Lucene search
K

956 matches found

CNVD
CNVD
added 2019/08/12 12:0 a.m.3 views

6kbbs Cross-Site Request Forgery Vulnerability

6kbbs is a PHP-based forum system. A cross-site request forgery vulnerability exists in 6kbbs versions 7.1 through 8.0. The vulnerability stems from a WEB application that does not adequately validate that a request is coming from a trusted user. An attacker can exploit this vulnerability to send...

8.8CVSS6.9AI score0.00614EPSS
Exploits1References1
OSV
OSV
added 2019/07/23 11:15 p.m.2 views

ALPINE-CVE-2019-2737

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server : Pluggable Auth. Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple...

4.9CVSS5.6AI score0.03919EPSS
Exploits0References1
OSV
OSV
added 2019/07/23 11:15 p.m.2 views

UBUNTU-CVE-2019-2755

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Replication. Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...

4.9CVSS6.5AI score0.02197EPSS
Exploits0References3
OSV
OSV
added 2019/07/19 12:0 a.m.4 views

UBUNTU-CVE-2019-2774

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Optimizer. Supported versions that are affected are 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...

4.9CVSS6.5AI score0.02311EPSS
Exploits0References4
OSV
OSV
added 2019/07/19 12:0 a.m.10 views

UBUNTU-CVE-2019-2739

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Security: Privileges. Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructu...

5.1CVSS6.6AI score0.0079EPSS
Exploits0References6
CNVD
CNVD
added 2019/07/17 12:0 a.m.1 views

Oracle MySQL Server Component Input Validation Error Vulnerability (CNVD-2019-26683)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A component input validation error vulnerability exists in the Server: DML subcomponent of the MySQL Server component in Oracle MySQL, version 8.0.16...

4.9CVSS6.1AI score0.02119EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/17 12:0 a.m.1 views

Oracle MySQL Server Component Access Control Error Vulnerability (CNVD-2019-26685)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. An access control error vulnerability in the Server: FTS subcomponent of the MySQL Server component in Oracle MySQL, version 8.0.16 and earlier. An...

4.9CVSS6.1AI score0.02008EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/07/16 12:0 a.m.1 views

PT-2019-16505 · Oracle +6 · Mysql Server +5

Name of the Vulnerable Software and Affected Versions: Oracle MySQL versions 8.0.16 and prior Description: The issue allows a high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks can result in the unauthorized ability to cause a hang o...

9.8CVSS6.3AI score0.49739EPSS
Exploits2References617
OSV
OSV
added 2019/07/08 6:15 p.m.5 views

CVE-2019-2104

In HIDL, safeunion, and other C++ structs/unions being sent to application processes, there are uninitialized fields. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions:...

5.5CVSS6.7AI score0.0016EPSS
Exploits0References1
OSV
OSV
added 2019/06/19 9:15 p.m.4 views

CVE-2018-9564

In llcputilparselinkparams of llcputil.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.0...

6.5CVSS5.9AI score0.00758EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/06/18 7:52 p.m.5 views

mysql-connector-java: Connector/J unspecified vulnerability (CPU October 2018)

Vulnerability in the MySQL Connectors component of Oracle MySQL subcomponent: Connector/J. Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successf...

8.8CVSS7.3AI score0.03742EPSS
Exploits0References5
CNVD
CNVD
added 2019/06/05 12:0 a.m.4 views

Google Android Framework elevation of privilege vulnerability (CNVD-2019-23120)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Framework component of Google Android 7.0, 7.1.1, 7.1.2, 8.0, and 8.1. An attacker can exploit the vulnerability to cause a...

7.8CVSS7.1AI score0.00153EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/05/21 7:57 p.m.9 views

mysql: InnoDB unspecified vulnerability (CPU Oct 2018)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS7.3AI score0.02673EPSS
Exploits0References5
OSV
OSV
added 2019/04/23 12:0 a.m.2 views

UBUNTU-CVE-2019-2628

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS6.6AI score0.02852EPSS
Exploits0References5
CNVD
CNVD
added 2019/04/18 12:0 a.m.1 views

Oracle MySQL Server Denial of Service Vulnerability (CNVD-2019-12176)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the Server: Optimizer subcomponent of the MySQL Server component in Oracle MySQL, version 8.0.15 and earlier. An...

4.9CVSS6.1AI score0.02232EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/18 12:0 a.m.2 views

Oracle MySQL Server Information Disclosure Vulnerability (CNVD-2019-10371)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the MySQL Server component in Oracle MySQL, version 5.7.25 and earlier, and the Server : Pluggable Auth subcompone...

7.5CVSS6.2AI score0.03694EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/18 12:0 a.m.1 views

Oracle MySQL Server Denial of Service Vulnerability (CNVD-2019-12171)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the Server: Optimizer subcomponent of the MySQL Server component in Oracle MySQL, version 8.0.15 and earlier. An...

4.9CVSS6.1AI score0.02078EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/18 12:0 a.m.1 views

Oracle MySQL Server Denial of Service Vulnerability (CNVD-2019-10369)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the Server: Replication subcomponent of the MySQL Server component of Oracle MySQL, version 8.0.15 and earlier. An...

5.1CVSS6.1AI score0.00431EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/04/16 12:0 a.m.5 views

PT-2019-1871 · Oracle +6 · Mysql Server +5

Name of the Vulnerable Software and Affected Versions: Oracle MySQL versions 8.0.15 and prior Description: The issue is related to a lack of access control in the MySQL Server component, specifically in the Server: Optimizer subcomponent. This allows a high-privileged attacker with network access...

9.8CVSS6.6AI score0.17139EPSS
Exploits1References500
Positive Technologies
Positive Technologies
added 2019/04/16 12:0 a.m.7 views

PT-2019-1997 · Oracle +7 · Mysql Server +6

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 5.7.25 and prior MySQL Server versions 8.0.15 and prior Description: The issue is related to inadequate access control in the MySQL Server component, specifically the Server: PS subcomponent. This can be exploited by a...

9.8CVSS6.7AI score0.17139EPSS
Exploits1References516
Rows per page
Query Builder