956 matches found
6kbbs Cross-Site Request Forgery Vulnerability
6kbbs is a PHP-based forum system. A cross-site request forgery vulnerability exists in 6kbbs versions 7.1 through 8.0. The vulnerability stems from a WEB application that does not adequately validate that a request is coming from a trusted user. An attacker can exploit this vulnerability to send...
ALPINE-CVE-2019-2737
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server : Pluggable Auth. Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple...
UBUNTU-CVE-2019-2755
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Replication. Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...
UBUNTU-CVE-2019-2774
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Optimizer. Supported versions that are affected are 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...
UBUNTU-CVE-2019-2739
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Security: Privileges. Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructu...
Oracle MySQL Server Component Input Validation Error Vulnerability (CNVD-2019-26683)
Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A component input validation error vulnerability exists in the Server: DML subcomponent of the MySQL Server component in Oracle MySQL, version 8.0.16...
Oracle MySQL Server Component Access Control Error Vulnerability (CNVD-2019-26685)
Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. An access control error vulnerability in the Server: FTS subcomponent of the MySQL Server component in Oracle MySQL, version 8.0.16 and earlier. An...
PT-2019-16505 · Oracle +6 · Mysql Server +5
Name of the Vulnerable Software and Affected Versions: Oracle MySQL versions 8.0.16 and prior Description: The issue allows a high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks can result in the unauthorized ability to cause a hang o...
CVE-2019-2104
In HIDL, safeunion, and other C++ structs/unions being sent to application processes, there are uninitialized fields. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions:...
CVE-2018-9564
In llcputilparselinkparams of llcputil.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.0...
mysql-connector-java: Connector/J unspecified vulnerability (CPU October 2018)
Vulnerability in the MySQL Connectors component of Oracle MySQL subcomponent: Connector/J. Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successf...
Google Android Framework elevation of privilege vulnerability (CNVD-2019-23120)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Framework component of Google Android 7.0, 7.1.1, 7.1.2, 8.0, and 8.1. An attacker can exploit the vulnerability to cause a...
mysql: InnoDB unspecified vulnerability (CPU Oct 2018)
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...
UBUNTU-CVE-2019-2628
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...
Oracle MySQL Server Denial of Service Vulnerability (CNVD-2019-12176)
Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the Server: Optimizer subcomponent of the MySQL Server component in Oracle MySQL, version 8.0.15 and earlier. An...
Oracle MySQL Server Information Disclosure Vulnerability (CNVD-2019-10371)
Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the MySQL Server component in Oracle MySQL, version 5.7.25 and earlier, and the Server : Pluggable Auth subcompone...
Oracle MySQL Server Denial of Service Vulnerability (CNVD-2019-12171)
Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the Server: Optimizer subcomponent of the MySQL Server component in Oracle MySQL, version 8.0.15 and earlier. An...
Oracle MySQL Server Denial of Service Vulnerability (CNVD-2019-10369)
Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the Server: Replication subcomponent of the MySQL Server component of Oracle MySQL, version 8.0.15 and earlier. An...
PT-2019-1871 · Oracle +6 · Mysql Server +5
Name of the Vulnerable Software and Affected Versions: Oracle MySQL versions 8.0.15 and prior Description: The issue is related to a lack of access control in the MySQL Server component, specifically in the Server: Optimizer subcomponent. This allows a high-privileged attacker with network access...
PT-2019-1997 · Oracle +7 · Mysql Server +6
Name of the Vulnerable Software and Affected Versions: MySQL Server versions 5.7.25 and prior MySQL Server versions 8.0.15 and prior Description: The issue is related to inadequate access control in the MySQL Server component, specifically the Server: PS subcomponent. This can be exploited by a...