input to the affected commands. A successful exploit could allow an attacker to execute arbitrary commands on the device with root privileges. 2019-08-21 not yet calculated CVE-2019-1883
CISCO
cisco -- integrated_management_controller
 
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to set sensitive configuration values and gain elevated privileges. The vulnerability is due to improper handling of substring comparison operations that are performed by the affected software. An attacker could exploit this vulnerability by sending a crafted HTTP request to the affected software. A successful exploit could allow the attacker with read-only privileges to gain administrator privileges. 2019-08-21 not yet calculated CVE-2019-1907
CISCO
cisco -- integrated_management_controller
 
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to cause the web server process to crash, causing a denial of service (DoS) condition on an affected system. The vulnerability is due to insufficient validation of user-supplied input on the web interface. An attacker could exploit this vulnerability by submitting a crafted HTTP request to certain endpoints of the affected software. A successful exploit could allow an attacker to cause the web server to crash. Physical access to the device may be required for a restart. 2019-08-21 not yet calculated CVE-2019-1900
CISCO
cisco -- integrated_management_controller
 
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to inject arbitrary commands and obtain root privileges. The vulnerability is due to insufficient validation of user-supplied input in the Certificate Signing Request (CSR) function of the web-based management interface. An attacker could exploit this vulnerability by submitting a crafted CSR in the web-based management interface. A successful exploit could allow an attacker with administrator privileges to execute arbitrary commands on the device with full root privileges. 2019-08-21 not yet calculated CVE-2019-1896
CISCO
cisco -- integrated_management_controller
 
A vulnerability in the Redfish protocol of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to insufficient validation of user-supplied input by the affected software. An attacker could exploit this vulnerability by sending crafted authenticated commands to the web-based management interface of the affected software. A successful exploit could allow the attacker to inject and execute arbitrary commands on an affected device with root privileges. 2019-08-21 not yet calculated CVE-2019-1885
CISCO
cisco -- integrated_management_controller
 
A vulnerability in the Intelligent Platform Management Interface (IPMI) of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges on the underlying operating system (OS). The vulnerability is due to insufficient input validation of user-supplied commands. An attacker who has administrator privileges and access to the network where the IPMI resides could exploit this vulnerability by submitting crafted input to the affected commands. A successful exploit could allow the attacker to gain root privileges on the affected device. 2019-08-21 not yet calculated CVE-2019-1634
CISCO
cisco -- integrated_management_controller
 
A vulnerability in the Import Cisco IMC configuration utility of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition and implement arbitrary commands with root privileges on an affected device. The vulnerability is due to improper bounds checking by the import-config process. An attacker could exploit this vulnerability by sending malicious packets to an affected device. When the packets are processed, an exploitable buffer overflow condition may occur. A successful exploit could allow the attacker to implement arbitrary code on the affected device with elevated privileges. 2019-08-21 not yet calculated CVE-2019-1871
CISCO
cisco -- integrated_management_controller
 
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges on an affected device. The vulnerability is due to insufficient validation of command input by the affected software. An attacker could exploit this vulnerability by sending malicious commands to the web-based management interface of the affected software. A successful exploit could allow the attacker, with read-only privileges, to inject and execute arbitrary, system-level commands with root privileges on an affected device. 2019-08-21 not yet calculated CVE-2019-1864
CISCO
cisco -- integrated_management_controller
 
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to make unauthorized changes to the system configuration. The vulnerability is due to insufficient authorization enforcement. An attacker could exploit this vulnerability by sending a crafted HTTP request to the affected software. A successful exploit could allow a user with read-only privileges to change critical system configurations using administrator privileges. 2019-08-21 not yet calculated CVE-2019-1863
CISCO
cisco -- integrated_management_controller
 
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges on an affected device. The vulnerability is due to insufficient validation of user-supplied input by the affected software. An attacker could exploit this vulnerability by invoking an interface monitoring mechanism with a crafted argument on the affected software. A successful exploit could allow the attacker to inject and execute arbitrary, system-level commands with root privileges on an affected device. 2019-08-21 not yet calculated CVE-2019-1865
CISCO
cisco -- ios_xe_new_generation_wireless_controller
 
A vulnerability in the web-based management interface of Cisco IOS XE New Generation Wireless Controller (NGWC) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. The vulnerability is due to insufficient CSRF protections for the web-based management interface of the affected software. An attacker could exploit this vulnerability by persuading a user of the interface to follow a crafted link. A successful exploit could allow the attacker to perform arbitrary actions on an affected device by using a web browser and with the privileges of the user. 2019-08-21 not yet calculated CVE-2019-12624
CISCO
cisco -- multiple_products A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote attacker to acquire a valid session token with administrator privileges, bypassing user authentication. The vulnerability is due to insufficient request header validation during the authentication process. An attacker could exploit this vulnerability by sending a series of malicious requests to an affected device. An exploit could allow the attacker to use the acquired session token to gain full administrator access to the affected device. 2019-08-21 not yet calculated CVE-2019-1937
CISCO
cisco -- multiple_products
 
A vulnerability in Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote attacker to log in to the CLI of an affected system by using the SCP User account (scpuser), which has default user credentials. The vulnerability is due to the presence of a documented default account with an undocumented default password and incorrect permission settings for that account. Changing the default password for this account is not enforced during the installation of the product. An attacker could exploit this vulnerability by using the account to log in to an affected system. A successful exploit could allow the attacker to execute arbitrary commands with the privileges of the scpuser account. This includes full read and write access to the system's database. 2019-08-21 not yet calculated CVE-2019-1935
CISCO
cisco -- multiple_products
 
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an authenticated, remote attacker to execute arbitrary commands on the underlying Linux shell as the root user. Exploitation of this vulnerability requires privileged access to an affected device. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface. An attacker could exploit this vulnerability by logging in to the web-based management interface with administrator privileges and then sending a malicious request to a certain part of the interface. 2019-08-21 not yet calculated CVE-2019-1936
CISCO
cisco -- multiple_products
 
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to a missing authentication check in an API call. An attacker who can send a request to an affected system could cause all currently authenticated users to be logged off. Repeated exploitation could cause the inability to maintain a session in the web-based management portal. 2019-08-21 not yet calculated CVE-2019-12634
CISCO
cisco -- multiple_products
 
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote attacker to bypass user authentication and gain access as an administrative user. The vulnerability is due to insufficient request header validation during the authentication process. An attacker could exploit this vulnerability by sending a series of malicious requests to an affected device. An exploit could allow the attacker to gain full administrative access to the affected device. 2019-08-21 not yet calculated CVE-2019-1974
CISCO
cisco -- remote_phy_device_software
 
A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability occurs because the affected software improperly sanitizes user-supplied input. An attacker who has valid administrator access to an affected device could exploit this vulnerability by supplying various CLI commands with crafted arguments. A successful exploit could allow the attacker to run arbitrary commands as the root user, allowing complete compromise of the system. 2019-08-21 not yet calculated CVE-2019-1839
CISCO
cisco -- roomos_software A vulnerability in Cisco RoomOS Software could allow an authenticated, local attacker to write files to the underlying filesystem with root privileges. The vulnerability is due to insufficient permission restrictions on a specific process. An attacker could exploit this vulnerability by logging in to an affected device with remote support credentials and initiating the specific process on the device and sending crafted data to that process. A successful exploit could allow the attacker to write files to the underlying file system with root privileges. 2019-08-21 not yet calculated CVE-2019-12622
CISCO
cisco -- ucs_director_and_ucs_director_express_for_big_data A vulnerability in the web-based management interface of Cisco UCS Director and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrator privileges on an affected system. The vulnerability is due to improper authentication request handling. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow an unprivileged attacker to access and execute arbitrary actions through certain APIs. 2019-08-21 not yet calculated CVE-2019-1938
CISCO
cisco -- unified_contact_center_express A vulnerability in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of the affected software. An attacker could exploit this vulnerability by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit this vulnerability, the attacker needs valid administrator credentials. 2019-08-21 not yet calculated CVE-2019-12626
CISCO
cisco -- webex_meetings_mobile
 
A vulnerability in Cisco Webex Meetings Mobile (iOS) could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data by using an invalid Secure Sockets Layer (SSL) certificate. The vulnerability is due to insufficient SSL certificate validation by the affected software. An attacker could exploit this vulnerability by supplying a crafted SSL certificate to an affected device. A successful exploit could allow the attacker to conduct man-in-the-middle attacks to decrypt confidential information on user connections to the affected software. 2019-08-21 not yet calculated CVE-2019-1948
CISCO
code42_software -- code42_enterprise_and_crashplan_for_small_business
 
In Code42 Enterprise and Crashplan for Small Business through Client version 6.9.1, an attacker can craft a restore request to restore a file through the Code42 app to a location they do not have privileges to write. 2019-08-21 not yet calculated CVE-2019-11551
CONFIRM
codimd -- codimd
 
CodiMD 1.3.1, when Safari is used, allows XSS via an IFRAME element with allow-top-navigation in the sandbox attribute, in conjunction with a data: URL. 2019-08-23 not yet calculated CVE-2019-15499
MISC
comelz -- quark comelz Quark before 2019-03-26 allows directory traversal to locations outside of the project directory. 2019-08-23 not yet calculated CVE-2019-15520
MISC
control_web_panel -- centos_control_web_panel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.837, XSS in the domain parameter allows a low-privilege user to achieve root access via the email list page. 2019-08-21 not yet calculated CVE-2019-13476
MISC
control_web_panel -- centos_control_web_panel
 
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.848, the Login process allows attackers to check whether a username is valid by comparing response times. 2019-08-21 not yet calculated CVE-2019-13599
MISC
control_web_panel -- centos_control_web_panel
 
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete databases (such as oauthv2) from the server via an attacker account. 2019-08-21 not yet calculated CVE-2019-14245
MISC
MISC
control_web_panel -- centos_control_web_panel
 
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.837, CSRF in the forgot password function allows an attacker to change the password for the root account. 2019-08-21 not yet calculated CVE-2019-13477
MISC
control_web_panel -- centos_control_web_panel
 
In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to discover phpMyAdmin passwords (of any user in /etc/passwd) via an attacker account. 2019-08-21 not yet calculated CVE-2019-14246
MISC
MISC
cuberite -- cuberite
 
Cuberite before 2019-06-11 allows webadmin directory traversal via ....// because the protection mechanism simply removes one ../ substring. 2019-08-23 not yet calculated CVE-2019-15516
MISC
d-link -- dir-823g_devices An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Type field to SetWanSettings, a related issue to CVE-2019-13482. 2019-08-23 not yet calculated CVE-2019-15526
MISC
d-link -- dir-823g_devices
 
