Lucene search
K

721 matches found

Cvelist
Cvelist
added 2019/09/11 9:10 p.m.29 views

CVE-2019-5055

An exploitable denial-of-service vulnerability exists in the Host Access Point Daemon hostapd on the NETGEAR N300 WNR2000v5 with Firmware Version V1.0.0.70 wireless router. A SOAP request sent in an invalid sequence to the service can cause a null pointer dereference, resulting in the hostapd...

7.5CVSS7.5AI score0.02014EPSS
Exploits1References1
Prion
Prion
added 2019/09/06 4:15 p.m.19 views

Authentication flaw

An exploitable authentication bypass vulnerability exists in the Bluetooth Low Energy BLE authentication module of YI M1 Mirrorless Camera V3.2-cn. An attacker can send a set of BLE commands to trigger this vulnerability, resulting in sensitive data leakage e.g., personal photos. An attacker can...

8.3CVSS8.8AI score0.01029EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/08/21 6:15 p.m.15 views

Out-of-bounds

An exploitable out-of-bounds read vulnerability exists in the Number record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the...

6.8CVSS8.8AI score0.0314EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/21 5:2 p.m.29 views

CVE-2019-5032

An exploitable out-of-bounds read vulnerability exists in the LabelSst record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the...

9.8CVSS8.9AI score0.0314EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/08/21 5:1 p.m.23 views

CVE-2019-5033

An exploitable out-of-bounds read vulnerability exists in the Number record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the...

9.8CVSS8.9AI score0.0314EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/08/20 9:8 p.m.39 views

CVE-2019-5036

An exploitable denial-of-service vulnerability exists in the Weave error reporting functionality of the Nest Cam IQ Indoor, version 4620002. A specially crafted weave packets can cause an arbitrary Weave Exchange Session to close, resulting in a denial of service. An attacker can send a specially...

7.5CVSS7.5AI score0.00488EPSS
Exploits1References1
Veracode
Veracode
added 2019/08/15 12:8 a.m.24 views

Denial Of Service (DoS)

mysql is vulnerable to denial of service. An easily exploitable vulnerability allows a high privileged attacker to crash the server...

4.9CVSS3.9AI score0.02232EPSS
Exploits0References9Affected Software1
Veracode
Veracode
added 2019/08/15 12:8 a.m.28 views

Denial Of Service (Dos)

mysql is vulnerable to denial of service. An easily exploitable vulnerability allows a high privileged attacker to crash the server...

4.9CVSS3.9AI score0.03232EPSS
Exploits0References7Affected Software1
Veracode
Veracode
added 2019/08/15 12:8 a.m.30 views

Denial Of Service (Dos)

mysql is vulnerable to denial of service. An easily exploitable vulnerability allows a high privileged attacker to crash the server...

4.9CVSS3.9AI score0.03211EPSS
Exploits0References7Affected Software1
Talos
Talos
added 2019/08/13 12:0 a.m.48 views

Schneider Electric Modicon M580 UMAS Function Code 0x29 Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the UMAS function code 0x29 functionality of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault stat...

7.8CVSS7.8AI score0.01609EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.226 views

NewStart CGSL MAIN 4.05 : java-1.8.0-openjdk Multiple Vulnerabilities (NS-SA-2019-0137)

The remote NewStart CGSL host, running version MAIN 4.05, has java-1.8.0-openjdk packages installed that are affected by multiple vulnerabilities: - An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions a...

8.3CVSS7.2AI score0.60631EPSS
Exploits2References13
Cvelist
Cvelist
added 2019/07/31 4:51 p.m.29 views

CVE-2019-5060

An exploitable code execution vulnerability exists in the XPM image rendering function of SDL2image 2.0.4. A specially crafted XPM image can cause an integer overflow in the colorhash function, allocating too small of a buffer. This buffer can then be written out of bounds, resulting in a heap...

8.8CVSS8.9AI score0.04043EPSS
Exploits1References5
Prion
Prion
added 2019/07/23 11:15 p.m.21 views

Code injection

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Optimizer. Supported versions that are affected are 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successfu...

4CVSS4.8AI score0.02008EPSS
Exploits0References5Affected Software6
UbuntuCve
UbuntuCve
added 2019/07/23 11:15 p.m.21 views

CVE-2019-2867

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualB...

8.2CVSS7.1AI score0.00695EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/07/23 11:15 p.m.17 views

CVE-2019-2850

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...

2.8CVSS6.8AI score0.00482EPSS
Exploits0References1
Prion
Prion
added 2019/07/23 11:15 p.m.19 views

Buffer overflow

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualB...

4.6CVSS7.8AI score0.00695EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2019/07/23 10:31 p.m.23 views

CVE-2019-2877

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...

6AI score0.00462EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2019/07/23 10:31 p.m.23 views

CVE-2019-2848

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...

6.5CVSS7AI score0.00448EPSS
Exploits0
CVE
CVE
added 2019/07/23 10:31 p.m.95 views

CVE-2019-2823

The CVE-2019-2823 entry concerns Oracle Financial Services Applications Infrastructure (subcomponent: Infrastructure) in Oracle Financial Services Applications. Affected versions are 8.0.5–8.0.8. The vulnerability allows a low-privileged attacker who can access over HTTP via the network to cause ...

5.5CVSS4.7AI score0.00683EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/07/23 10:31 p.m.20 views

CVE-2019-2758

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

5.5AI score0.03061EPSS
Exploits0References11
Rows per page
Query Builder