An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the MaxIdTime field to SetWanSettings. 2019-08-23 not yet calculated CVE-2019-15527
MISC
d-link -- dir-823g_devices
 
An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Interface field to SetStaticRouteSettings. 2019-08-23 not yet calculated CVE-2019-15528
MISC
d-link -- dir-823g_devices
 
An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the LoginPassword field to Login. 2019-08-23 not yet calculated CVE-2019-15530
MISC
d-link -- dir-823g_devices
 
An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Username field to Login. 2019-08-23 not yet calculated CVE-2019-15529
MISC
daylight_studio -- fuel_cms FUEL CMS 1.4.4 has CSRF in the blocks/create/ Create Blocks section of the Admin console. This could lead to an attacker tricking the administrator into executing arbitrary code via a specially crafted HTML page. 2019-08-19 not yet calculated CVE-2019-15229
MISC
MISC
daylight_studio -- fuel_cms
 
FUEL CMS 1.4.4 has XSS in the Create Blocks section of the Admin console. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated account but can also impact unauthenticated visitors. 2019-08-19 not yet calculated CVE-2019-15228
MISC
MISC
deeply -- deeply
 
deeply is vulnerable to Prototype Pollution in versions before 3.1.0. The function assign-deep could be tricked into adding or modifying properties of Object.prototype using using a _proto_ payload. 2019-08-23 not yet calculated CVE-2019-10750
MISC
dell -- multiple_powerconnect_models
 
Dell EMC PowerConnect 8024, 7000, M6348, M6220, M8024 and M8024-K running firmware versions prior to 5.1.15.2 contain a plain-text password storage vulnerability. TACACS\Radius credentials are stored in plain text in the system settings menu. An authenticated malicious user with access to the system settings menu may obtain the exposed password to use it in further attacks. 2019-08-20 not yet calculated CVE-2019-3753
CONFIRM
dfe-digital -- schools-experience
 
DfE School Experience before v16333-GA has XSS via a teacher training URL. 2019-08-23 not yet calculated CVE-2019-15487
MISC
MISC
django-js-reverse -- django-js-reverse django-js-reverse (aka Django JS Reverse) before 0.9.1 has XSS via js_reverse_inline. 2019-08-23 not yet calculated CVE-2019-15486
MISC
MISC
docker -- docker
 
In Docker before 18.09.4, an attacker who is capable of supplying or manipulating the build path for the "docker build" command would be able to gain command execution. An issue exists in the way "docker build" processes remote git URLs, and results in command injection into the underlying "git clone" command, leading to code execution in the context of the user executing the "docker build" command. This occurs because git ref can be misinterpreted as a flag. 2019-08-22 not yet calculated CVE-2019-13139
MISC
MISC
MISC
domoticz -- domoticz Domoticz 4.10717 has XSS via item.Name. 2019-08-23 not yet calculated CVE-2019-15480
MISC
MISC
elastic -- apm_agent_for_python
 
When the Elastic APM agent for Python versions before 5.1.0 is run as a CGI script, there is a variable name clash flaw if a remote attacker can control the proxy header. This could result in an attacker redirecting collected APM data to a proxy of their choosing. 2019-08-22 not yet calculated CVE-2019-7617
MISC
MISC
envoy -- envoy
 
In Envoy through 1.11.1, users may configure a route to match incoming path headers via the libstdc++ regular expression implementation. A remote attacker may send a request with a very long URI to result in a denial of service (memory consumption). This is a related issue to CVE-2019-14993. 2019-08-19 not yet calculated CVE-2019-15225
MISC
eprosima -- fast_rtps
 
The Access Control plugin in eProsima Fast RTPS through 1.9.0 allows fnmatch pattern matches with topic name strings (instead of the permission expressions themselves), which can lead to unintended connections between participants in a Data Distribution Service (DDS) network. 2019-08-18 not yet calculated CVE-2019-15137
MISC
MISC
eprosima -- fast_rtps
 
The Access Control plugin in eProsima Fast RTPS through 1.9.0 does not check partition permissions from remote participant connections, which can lead to policy bypass for a secure Data Distribution Service (DDS) partition. 2019-08-18 not yet calculated CVE-2019-15136
MISC
MISC
extenua -- silvershield
 
extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an additional user account, and then use SSH and port forwarding to reach a 127.0.0.1 service. 2019-08-17 not yet calculated CVE-2019-13069
MISC
MISC
faad2 -- faad2
 
An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. The faad_resetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld->buffer_size - words*4, cast to uint32. If ld->buffer_size - words*4 is negative, a buffer overflow is later performed via getdword_n(&ld->start[words], ld->bytes_left). 2019-08-21 not yet calculated CVE-2019-15296
MISC
facebook -- fizz
 
A peer could send empty handshake fragments containing only padding which would be kept in memory until a full handshake was received, resulting in memory exhaustion. This issue affects versions v2019.01.28.00 and above of fizz, until v2019.08.05.00. 2019-08-20 not yet calculated CVE-2019-11924
MISC
MISC
CONFIRM
fat_free_crm -- fat_free_crm
 
Fat Free CRM before 0.18.1 has XSS in the tags_helper in app/helpers/tags_helper.rb. 2019-08-20 not yet calculated CVE-2018-20975
CONFIRM
CONFIRM
CONFIRM
flightpath -- flightpath
 
FlightPath 4.8.3 has XSS in the Content, Edit urgent message, and Users sections of the Admin Console. This could lead to cookie stealing and other malicious actions. 2019-08-20 not yet calculated CVE-2019-15227
MISC
floragunn -- search_guard
 
Search Guard versions before 23.1 had an issue that an administrative user is able to retrieve bcrypt password hashes of other users configured in the internal user database. 2019-08-23 not yet calculated CVE-2019-13421
CONFIRM
MISC
MISC
floragunn -- search_guard
 
Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an authenticated Kibana user could impersonate as kibanaserver user when providing wrong credentials when all of the following conditions a-c are true: a) Kibana is configured to use Single-Sign-On as authentication method, one of Kerberos, JWT, Proxy, Client certificate. b) The kibanaserver user is configured to use HTTP Basic as the authentication method. c) Search Guard is configured to use an SSO authentication domain and HTTP Basic at the same time 2019-08-23 not yet calculated CVE-2019-13423
CONFIRM
MISC
floragunn -- search_guard
 
Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an attacker can redirect the user to a potentially malicious site upon Kibana login. 2019-08-23 not yet calculated CVE-2019-13422
CONFIRM
MISC
forcepoint -- next_generation_firewall Forcepoint Next Generation Firewall (Forcepoint NGFW) 6.4.x before 6.4.7, 6.5.x before 6.5.4, and 6.6.x before 6.6.2 has a serious authentication vulnerability that potentially allows unauthorized users to bypass password authentication and access services protected by the NGFW Engine. The vulnerability affects the following NGFW features when the LDAP authentication method is used as the backend authentication: IPsec VPN, SSL VPN or Browser-based user authentication. The vulnerability does not apply when any other backend authentication is used. The RADIUS authentication method is not vulnerable, for example. 2019-08-20 not yet calculated CVE-2019-6143
CONFIRM
formers -- former
 
Former before 4.2.1 has XSS via a checkbox value. 2019-08-23 not yet calculated CVE-2019-15476
MISC
MISC
fortinet -- fortinac
 
An Improper Neutralization of Input During Web Page Generation ("Cross-site Scripting") in Fortinet FortiNAC 8.3.0 to 8.3.6 and 8.5.0 admin webUI may allow an unauthenticated attacker to perform a reflected XSS attack via the search field in the webUI. 2019-08-23 not yet calculated CVE-2019-5594
CONFIRM
fortinet -- fortios
 
An information exposure vulnerability in FortiOS 6.2.0 and below may allow an unauthenticated attacker to gain platform information such as version, models, via parsing a JavaScript file through admin webUI. 2019-08-23 not yet calculated CVE-2018-13367
CONFIRM
fortinet -- fortios_vm_and_fortimanager_vm Lack of root file system integrity checking in Fortinet FortiManager VM application images of all versions below 6.2.1 may allow an attacker to implant third-party programs by recreating the image through specific methods. 2019-08-23 not yet calculated CVE-2019-6695
CONFIRM
fortinet -- fortirecorder
 
Use of Hard-coded Credentials vulnerability in FortiRecorder all versions below 2.7.4 may allow an unauthenticated attacker with knowledge of the aforementioned credentials and network access to FortiCameras to take control of those, provided they are managed by a FortiRecorder device. 2019-08-23 not yet calculated CVE-2019-6698
CONFIRM
fortinet -- ips_engine
 
Multiple padding oracle vulnerabilities (Zombie POODLE, GOLDENDOODLE, OpenSSL 0-length) in the CBC padding implementation of FortiOS IPS engine version 5.000 to 5.006, 4.000 to 4.036, 4.200 to 4.219, 3.547 and below, when configured with SSL Deep Inspection policies and with the IPS sensor enabled, may allow an attacker to decipher TLS connections going through the FortiGate via monitoring the traffic in a Man-in-the-middle position. 2019-08-23 not yet calculated CVE-2019-5592
CONFIRM
fuji_electric -- alpha5_smart_loader
 
Multiple buffer overflow issues have been identified in Alpha5 Smart Loader: All versions prior to 4.2. An attacker could use specially crafted project files to overflow the buffer and execute code under the privileges of the application. 2019-08-20 not yet calculated CVE-2019-13520
MISC
galliumos -- galliumos
 
In GalliumOS 3.0, CONFIG_SECURITY_YAMA is disabled but /etc/sysctl.d/10-ptrace.conf tries to set /proc/sys/kernel/yama/ptrace_scope to 1, which might increase risk because of the appearance that a protection mechanism is present when actually it is not. 2019-08-22 not yet calculated CVE-2019-15325
MISC
MISC
giflib -- giflib In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero. 2019-08-17 not yet calculated CVE-2019-15133
MISC
UBUNTU
gnu -- libextractor
 
GNU Libextractor through 1.9 has a heap-based buffer over-read in the function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c. 2019-08-23 not yet calculated CVE-2019-15531
MISC
google -- andriod
 
In phFriNfc_ExtnsTransceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-132083376. 2019-08-20 not yet calculated CVE-2019-2134
CONFIRM
google -- andriod
 
In CompilationJob::FinalizeJob of compiler.cc, there is a possible remote code execution due to type confusion. This could lead to escalation of privilege from a malicious proxy configuration with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-132073833. 2019-08-20 not yet calculated CVE-2019-2130
CONFIRM
google -- andriod
 
In Status::readFromParcel of Status.cpp, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-132650049. 2019-08-20 not yet calculated CVE-2019-2136
CONFIRM
google -- andriod
 
In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-125900276. 2019-08-20 not yet calculated CVE-2019-2135
CONFIRM
google -- andriod
 
In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-132082342. 2019-08-20 not yet calculated CVE-2019-2133
CONFIRM
google -- andriod
 
It is possible to overlay the VPN dialog by a malicious application. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-130568701. 2019-08-20 not yet calculated CVE-2019-2132
CONFIRM
google -- andriod
 
In OatFileAssistant::GenerateOatFile of oat_file_assistant.cc, there is a possible file corruption issue due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-130821293. 2019-08-20 not yet calculated CVE-2019-2120
CONFIRM
google -- andriod
 
An application with overlay permission can display overlays on top of settings UI. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-119115683. 2019-08-20 not yet calculated CVE-2019-2131
CONFIRM
google -- nest_cam_iq_indoor An exploitable information disclosure vulnerability exists in the Weave Legacy Pairing functionality of Nest Cam IQ Indoor version 4620002. A set of specially crafted weave packets can cause an out of bounds read, resulting in information disclosure. An attacker can send packets to trigger this vulnerability. 2019-08-20 not yet calculated CVE-2019-5034
MISC
google -- nest_cam_iq_indoor
 
An exploitable denial-of-service vulnerability exists in the Weave certificate loading functionality of Nest Cam IQ Indoor camera, version 4620002. A specially crafted weave packet can cause an integer overflow and an out-of-bounds read on unmapped memory to occur, resulting in a denial of service. An attacker can send a specially crafted packet to trigger. 2019-08-20 not yet calculated CVE-2019-5037
MISC
google -- nest_cam_iq_indoor
 
An exploitable denial-of-service vulnerability exists in the Weave error reporting functionality of the Nest Cam IQ Indoor, version 4620002. A specially crafted weave packets can cause an arbitrary Weave Exchange Session to close, resulting in a denial of service. An attacker can send a specially crafted packet to trigger this vulnerability. 2019-08-20 not yet calculated CVE-2019-5036
MISC
google -- nest_cam_iq_indoor
 
An exploitable information disclosure vulnerability exists in the Weave PASE pairing functionality of the Nest Cam IQ Indoor, version 4620002. A set of specially crafted weave packets can brute force a pairing code, resulting in greater Weave access and potentially full device control. An attacker can send specially crafted packets to trigger this vulnerability. 2019-08-20 not yet calculated CVE-2019-5035
MISC
google -- nest_labs_openweave-core
 
An exploitable command execution vulnerability exists in the ASN1 certificate writing functionality of Openweave-core version 4.0.2. A specially crafted weave certificate can trigger a heap-based buffer overflow, resulting in code execution. An attacker can craft a weave certificate to trigger this vulnerability. 2019-08-20 not yet calculated CVE-2019-5039
MISC
google -- nest_labs_openweave-core
 
An exploitable command execution vulnerability exists in the print-tlv command of Weave tool. A specially crafted weave TLV can trigger a stack-based buffer overflow, resulting in code execution. An attacker can trigger this vulnerability by convincing the user to open a specially crafted Weave command. 2019-08-20 not yet calculated CVE-2019-5038
MISC
google -- nest_labs_openweave-core_and_nest_cam_iq_indoor An exploitable information disclosure vulnerability exists in the Weave MessageLayer parsing of Openweave-core version 4.0.2 and Nest Cam IQ Indoor version 4620002. A specially crafted weave packet can cause an integer overflow to occur, resulting in PacketBuffer data reuse. An attacker can send a packet to trigger this vulnerability. 2019-08-20 not yet calculated CVE-2019-5040
MISC
hot -- tasking-manager
 
Tasking Manager before 3.4.0 allows SQL Injection via custom SQL. 2019-08-23 not yet calculated CVE-2019-15535
MISC
MISC
httpie -- httpie
 
All versions of the HTTPie package are vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to the current directory, by redirecting a request from HTTP to a crafted URL pointing to a server in his or hers control. 2019-08-23 not yet calculated CVE-2019-10751
MISC
humanica -- humatrix
 
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to upload any file type to a candidate's profile picture folder via a crafted recruitment_online/personalData/act_personaltab.cfm multiple-part POST request with a predictable WRC01_USERID parameter. Moreover, the attacker can upload executable content (e.g., asp or aspx) for executing OS commands on the server. 2019-08-18 not yet calculated CVE-2019-15130
MISC
humanica -- humatrix
 
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to access all candidates' files in the photo folder on the website by specifying a "user id" parameter and file name, such as in a recruitment_online/upload/user/[user_id]/photo/[file_name] URI. 2019-08-18 not yet calculated CVE-2019-15129
MISC
ibm -- cloud_private
 
IBM Cloud Private 3.1.1 and 3.1.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 158116. 2019-08-20 not yet calculated CVE-2019-4117
CONFIRM
XF
ibm -- emptoris_sourcing
 
IBM Emptoris Sourcing 10.1.0 through 10.1.3, IBM Contract Management 10.1.0 through 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 generates an error message that includes sensitive information that could be used in further attacks against the system. IBM X-Force ID: 164069. 2019-08-20 not yet calculated CVE-2019-4485
XF
CONFIRM
ibm -- informix_dynamic_server_enterprise_edition IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local privileged Informix user to load a malicious shared library and gain root access privileges. IBM X-Force ID: 159941. 2019-08-20 not yet calculated CVE-2019-4253
CONFIRM
XF
ibm -- informix_dynamic_server_enterprise_edition Stack-based buffer overflow in oninit in IBM Informix Dynamic Server Enterprise Edition 12.1 allows an authenticated user to execute predefined code with root privileges, such as escalating to a root shell. IBM X-Force ID: 144441. 2019-08-20 not yet calculated CVE-2018-1636
CONFIRM
XF
ibm -- informix_dynamic_server_enterprise_edition
 
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in onsrvapd. IBM X-Force ID: 144434. 2019-08-20 not yet calculated CVE-2018-1633
CONFIRM
XF
ibm -- informix_dynamic_server_enterprise_edition
 
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in .infxdirs. IBM X-Force ID: 144432. 2019-08-20 not yet calculated CVE-2018-1632
CONFIRM
XF
ibm -- informix_dynamic_server_enterprise_edition
 
Stack-based buffer overflow in oninit in IBM Informix Dynamic Server Enterprise Edition 12.1 allows an authenticated user to execute predefined code with root privileges, such as escalating to a root shell. IBM X-Force ID: 144439. 2019-08-20 not yet calculated CVE-2018-1635
CONFIRM
XF
ibm -- informix_dynamic_server_enterprise_edition
 
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user to load malicious libraries and gain root privileges. IBM X-Force ID: 149426. 2019-08-20 not yet calculated CVE-2018-1796
CONFIRM
XF
ibm -- informix_dynamic_server_enterprise_edition
 
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in infos.DBSERVERNAME. IBM X-Force ID: 144437. 2019-08-20 not yet calculated CVE-2018-1634
CONFIRM
XF
ibm -- infosphere_business_automation_workflow
 
IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, 18.0.0.2, 19.0.0.1, and 19.0.0.2 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 162770. 2019-08-20 not yet calculated CVE-2019-4424
XF
CONFIRM
ibm -- infosphere_global_name_management
 
IBM InfoSphere Global Name Management 5.0 and 6.0 and IBM InfoSphere Identity Insight 8.1 and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 162890. 2019-08-20 not yet calculated CVE-2019-4433
XF
CONFIRM
CONFIRM
ibm -- mq
 
IBM MQ 9.1.0.0, 9.1.0.1, 9.1.1, and 9.1.0.2 is vulnerable to a denial of service due to a local user being able to fill up the disk space of the underlying filesystem using the error logging service. IBM X-Force ID: 156398. 2019-08-20 not yet calculated CVE-2019-4049
XF
CONFIRM
ibm -- multiple_products
 
IBM Emptoris Sourcing 10.1.0 through 10.1.3, IBM Contract Management 10.1.0 through 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 could allow an authenticated user to obtain sensitive information from error messages IBM X-Force ID: 161034. 2019-08-20 not yet calculated CVE-2019-4308
XF
CONFIRM
ibm -- security_guardium_big_data_intelligence IBM Security Guardium Big Data Intelligence 4.0 (SonarG) is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 161419. 2019-08-20 not yet calculated CVE-2019-4340
XF
CONFIRM
ignite_realtime -- openfire
 
Ignite Realtime Openfire before 4.4.1 has reflected XSS via an LDAP setup test. 2019-08-23 not yet calculated CVE-2019-15488
MISC
MISC
imagemagick -- imagemagick
 
coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by crafting a Matlab image file that is mishandled in ReadImage in MagickCore/constitute.c. 2019-08-18 not yet calculated CVE-2019-15140
MISC
MISC
imagemagick -- imagemagick
 
The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a different vulnerability than CVE-2019-11472. 2019-08-18 not yet calculated CVE-2019-15139
MISC
MISC
intel -- authenticate Improper permissions in the software installer for Intel(R) Authenticate before 3.8 may allow an authenticated user to potentially enable escalation of privilege via local access. 2019-08-19 not yet calculated CVE-2019-11143
CONFIRM
intel -- computing_improvement_program
 
Insufficient access control in hardware abstraction in SEMA driver for Intel(R) Computing Improvement Program before version 2.4.0.04733 may allow an authenticated user to potentially enable escalation of privilege, denial of service or information disclosure via local access. 2019-08-19 not yet calculated CVE-2019-11162
CONFIRM
intel -- driver_and_support_assistant Improper file verification in Intel? Driver & Support Assistant before 19.7.30.2 may allow an authenticated user to potentially enable escalation of privilege via local access. 2019-08-19 not yet calculated CVE-2019-11145
CONFIRM
intel -- driver_and_support_assistant
 
Improper file verification in Intel? Driver & Support Assistant before 19.7.30.2 may allow an authenticated user to potentially enable escalation of privilege via local access. 2019-08-19 not yet calculated CVE-2019-11146
CONFIRM
intel -- nuc
 
Insufficient session validation in system firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access. 2019-08-19 not yet calculated CVE-2019-11140
CONFIRM
intel -- processor_identification_utility_for_windows
 
Insufficient access control in a hardware abstraction driver for Intel(R) Processor Identification Utility for Windows before version 6.1.0731 may allow an authenticated user to potentially enable escalation of privilege, denial of service or information disclosure via local access. 2019-08-19 not yet calculated CVE-2019-11163
CONFIRM
intel -- raid_web_console_2
 
Authentication bypass in the web console for Intel(R) Raid Web Console 2 all versions may allow an unauthenticated attacker to potentially enable disclosure of information via network access. 2019-08-19 not yet calculated CVE-2019-0173
CONFIRM
intel -- remote_displays_sdk
 
Improper permissions in the installer for Intel(R) Remote Displays SDK before version 2.0.1 R2 may allow an authenticated user to potentially enable escalation of privilege via local access. 2019-08-19 not yet calculated CVE-2019-11148
CONFIRM
it-novum -- openitcockpit openITCOCKPIT before 3.7.1 has CSRF, aka RVID 2-445b21. 2019-08-23 not yet calculated CVE-2019-15491
MISC
it-novum -- openitcockpit
 
openITCOCKPIT before 3.7.1 allows code injection, aka RVID 1-445b21. 2019-08-23 not yet calculated CVE-2019-15490
MISC
it-novum -- openitcockpit
 
openITCOCKPIT before 3.7.1 allows deletion of files, aka RVID 4-445b21. 2019-08-23 not yet calculated CVE-2019-15493
MISC
it-novum -- openitcockpit
 
openITCOCKPIT before 3.7.1 allows SSRF, aka RVID 5-445b21. 2019-08-23 not yet calculated CVE-2019-15494
MISC
it-novum -- openitcockpit
 
openITCOCKPIT before 3.7.1 has reflected XSS, aka RVID 3-445b21. 2019-08-23 not yet calculated CVE-2019-15492
MISC
jc21 -- ngnix_proxy_manager
 
jc21 Nginx Proxy Manager before 2.0.13 allows %2e%2e%2f directory traversal. 2019-08-23 not yet calculated CVE-2019-15517
MISC
MISC
johnson_controls -- metasys
 
Metasys? ADS/ADX servers and NAE/NIE/NCE engines prior to 9.0 make use of a hardcoded RC2 key for certain encryption operations involving the Site Management Portal (SMP). 2019-08-20 not yet calculated CVE-2019-7594
CONFIRM
MISC
johnson_controls -- metasys
 
Metasys? ADS/ADX servers and NAE/NIE/NCE engines prior to 9.0 make use of a shared RSA key pair for certain encryption operations involving the Site Management Portal (SMP). 2019-08-20 not yet calculated CVE-2019-7593
CONFIRM
MISC
jooby_project -- jooby Jooby before 1.6.4 has XSS via the default error handler. 2019-08-23 not yet calculated CVE-2019-15477
MISC
kbpublisher -- kbpublisher
 
KBPublisher 6.0.2.1 has SQL Injection via the admin/index.php?module=report entry_id[0] parameter, the admin/index.php?module=log id parameter, or an index.php?View=print&id[]= request. 2019-08-21 not yet calculated CVE-2019-10687
MISC
MISC
kimai -- kimai
 
Kimai v2 before 1.1 has XSS via a timesheet description. 2019-08-23 not yet calculated CVE-2019-15481
MISC
MISC
lenovo -- multiple_products
 
An information leakage vulnerability in Iomega and LenovoEMC NAS products could allow disclosure of some device details such as Share names through the device API when Personal Cloud is enabled. This does not allow read, write, delete, or any other access to the underlying file systems and their contents. 2019-08-19 not yet calculated CVE-2019-6178
MISC
lenovo -- multiple_products
 
A stored cross-site scripting (XSS) vulnerability exists in various firmware versions of the legacy IBM System x IMM (IMM v1) embedded Baseboard Management Controller (BMC). This vulnerability could allow an unauthenticated user to cause JavaScript code to be stored in the IMM log which may then be executed in the user's web browser when IMM log records containing the JavaScript code are viewed. The JavaScript code is not executed on IMM itself. The later IMM2 (IMM v2) is not affected. 2019-08-19 not yet calculated CVE-2019-6159
CONFIRM
lenovo -- solution_center
 
A vulnerability reported in Lenovo Solution Center version 03.12.003, which is no longer supported, could allow log files to be written to non-standard locations, potentially leading to privilege escalation. Lenovo ended support for Lenovo Solution Center and recommended that customers migrate to Lenovo Vantage or Lenovo Diagnostics in April 2018. 2019-08-21 not yet calculated CVE-2019-6177
CONFIRM
lenovo -- yoga_700-11isk_and_700-14isk
 
A DLL search path vulnerability was reported in PaperDisplay Hotkey Service version 1.2.0.8 that could allow privilege escalation. Lenovo has ended support for PaperDisplay Hotkey software as the Night light feature introduced in Windows 10 Build 1703 provides similar features. 2019-08-19 not yet calculated CVE-2019-6165
CONFIRM
lenovo --thinkpad
 
A vulnerability was reported in various BIOS versions of older ThinkPad systems that could allow a user with administrative privileges or physical access the ability to update the Embedded Controller with unsigned firmware. 2019-08-19 not yet calculated CVE-2019-6171
CONFIRM
linux -- linux_kernel drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir). 2019-08-23 not yet calculated CVE-2019-15504
MISC
linux -- linux_kernel
 
An issue was discovered in the Linux kernel before 5.0.9. There is a use-after-free in atalk_proc_exit, related to net/appletalk/atalk_proc.c, net/appletalk/ddp.c, and net/appletalk/sysctl_net_atalk.c. 2019-08-21 not yet calculated CVE-2019-15292
MISC
MISC
linux -- linux_kernel
 
In the Linux kernel, a certain net/ipv4/tcp_output.c change, which was properly incorporated into 4.16.12, was incorrectly backported to the earlier longterm kernels, introducing a new vulnerability that was potentially more severe than the issue that was intended to be fixed by backporting. Specifically, by adding to a write queue between disconnection and re-connection, a local attacker can trigger multiple use-after-free conditions. This can result in a kernel crash, or potentially in privilege escalation. NOTE: this affects (for example) Linux distributions that use 4.9.x longterm kernels before 4.9.190 or 4.14.x longterm kernels before 4.14.139. 2019-08-20 not yet calculated CVE-2019-15239
MISC
MISC
MISC
MISC
MISC
linux -- linux_kernel
 
drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be remote via usbip or usbredir). 2019-08-23 not yet calculated CVE-2019-15505
MISC
MISC
MISC
live_networks -- live555
 
Live555 before 2019.08.16 has a Use-After-Free because GenericMediaServer::createNewClientSessionWithId can generate the same client session ID in succession, which is mishandled by the MPEG1or2 and Matroska file demultiplexors. 2019-08-19 not yet calculated CVE-2019-15232
MISC
mantisbt -- mantisbt
 
The Timeline feature in my_view_page.php in MantisBT through 2.21.1 has a stored cross-site scripting (XSS) vulnerability, allowing execution of arbitrary code (if CSP settings permit it) after uploading an attachment with a crafted filename. The code is executed for any user having visibility to the issue, whenever My View Page is displayed. 2019-08-21 not yet calculated CVE-2019-15074
CONFIRM
MISC
mcafee -- data_loss_prevention

 
Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to "blue screen" via an encrypted message sent to DLPe which when decrypted results in DLPe reading unallocated memory. 2019-08-21 not yet calculated CVE-2019-3634
CONFIRM
mcafee -- data_loss_prevention
 
Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to "blue screen" via a carefully constructed message sent to DLPe which bypasses DLPe internal checks and results in DLPe reading unallocated memory. 2019-08-21 not yet calculated CVE-2019-3633
CONFIRM
micro_focus -- verastream_host_integrator Path traversal vulnerability in Micro Focus Verastream Host Integrator (VHI), versions 7.7 SP2 and earlier, The vulnerability allows remote unauthenticated attackers to read arbitrary files. 2019-08-23 not yet calculated CVE-2019-11654
CONFIRM
mirasys -- vms Mirasys VMS before V7.6.1 and 8.x before V8.3.2 mishandles the Download() method of AutoUpdateService in SMServer.exe, leading to Directory Traversal. An attacker could use ..\ with this method to iterate over lists of interesting system files and download them without previous authentication. This includes SAM-database backups, Web.config files, etc. and might cause a serious impact on confidentiality. 2019-08-22 not yet calculated CVE-2019-11029
MISC
mirasys -- vms
 
Mirasys VMS before V7.6.1 and 8.x before V8.3.2 mishandles the Mirasys.Common.Utils.Security.DataCrypt method in Common.dll in AuditTrailService in SMServer.exe. This method triggers insecure deserialization within the .NET garbage collector, in which a gadget (contained in a serialized object) may be executed with SYSTEM privileges. The attacker must properly encrypt the object; however, the hardcoded keys are available. 2019-08-22 not yet calculated CVE-2019-11030
MISC
mirasys -- vms
 
Mirasys VMS before V7.6.1 and 8.x before V8.3.2 mishandles the auto-update feature of IDVRUpdateService2 in DVRServer.exe. An attacker can upload files with a Setup-Files action, and then execute these files with SYSTEM privileges. 2019-08-22 not yet calculated CVE-2019-11031
MISC
mixin-deep -- mixin-deep
 
mixin-deep is vulnerable to Prototype Pollution in versions before 1.3.2 and version 2.0.0. The function mixin-deep could be tricked into adding or modifying properties of Object.prototype using a constructor payload. 2019-08-23 not yet calculated CVE-2019-10746
MISC
moodle -- moodle The Acclaim block plugin before 2019-06-26 for Moodle allows SQL Injection via delete_records. 2019-08-23 not yet calculated CVE-2019-15536
MISC
motorola -- cx2l_mwr04l_and_c1_mwr03_devices An issue was discovered in OpenWrt libuci (aka Library for the Unified Configuration Interface) as used on Motorola CX2L MWR04L 1.01 and C1 MWR03 1.01 devices. /tmp/.uci/network locking is mishandled after reception of a long SetWanSettings command, leading to a device hang. 2019-08-23 not yet calculated CVE-2019-15513
MISC
newgen -- omniflow_intelligent_business_process_suite Newgen OmniFlow Intelligent Business Process Suite (iBPS) 7.0 has an "improper server side validation" vulnerability where client-side validations are tampered, and inappropriate information is stored on the server side and fetched from the server every time the user visits the D, creating business confusion. In the worst case, all available resources are consumed while processing the data, resulting in unavailability of the service to legitimate users. This occurs because non-editable parameters can be modified by manually editing a disabled form field within the developer options. 2019-08-21 not yet calculated CVE-2018-17791
MISC
nltk_project -- nltk_downloader
 
NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in an NLTK package (ZIP archive) that is mishandled during extraction. 2019-08-22 not yet calculated CVE-2019-14751
MISC
CONFIRM
CONFIRM
MISC
object_management_group -- dds_security
 
The handshake protocol in Object Management Group (OMG) DDS Security 1.1 sends cleartext information about all of the capabilities of a participant (including capabilities inapplicable to the current session), which makes it easier for attackers to discover potentially sensitive reachability information on a Data Distribution Service (DDS) network. 2019-08-18 not yet calculated CVE-2019-15135
MISC
MISC
objective_development_software -- little_snitch
 
Little Snitch versions 4.4.0 fixes a vulnerability in a privileged helper tool. However, the operating system may have made a copy of the privileged helper which is not removed or updated immediately. Computers may therefore still be vulnerable after upgrading to 4.4.0. Version 4.4.1 fixes this issue by removing the operating system's copy during the upgrade. 2019-08-23 not yet calculated CVE-2019-13014
MISC
objective_development_software -- little_snitch
 
Little Snitch versions 4.3.0 to 4.3.2 have a local privilege escalation vulnerability in their privileged helper tool. The privileged helper tool implements an XPC interface which is available to any process and allows directory listings and copying files as root. 2019-08-23 not yet calculated CVE-2019-13013
MISC
octopus_deploy -- octopus_server
 
In Octopus Deploy versions 2018.8.4 to 2019.7.6, when a web request proxy is configured, an authenticated user (in certain limited special-characters circumstances) could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. This is fixed in 2019.7.7. The fix was back-ported to LTS 2019.6.7 as well as LTS 2019.3.8. 2019-08-23 not yet calculated CVE-2019-15507
MISC
octopus_deploy -- octopus_tentacle_and_octopus_server
 
In Octopus Tentacle versions 3.0.8 to 5.0.0, when a web request proxy is configured, an authenticated user (in certain limited OctopusPrintVariables circumstances) could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. This is fixed in 5.0.1. The fix was back-ported to 4.0.7. 2019-08-23 not yet calculated CVE-2019-15508
MISC
openemr -- openemr
 
In OpenEMR 5.0.1 and earlier, the patient file download interface contains a directory traversal flaw that allows authenticated attackers to download arbitrary files from the host system. 2019-08-20 not yet calculated CVE-2019-3967
MISC
openemr -- openemr
 
In OpenEMR 5.0.1 and earlier, an authenticated attacker can execute arbitrary commands on the host system via the Scanned Forms interface when creating a new form. 2019-08-20 not yet calculated CVE-2019-3968
MISC
openemr -- openemr
 
In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the foreign_id parameter. This could allow an attacker to execute arbitrary code in the context of a user's session. 2019-08-20 not yet calculated CVE-2019-3966
MISC
openpgp.js -- openpgp.js

 
Improper Verification of a Cryptographic Signature in OpenPGP.js <=4.1.2 allows an attacker to pass off unsigned data as signed. 2019-08-22 not yet calculated CVE-2019-9154
MISC
CONFIRM
CONFIRM
CONFIRM
MISC
MISC
openpgp.js -- openpgp.js

 
A cryptographic issue in OpenPGP.js <=4.2.0 allows an attacker who is able provide forged messages and gain feedback about whether decryption of these messages succeeded to conduct an invalid curve attack in order to gain the victim's ECDH private key. 2019-08-22 not yet calculated CVE-2019-9155
MISC
CONFIRM
CONFIRM
CONFIRM
MISC
MISC
openpgp.js -- openpgp.js
 
Improper Verification of a Cryptographic Signature in OpenPGP.js <=4.1.2 allows an attacker to forge signed messages by replacing its signatures with a "standalone" or "timestamp" signature. 2019-08-22 not yet calculated CVE-2019-9153
MISC
CONFIRM
CONFIRM
CONFIRM
MISC
MISC
oscommerce -- oscommerce osCommerce 2.3.4.1 has an incomplete '.htaccess' for blacklist filtering in the "product" page. Remote authenticated administrators can upload new '.htaccess' files (e.g., omitting .php) and subsequently achieve arbitrary PHP code execution via a /catalog/admin/categories.php?cPath=&action=new_product URI. 2019-08-22 not yet calculated CVE-2018-18573
CONFIRM
oscommerce -- oscommerce
 
osCommerce 2.3.4.1 has an incomplete '.htaccess' for blacklist filtering in the "product" page. Because of this filter, script files with certain PHP-related extensions (such as .phtml and .php5) didn't execute in the application. But this filter didn't prevent the '.pht' extension. Thus, remote authenticated administrators can upload '.pht' files for arbitrary PHP code execution via a /catalog/admin/categories.php?cPath=&action=new_product URI. 2019-08-22 not yet calculated CVE-2018-18572
CONFIRM
otrs -- otrs_and_otrs_community_edition
 
An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.8, and Community Edition 5.0.x through 5.0.36 and 6.0.x through 6.0.19. An attacker who is logged into OTRS as an agent user with appropriate permissions can leverage OTRS notification tags in templates in order to disclose hashed user passwords. 2019-08-21 not yet calculated CVE-2019-13458
CONFIRM
CONFIRM
MISC
otrs -- otrs_community_edition
 
An issue was discovered in Open Ticket Request System (OTRS) Community Edition 5.0.x through 5.0.36 and 6.0.x through 6.0.19. A user logged into OTRS as an agent might unknowingly disclose their session ID by sharing the link of an embedded ticket article with third parties. This identifier can be then be potentially abused in order to impersonate the agent user. 2019-08-21 not yet calculated CVE-2019-12746
CONFIRM
CONFIRM
MISC
ox_software -- ox_app_suite
 
OX App Suite 7.10.1 and earlier has Insecure Permissions. 2019-08-20 not yet calculated CVE-2019-11806
MISC
ox_software -- ox_app_suite
 
OX App Suite 7.10.1 allows Content Spoofing. 2019-08-20 not yet calculated CVE-2019-11521
MISC
palo_alto_networks -- pan-os
 
Memory corruption in PAN-OS 8.1.9 and earlier, and PAN-OS 9.0.3 and earlier will allow an administrative user to cause arbitrary memory corruption by rekeying the current client interactive session. 2019-08-23 not yet calculated CVE-2019-1582
CONFIRM
palo_alto_networks -- pan-os
 
Memory corruption in PAN-OS 7.1.24 and earlier, PAN-OS 8.0.19 and earlier, PAN-OS 8.1.9 and earlier, and PAN-OS 9.0.3 and earlier will allow a remote, unauthenticated user to craft a message to Secure Shell Daemon (SSHD) and corrupt arbitrary memory. 2019-08-23 not yet calculated CVE-2019-1580
CONFIRM
palo_alto_networks -- pan-os
 
Mitigation bypass in PAN-OS 7.1.24 and earlier, PAN-OS 8.0.19 and earlier, PAN-OS 8.1.9 and earlier, and PAN-OS 9.0.3 and earlier will allow a remote, unauthenticated user to execute arbitrary code by crafting a malicious message. 2019-08-23 not yet calculated CVE-2019-1581
CONFIRM
palo_alto_networks -- twistlock_console
 
Escalation of privilege vulnerability in the Palo Alto Networks Twistlock console 19.07.358 and earlier allows a Twistlock user with Operator capabilities to escalate privileges to that of another user. Active interaction with an affected component is required for the payload to execute on the victim. 2019-08-23 not yet calculated CVE-2019-1583
CONFIRM
pivotal -- pivotal_application_service
 
Pivotal Apps Manager, included in Pivotal Application Service versions 2.3.x prior to 2.3.16, 2.4.x prior to 2.4.12, 2.5.x prior to 2.5.8, and 2.6.x prior to 2.6.3, makes a request to the /cloudapplication endpoint via Spring actuator, and subsequent requests via unsecured http. An adjacent unauthenticated user could eavesdrop on the network traffic and gain access to the unencrypted token allowing the attacker to read the type of access a user has over an app. They may also modify the logging level, potentially leading to lost information that would otherwise have been logged. 2019-08-19 not yet calculated CVE-2019-11276
CONFIRM
pw3270_terminal_emulator -- pw3270_terminal_emulator
 
There is Missing SSL Certificate Validation in the pw3270 terminal emulator before version 5.1. 2019-08-23 not yet calculated CVE-2019-15525
MISC
rapid7 -- insightappsec
 
The Rapid7 InsightAppSec broker suffers from a DLL injection vulnerability in the 'prunsrv.exe' component of the product. If exploited, a local user of the system (who must already be authenticated to the operating system) can elevate their privileges with this vulnerability to the privilege level of InsightAppSec (usually, SYSTEM). This issue affects version 2019.06.24 and prior versions of the product. 2019-08-19 not yet calculated CVE-2019-5631
CONFIRM
rapid7 -- nexpose
 
Rapid7 Nexpose versions 6.5.50 and prior suffer from insufficient session expiration when an administrator performs a security relevant edit on an existing, logged on user. For example, if a user's password is changed by an administrator due to an otherwise unrelated credential leak, that user account's current session is still valid after the password change, potentially allowing the attacker who originally compromised the credential to remain logged in and able to cause further damage. 2019-08-21 not yet calculated CVE-2019-5638
CONFIRM
redcap -- redcap
 
REDCap before 9.3.0 allows time-based SQL injection in the edit calendar event via the cal_id parameter, such as cal_id=55 and sleep(3) to Calendar/calendar_popup_ajax.php. The attacker can obtain a user's login sessionid from the database, and then re-login into REDCap to compromise all data. 2019-08-17 not yet calculated CVE-2019-14937
MISC
MISC
CONFIRM
rest-client_gem_for_ruby_on_rails -- rest-client_gem_for_ruby_on_rails
 
The rest-client gem 1.6.10 through 1.6.13 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. Versions <=1.6.9 and >=1.6.14 are unaffected. 2019-08-19 not yet calculated CVE-2019-15224
MISC
MISC
riot_os -- riot
 
RIOT through 2019.07 contains a memory leak in the TCP implementation (gnrc_tcp), allowing an attacker to consume all memory available for network packets and thus effectively stopping all network threads from working. This is related to _receive in sys/net/gnrc/transport_layer/tcp/gnrc_tcp_eventloop.c upon receiving an ACK before a SYN. 2019-08-17 not yet calculated CVE-2019-15134
MISC
roundcube -- roundcube_webmail
 
Roundcube Webmail through 1.3.9 mishandles Punycode xn-- domain names, leading to homograph attacks. 2019-08-19 not yet calculated CVE-2019-15237
MISC
sailpoint -- sailpoint_desktop_password_reset
 
An unauthenticated privilege escalation exists in SailPoint Desktop Password Reset 7.2. A user with local access to only the Windows logon screen can escalate their privileges to NT AUTHORITY\System. An attacker would need local access to the machine for a successful exploit. The attacker must disconnect the computer from the local network / WAN and connect it to an internet facing access point / network. At that point, the attacker can execute the password-reset functionality, which will expose a web browser. Browsing to a site that calls local Windows system functions (e.g., file upload) will expose the local file system. From there an attacker can launch a privileged command shell. 2019-08-20 not yet calculated CVE-2019-12889
MISC
sec-1 -- watchguard_fireware
 
The authentication applet in Watchguard Fireware 11.11 Operating System has reflected XSS (this can also cause an open redirect). 2019-08-23 not yet calculated CVE-2016-6154
MISC
selectize.js -- selectize.js
 
selectize-plugin-a11y before 1.1.0 has XSS via the msg field. 2019-08-23 not yet calculated CVE-2019-15482
MISC
MISC
set-value -- set-value
 
set-value is vulnerable to Prototype Pollution in versions before 2.0.1 and version 3.0.0. The function mixin-deep could be tricked into adding or modifying properties of Object.prototype using any of the constructor, prototype and _proto_ payloads. 2019-08-23 not yet calculated CVE-2019-10747
MISC
softvelum -- nimble_streamer
 
Nimble Streamer 3.0.2-2 through 3.5.4-9 has a ../ directory traversal vulnerability. Successful exploitation could allow an attacker to traverse the file system to access files or directories that are outside of the restricted directory on the remote server. 2019-08-22 not yet calculated CVE-2019-11013
MISC
MISC
sonatype -- nexus_repository_manager
 
In Nexus Repository Manager before 3.18.0, users with elevated privileges can create stored XSS. 2019-08-22 not yet calculated CVE-2019-14469
MISC
sphinx_technologies -- sphinx
 
Sphinx Technologies Sphinx 3.1.1 by default has no authentication and listens on 0.0.0.0, making it exposed to the internet (unless filtered by a firewall or reconfigured to listen to 127.0.0.1 only). 2019-08-22 not yet calculated CVE-2019-14511
MISC
MISC
MISC
swoole -- swoole-src
 
Swoole before 4.2.13 allows directory traversal in swPort_http_static_handler. 2019-08-23 not yet calculated CVE-2019-15518
MISC
MISC
telegram -- telegram
 
The Privacy > Phone Number feature in the Telegram app 5.10 for Android and iOS provides an incorrect indication that the access level is Nobody, because attackers can find these numbers via the Group Info feature, e.g., by adding a significant fraction of a region's assigned phone numbers. 2019-08-23 not yet calculated CVE-2019-15514
MISC
texas_instruments -- tm4c_microcontrollers
 
An issue was discovered in the Texas Instruments (TI) TM4C microcontroller series, such as the TM4C123. The eXecute-Only-Memory (XOM) implementation prevents code read-outs on protected memory by generating bus faults. However, single-stepping and using breakpoints is allowed in XOM-protected flash memory. As a consequence, it is possible to execute single instructions with arbitrary system states (e.g., registers, status flags, and SRAM content) and observe the state changes produced by the unknown instruction. An attacker could exploit this vulnerability by executing protected and unknown instructions with specific system states and observing the state changes. Based on the gathered information, it is possible to reverse-engineer the executed instructions. The processor acts as a kind of "instruction oracle." 2019-08-20 not yet calculated CVE-2018-18056
MISC
tibco_software -- multiple_tibco_ftl_products
 
The realm configuration component of TIBCO Software Inc.'s TIBCO FTL Community Edition, TIBCO FTL Developer Edition, TIBCO FTL Enterprise Edition contains a vulnerability that theoretically fails to properly enforce access controls. This issue affects TIBCO FTL Community Edition 6.0.0; 6.0.1; 6.1.0, TIBCO FTL Developer Edition 6.0.1; 6.1.0, and TIBCO FTL Enterprise Edition 6.0.0; 6.0.1; 6.1.0. 2019-08-20 not yet calculated CVE-2019-11209
CONFIRM
CONFIRM
tiki -- tiki
 
tiki/tiki-upload_file.php in Tiki 18.4 allows remote attackers to upload JavaScript code that is executed upon visiting a tiki/tiki-download_file.php?display&fileId= URI. 2019-08-22 not yet calculated CVE-2019-15314
MISC
tp-link -- tl-wr840n_device
 
The traceroute function on the TP-Link TL-WR840N v4 router with firmware through 0.9.1 3.16 is vulnerable to remote code execution via a crafted payload in an IP address input field. 2019-08-22 not yet calculated CVE-2019-15060
MISC
MISC
trend_micro -- password_manager

 
A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited, would allow an attacker to load an arbitrary unsigned DLL into the signed service's process. This process is very similar, yet not identical to CVE-2019-14684. 2019-08-20 not yet calculated CVE-2019-14687
CONFIRM
MISC
trend_micro -- password_manager
 
A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited, would allow an attacker to load an arbitrary unsigned DLL into the signed service's process. This process is very similar, yet not identical to CVE-2019-14687. 2019-08-20 not yet calculated CVE-2019-14684
CONFIRM
MISC
trend_micro -- security_2019
 
A DLL hijacking vulnerability exists in the Trend Micro Security's 2019 consumer family of products (v15) Folder Shield component and the standalone Trend Micro Ransom Buster (1.0) tool in which, if exploited, would allow an attacker to load a malicious DLL, leading to elevated privileges. 2019-08-21 not yet calculated CVE-2019-14686
CONFIRM
trend_micro -- security_2019
 
A local privilege escalation vulnerability exists in Trend Micro Security 2019 (v15.0) in which, if exploited, would allow an attacker to manipulate a specific product feature to load a malicious service. 2019-08-21 not yet calculated CVE-2019-14685
FULLDISC
CONFIRM
MISC
valve -- steam_client_for_windows
 
Valve Steam Client for Windows through 2019-08-20 has weak folder permissions, leading to privilege escalation (to NT AUTHORITY\SYSTEM) via crafted use of CreateMountPoint.exe and SetOpLock.exe to leverage a TOCTOU race condition. 2019-08-21 not yet calculated CVE-2019-15316
MISC
MISC
MISC
MISC
valve -- steam_client_for_windows
 
Valve Steam Client for Windows through 2019-08-16 allows privilege escalation (to NT AUTHORITY\SYSTEM) because local users can replace the current versions of SteamService.exe and SteamService.dll with older versions that lack the CVE-2019-14743 patch. 2019-08-21 not yet calculated CVE-2019-15315
MISC
vera_control -- vera_edge_home_controller
 
cgi-bin/cmh/webcam.sh in Vera Edge Home Controller 1.7.4452 allows remote unauthenticated users to execute arbitrary OS commands via --output argument injection in the username parameter to /cgi-bin/cmh/webcam.sh. 2019-08-23 not yet calculated CVE-2019-15498
MISC
wordpress -- wordpress The chained-quiz plugin before 1.0 for WordPress has multiple XSS issues. 2019-08-20 not yet calculated CVE-2016-10892
MISC
wordpress -- wordpress The contact-form-7 plugin before 5.0.4 for WordPress has privilege escalation because of capability_type mishandling in register_post_type. 2019-08-22 not yet calculated CVE-2018-20979
MISC
wordpress -- wordpress The wp-file-upload plugin before 3.0.0 for WordPress has insufficient restrictions on upload of php, js, pht, php3, php4, php5, phtml, htm, html, and htaccess files. 2019-08-22 not yet calculated CVE-2015-9340
MISC
wordpress -- wordpress The reflex-gallery plugin before 1.4.3 for WordPress has XSS. 2019-08-22 not yet calculated CVE-2013-7482
MISC
wordpress -- wordpress The wp-file-upload plugin before 2.5.0 for WordPress has insufficient restrictions on upload of .php files. 2019-08-22 not yet calculated CVE-2015-9338
MISC
wordpress -- wordpress The woocommerce-store-toolkit plugin before 1.5.8 for WordPress has privilege escalation. 2019-08-22 not yet calculated CVE-2016-10923
MISC
wordpress -- wordpress The nelio-ab-testing plugin before 4.6.4 for WordPress has CSRF in experiment forms. 2019-08-16 not yet calculated CVE-2017-18547
MISC
wordpress -- wordpress The webp-express plugin before 0.14.11 for WordPress has insufficient protection against arbitrary file reading. 2019-08-22 not yet calculated CVE-2019-15330
MISC
wordpress -- wordpress The ninja-forms plugin before 3.2.15 for WordPress has parameter tampering. 2019-08-22 not yet calculated CVE-2018-20980
MISC
wordpress -- wordpress The peters-login-redirect plugin before 2.9.2 for WordPress has CSRF. 2019-08-16 not yet calculated CVE-2019-15115
MISC
wordpress -- wordpress The wp-retina-2x plugin before 5.2.3 for WordPress has XSS. 2019-08-22 not yet calculated CVE-2018-20983
MISC
wordpress -- wordpress
 
The easy-digital-downloads plugin before 2.3.3 for WordPress has SQL injection. 2019-08-16 not yet calculated CVE-2015-9324
MISC
MISC
wordpress -- wordpress
 
The email-newsletter plugin through 20.15 for WordPress has SQL injection. 2019-08-22 not yet calculated CVE-2015-9334
MISC
MISC
MISC
wordpress -- wordpress
 
The cforms2 plugin before 14.6.10 for WordPress has SQL injection. 2019-08-22 not yet calculated CVE-2015-9333
MISC
wordpress -- wordpress
 
The flickr-justified-gallery plugin before 3.4.0 for WordPress has XSS. 2019-08-21 not yet calculated CVE-2015-9327
MISC
wordpress -- wordpress
 
The wp-support-plus-responsive-ticket-system plugin before 9.1.2 for WordPress has HTML injection. 2019-08-22 not yet calculated CVE-2019-15331
MISC
wordpress -- wordpress
 
The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection. 2019-08-16 not yet calculated CVE-2015-9323
MISC
wordpress -- wordpress
 
The sermon-browser plugin before 0.45.16 for WordPress has multiple XSS issues. 2019-08-21 not yet calculated CVE-2016-10897
MISC
wordpress -- wordpress
 
The clean-login plugin before 1.5.1 for WordPress has reflected XSS. 2019-08-22 not yet calculated CVE-2015-9336
MISC
wordpress -- wordpress
 
The tubepress plugin before 1.6.5 for WordPress has XSS. 2019-08-22 not yet calculated CVE-2008-7321
MISC
wordpress -- wordpress
 
The wp-support-plus-responsive-ticket-system plugin before 4.1 for WordPress has JavaScript injection. 2019-08-22 not yet calculated CVE-2014-10391
MISC
wordpress -- wordpress
 
The limit-attempts plugin before 1.1.1 for WordPress has SQL injection during IP address handling. 2019-08-22 not yet calculated CVE-2015-9335
MISC
wordpress -- wordpress
 
The wp-file-upload plugin before 2.7.1 for WordPress has insufficient restrictions on upload of .js files. 2019-08-22 not yet calculated CVE-2015-9339
MISC
wordpress -- wordpress
 
The profile-builder plugin before 2.1.4 for WordPress has no access control for activating or deactivating addons via AJAX. 2019-08-22 not yet calculated CVE-2015-9337
MISC
wordpress -- wordpress
 
The nelio-ab-testing plugin before 4.5.11 for WordPress has SSRF in ajax/iesupport.php. 2019-08-22 not yet calculated CVE-2016-10927
MISC
wordpress -- wordpress
 
The crayon-syntax-highlighter plugin before 2.8.4 for WordPress has multiple XSS issues via AJAX requests. 2019-08-20 not yet calculated CVE-2016-10893
MISC
wordpress -- wordpress
 
The appointment-booking-calendar plugin before 1.1.24 for WordPress has SQL injection, a different vulnerability than CVE-2015-7319. 2019-08-22 not yet calculated CVE-2016-10916
MISC
wordpress -- wordpress
 
The shortcode-factory plugin before 1.1.1 for WordPress has XSS via add_query_arg. 2019-08-21 not yet calculated CVE-2015-9321
MISC
wordpress -- wordpress
 
The search-everything plugin before 8.1.6 for WordPress has SQL injection related to empty search strings, a different vulnerability than CVE-2014-2316. 2019-08-22 not yet calculated CVE-2016-10917
MISC
wordpress -- wordpress
 
The gallery-by-supsystic plugin before 1.8.6 for WordPress has CSRF. 2019-08-22 not yet calculated CVE-2016-10918
MISC
wordpress -- wordpress
 
The wassup plugin before 1.9.1 for WordPress has XSS via the Top stats widget or the wassupURI::add_siteurl method, a different vulnerability than CVE-2012-2633. 2019-08-22 not yet calculated CVE-2016-10919
MISC
wordpress -- wordpress
 
The gnucommerce plugin before 0.5.7-BETA for WordPress has XSS. 2019-08-22 not yet calculated CVE-2016-10920
MISC
wordpress -- wordpress
 
The gallery-photo-gallery plugin before 1.0.1 for WordPress has SQL injection. 2019-08-22 not yet calculated CVE-2016-10921
MISC
wordpress -- wordpress
 
The woocommerce-store-toolkit plugin before 1.5.7 for WordPress has privilege escalation. 2019-08-22 not yet calculated CVE-2016-10922
MISC
wordpress -- wordpress
 
The ebook-download plugin before 1.2 for WordPress has directory traversal. 2019-08-22 not yet calculated CVE-2016-10924
MISC
wordpress -- wordpress
 
The nelio-ab-testing plugin before 4.5.9 for WordPress has SSRF in ajax/iesupport.php. 2019-08-22 not yet calculated CVE-2016-10926
MISC
wordpress -- wordpress
 
The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has directory traversal. 2019-08-22 not yet calculated CVE-2014-10390
MISC
wordpress -- wordpress
 
The onelogin-saml-sso plugin before 2.2.0 for WordPress has a hardcoded @@@nopass@@@ password for just-in-time provisioned users. 2019-08-22 not yet calculated CVE-2016-10928
MISC
MISC
wordpress -- wordpress
 
The formbuilder plugin before 0.9.1 for WordPress has XSS via a Referer header. 2019-08-21 not yet calculated CVE-2012-6715
MISC
wordpress -- wordpress
 
The cforms2 plugin before 10.2 for WordPress has XSS. 2019-08-22 not yet calculated CVE-2014-10392
MISC
MISC
wordpress -- wordpress
 
The events-manager plugin before 5.3.6.1 for WordPress has XSS via the booking form and admin areas. 2019-08-22 not yet calculated CVE-2013-7480
MISC
wordpress -- wordpress
 
The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field. 2019-08-22 not yet calculated CVE-2013-7479
MISC
wordpress -- wordpress
 
The events-manager plugin before 5.5 for WordPress has XSS via EM_Ticket::get_post. 2019-08-22 not yet calculated CVE-2013-7478
MISC
wordpress -- wordpress
 
The events-manager plugin before 5.5.2 for WordPress has XSS in the booking form. 2019-08-22 not yet calculated CVE-2013-7477
MISC
wordpress -- wordpress
 
The events-manager plugin before 5.1.7 for WordPress has XSS via JSON call links. 2019-08-22 not yet calculated CVE-2012-6716
MISC
wordpress -- wordpress
 
The user-access-manager plugin before 1.2 for WordPress has CSRF. 2019-08-20 not yet calculated CVE-2011-5328
MISC
wordpress -- wordpress
 
The contact-form-plugin plugin before 3.3.5 for WordPress has XSS. 2019-08-22 not yet calculated CVE-2013-7481
MISC
wordpress -- wordpress
 
The user-domain-whitelist plugin before 1.5 for WordPress has CSRF. 2019-08-20 not yet calculated CVE-2014-10381
MISC
wordpress -- wordpress
 
The wp-support-plus-responsive-ticket-system plugin before 7.1.0 for WordPress has insecure direct object reference via a ticket number. 2019-08-22 not yet calculated CVE-2016-10930
MISC
wordpress -- wordpress
 
The gregs-high-performance-seo plugin before 1.6.2 for WordPress has XSS in the context of an old browser. 2019-08-20 not yet calculated CVE-2015-9319
MISC
wordpress -- wordpress
 
The slidedeck2 plugin before 2.3.5 for WordPress has file inclusion. 2019-08-22 not yet calculated CVE-2013-7483
MISC
wordpress -- wordpress
 
The i-recommend-this plugin before 3.7.3 for WordPress has SQL injection. 2019-08-16 not yet calculated CVE-2014-10376
MISC
wordpress -- wordpress
 
The cforms2 plugin before 13.2 for WordPress has XSS in lib_ajax.php. 2019-08-21 not yet calculated CVE-2014-10377
MISC
wordpress -- wordpress
 
The erident-custom-login-and-dashboard plugin before 3.5 for WordPress has CSRF. 2019-08-16 not yet calculated CVE-2015-9322
MISC
wordpress -- wordpress
 
The feature-comments plugin before 1.2.5 for WordPress has CSRF for featuring or burying a comment. 2019-08-22 not yet calculated CVE-2014-10382
MISC
wordpress -- wordpress
 
The rich-counter plugin before 1.2.0 for WordPress has JavaScript injection via a User-Agent header. 2019-08-22 not yet calculated CVE-2014-10394
MISC
wordpress -- wordpress
 
The memphis-documents-library plugin before 3.0 for WordPress has Remote File Inclusion. 2019-08-22 not yet calculated CVE-2014-10383
MISC
wordpress -- wordpress
 
The memphis-documents-library plugin before 3.0 for WordPress has Local File Inclusion. 2019-08-22 not yet calculated CVE-2014-10384
MISC
wordpress -- wordpress
 
The memphis-documents-library plugin before 3.0 for WordPress has XSS via $_REQUEST. 2019-08-22 not yet calculated CVE-2014-10385
MISC
wordpress -- wordpress
 
The wp-live-chat-support plugin before 4.1.0 for WordPress has JavaScript injections. 2019-08-22 not yet calculated CVE-2014-10386
MISC
wordpress -- wordpress
 
The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has SQL injection. 2019-08-22 not yet calculated CVE-2014-10387
MISC
wordpress -- wordpress
 
The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has full path disclosure. 2019-08-22 not yet calculated CVE-2014-10388
MISC
wordpress -- wordpress
 
The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has incorrect authentication. 2019-08-22 not yet calculated CVE-2014-10389
MISC
wordpress -- wordpress
 
The wp-file-upload plugin before 3.4.1 for WordPress has insufficient restrictions on upload of .php.js files. 2019-08-22 not yet calculated CVE-2015-9341
MISC
wordpress -- wordpress
 
The shortcode-factory plugin before 2.8 for WordPress has Local File Inclusion. 2019-08-22 not yet calculated CVE-2019-15322
MISC
wordpress -- wordpress
 
The peters-login-redirect plugin before 2.9.1 for WordPress has XSS during the editing of redirect URLs. 2019-08-22 not yet calculated CVE-2016-10925
MISC
wordpress -- wordpress
 
The google-analyticator plugin before 5.2.1 for WordPress has insufficient HTML sanitization for Google Analytics API text. 2019-08-22 not yet calculated CVE-2009-5158
MISC
wordpress -- wordpress
 
The webtoffee "WordPress Users & WooCommerce Customers Import Export" plugin 1.3.0 for WordPress allows CSV injection in the user_url, display_name, first_name, and last_name columns in an exported CSV file created by the WF_CustomerImpExpCsv_Exporter class. 2019-08-23 not yet calculated CVE-2019-15092
MISC
MISC
wordpress -- wordpress
 
The companion-auto-update plugin before 3.2.1 for WordPress has local file inclusion. 2019-08-16 not yet calculated CVE-2018-20973
MISC
wordpress -- wordpress
 
The js-jobs plugin before 1.0.7 for WordPress has CSRF. 2019-08-16 not yet calculated CVE-2018-20974
MISC
wordpress -- wordpress
 
The all-in-one-schemaorg-rich-snippets plugin before 1.5.0 for WordPress has XSS on the settings page. 2019-08-21 not yet calculated CVE-2018-20977
MISC
wordpress -- wordpress
 
The ninja-forms plugin before 3.3.9 for WordPress has insufficient restrictions on submission-data retrieval during Export Personal Data requests. 2019-08-22 not yet calculated CVE-2018-20981
MISC
wordpress -- wordpress
 
The media-library-assistant plugin before 2.74 for WordPress has XSS via the Media/Assistant or Settings/Media Library assistant admin submenu screens. 2019-08-22 not yet calculated CVE-2018-20982
MISC
wordpress -- wordpress
 
The patreon-connect plugin before 1.2.2 for WordPress has Object Injection. 2019-08-22 not yet calculated CVE-2018-20984
MISC
wordpress -- wordpress
 
The wp-payeezy-pay plugin before 2.98 for WordPress has local file inclusion in pay.php, donate.php, donate-rec, and pay-rec. 2019-08-22 not yet calculated CVE-2018-20985
MISC
wordpress -- wordpress
 
The ad-inserter plugin before 2.4.20 for WordPress has path traversal. 2019-08-22 not yet calculated CVE-2019-15323
MISC
wordpress -- wordpress
 
The wpgform plugin before 0.94 for WordPress has eval injection in the CAPTCHA calculation. 2019-08-22 not yet calculated CVE-2018-20988
MISC
wordpress -- wordpress
 
The advanced-custom-fields plugin before 5.7.8 for WordPress has XSS by authors. 2019-08-22 not yet calculated CVE-2018-20986
MISC
wordpress -- wordpress
 
The eelv-newsletter plugin before 4.6.1 for WordPress has XSS in the address book. 2019-08-20 not yet calculated CVE-2017-18522
MISC
wordpress -- wordpress
 
The church-admin plugin before 1.2550 for WordPress has CSRF affecting the upload of a bible reading plan. 2019-08-16 not yet calculated CVE-2018-20971
MISC
wordpress -- wordpress
 
The companion-sitemap-generator plugin before 3.7.0 for WordPress has CSRF. 2019-08-16 not yet calculated CVE-2019-15113
MISC
wordpress -- wordpress
 
The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address logging. 2019-08-16 not yet calculated CVE-2019-15116
MISC
MISC
wordpress -- wordpress
 
The cforms2 plugin before 15.0.2 for WordPress has CSRF related to the IP address field. 2019-08-20 not yet calculated CVE-2019-15238
MISC
MISC
wordpress -- wordpress
 
The give plugin before 2.4.7 for WordPress has XSS via a donor name. 2019-08-22 not yet calculated CVE-2019-15317
MISC
MISC
MISC
wordpress -- wordpress
 
The yikes-inc-easy-mailchimp-extender plugin before 6.5.3 for WordPress has code injection via the admin input field. 2019-08-22 not yet calculated CVE-2019-15318
MISC
MISC
wordpress -- wordpress
 
The option-tree plugin before 2.7.0 for WordPress has Object Injection by leveraging a valid nonce. 2019-08-22 not yet calculated CVE-2019-15319
MISC
MISC
wordpress -- wordpress
 
The option-tree plugin before 2.7.3 for WordPress has Object Injection because the + character is mishandled. 2019-08-22 not yet calculated CVE-2019-15320
MISC
MISC
wordpress -- wordpress
 
The option-tree plugin before 2.7.3 for WordPress has Object Injection because serialized classes are mishandled. 2019-08-22 not yet calculated CVE-2019-15321
MISC
MISC
wordpress -- wordpress
 
The the-events-calendar plugin before 4.8.2 for WordPress has XSS via the tribe_paged URL parameter. 2019-08-21 not yet calculated CVE-2019-15109
MISC
MISC
wordpress -- wordpress
 
The cforms2 plugin before 10.5 for WordPress has XSS. 2019-08-22 not yet calculated CVE-2014-10393
MISC
wordpress -- wordpress
 
The advanced-ajax-page-loader plugin before 2.7.7 for WordPress has no protection against the reading of uploaded files when not logged in. 2019-08-22 not yet calculated CVE-2016-10929
MISC
wordpress -- wordpress
 
The ad-inserter plugin before 2.4.22 for WordPress has remote code execution. 2019-08-22 not yet calculated CVE-2019-15324
MISC
MISC
wordpress -- wordpress
 
The insert-pages plugin before 3.2.4 for WordPress has directory traversal via custom template paths. 2019-08-22 not yet calculated CVE-2017-18586
MISC
wordpress -- wordpress
 
The companion-auto-update plugin before 3.2.1 for WordPress has CSRF. 2019-08-16 not yet calculated CVE-2018-20972
MISC
wordpress -- wordpress
 
The search-everything plugin before 8.1.7 for WordPress has SQL injection related to WordPress 4.7.x, a different vulnerability than CVE-2014-2316. 2019-08-22 not yet calculated CVE-2017-18571
MISC
wordpress -- wordpress
 
The moreads-se plugin before 1.4.7 for WordPress has XSS. 2019-08-20 not yet calculated CVE-2017-18526
MISC
wordpress -- wordpress
 
The rimons-twitter-widget plugin before 1.3 for WordPress has XSS. 2019-08-20 not yet calculated CVE-2017-18533
MISC
wordpress -- wordpress
 
The share-on-diaspora plugin before 0.7.2 for WordPress has reflected XSS in share URL parameters. 2019-08-21 not yet calculated CVE-2017-18534
MISC
wordpress -- wordpress
 
The zendesk-help-center plugin before 1.0.5 for WordPress has multiple XSS issues. 2019-08-16 not yet calculated CVE-2017-18542
MISC
wordpress -- wordpress
 
The invite-anyone plugin before 1.3.16 for WordPress has incorrect access control for email-based invitations. 2019-08-16 not yet calculated CVE-2017-18543
MISC
wordpress -- wordpress
 
The invite-anyone plugin before 1.3.16 for WordPress has admin-panel CSRF. 2019-08-16 not yet calculated CVE-2017-18544
MISC
wordpress -- wordpress
 
The invite-anyone plugin before 1.3.16 for WordPress has incorrect escaping of untrusted Dashboard and front-end input. 2019-08-16 not yet calculated CVE-2017-18545
MISC
wordpress -- wordpress
 
The jayj-quicktag plugin before 1.3.2 for WordPress has CSRF. 2019-08-16 not yet calculated CVE-2017-18546
MISC
wordpress -- wordpress
 
The cforms2 plugin before 14.13.3 for WordPress has multiple XSS issues. 2019-08-21 not yet calculated CVE-2017-18559
MISC
wordpress -- wordpress
 
The eelv-newsletter plugin before 4.6.1 for WordPress has CSRF in the address book. 2019-08-20 not yet calculated CVE-2017-18523
MISC
wordpress -- wordpress
 
The embed-comment-images plugin before 0.6 for WordPress has XSS. 2019-08-21 not yet calculated CVE-2017-18561
MISC
wordpress -- wordpress
 
The cforms2 plugin before 14.13 for WordPress has SQL injection in the tracking DB GUI via Delete Entries or Download Entries. 2019-08-22 not yet calculated CVE-2017-18570
MISC
wordpress -- wordpress
 
The shortcodes-ultimate plugin before 5.0.1 for WordPress has remote code execution via a filter in a meta, post, or user shortcode. 2019-08-22 not yet calculated CVE-2017-18580
MISC
wordpress -- wordpress
 
The gnucommerce plugin before 1.4.2 for WordPress has XSS. 2019-08-22 not yet calculated CVE-2017-18572
MISC
wordpress -- wordpress
 
The post-pay-counter plugin before 2.731 for WordPress has PHP Object Injection. 2019-08-22 not yet calculated CVE-2017-18583
MISC
wordpress -- wordpress
 
The time-sheets plugin before 1.5.2 for WordPress has multiple XSS issues. 2019-08-22 not yet calculated CVE-2017-18582
MISC
wordpress -- wordpress
 
The post-pay-counter plugin before 2.731 for WordPress has no permissions check for an update-settinga action. 2019-08-22 not yet calculated CVE-2017-18584
MISC
wordpress -- wordpress
 
The time-sheets plugin before 1.5.0 for WordPress has XSS via the old timesheet list. 2019-08-22 not yet calculated CVE-2017-18581
MISC
wordpress -- wordpress
 
The corner-ad plugin before 1.0.8 for WordPress has XSS. 2019-08-22 not yet calculated CVE-2017-18579
MISC
wordpress -- wordpress
 
The event-notifier plugin before 1.2.1 for WordPress has XSS via the loading animation. 2019-08-22 not yet calculated CVE-2017-18576
MISC
wordpress -- wordpress
 
The newstatpress plugin before 1.2.5 for WordPress has multiple stored XSS issues. 2019-08-22 not yet calculated CVE-2017-18575
MISC
wordpress -- wordpress
 
The ninja-forms plugin before 3.0.31 for WordPress has insufficient HTML escaping in the builder. 2019-08-22 not yet calculated CVE-2017-18574
MISC
wordpress -- wordpress
 
The simple-login-log plugin before 1.1.2 for WordPress has SQL injection. 2019-08-22 not yet calculated CVE-2017-18573
MISC
youphptube -- youphptube
 
plugin/Audit/Objects/AuditTable.php in YouPHPTube through 7.2 allows SQL Injection. 2019-08-20 not yet calculated CVE-2019-14430
MISC
EXPLOIT-DB
zabbix -- zabbix
 
Zabbix through 4.4.0alpha1 allows User Enumeration. With login requests, it is possible to enumerate application usernames based on the variability of server responses (e.g., the "Login name or password is incorrect" and "No permissions for system access" messages, or just blocking for a number of seconds). This affects both api_jsonrpc.php and index.php. 2019-08-17 not yet calculated CVE-2019-15132
MISC
zebra -- industrial_printers Zebra Industrial Printers All Versions, Zebra printers are shipped with unrestricted end-user access to front panel options. If the option to use a passcode to limit the functionality of the front panel is applied, specially crafted packets could be sent over the same network to a port on the printer and the printer will respond with an array of information that includes the front panel passcode for the printer. Once the passcode is retrieved, an attacker must have physical access to the front panel of the printer to enter the passcode to access the full functionality of the front panel. 2019-08-20 not yet calculated CVE-2019-10960
MISC
zenoss -- zenoss
 
The XML-RPC subsystem in Zenoss 2.5.3 allows XXE attacks that lead to unauthenticated information disclosure via port 9988. 2019-08-21 not yet calculated CVE-2019-14258
MISC
CONFIRM
zenoss -- zenoss
 
pyraw in Zenoss 2.5.3 allows local privilege escalation by modifying environment variables to redirect execution before privileges are dropped, aka ZEN-31765. 2019-08-21 not yet calculated CVE-2019-14257
MISC
CONFIRM
Back to top

This product is provided subject to this Notification and this Privacy & Use policy.



from CISA All NCAS Products https://www.us-cert.gov/ncas/bulletins/sb19-238

Comments

Popular posts from this blog

Krebs - NY Charges First American Financial for Massive Data Leak

KnowBe4 - Scam Of The Week: "When Users Add Their Names to a Wall of Shame"