CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2027 matches found

Cvelist•added 2019/07/24 11:42 a.m.•24 views

CVE-2019-1010163

Socusoft Co Photo 2 Video Converter 8.0.0 is affected by: Buffer Overflow - Local shell-code execution and Denial of Service. The impact is: Local privilege escalation dependant upon conditions, shell code execution and denial-of-service. The component is: pdmlog.dll library. The attack vector is...

8.1AI score0.00713EPSS

Exploits1References3

Prion•added 2019/07/23 2:15 p.m.•9 views

Design/Logic Flaw

Application permissions give additional remote troubleshooting permission to the site input.mozilla.org, which has been retired and now redirects to another site. This additional permission is unnecessary and is a potential vector for malicious attacks. This vulnerability affects Firefox 68...

5.8CVSS6.8AI score0.01126EPSS

Exploits1References7Affected Software2

Cvelist•added 2019/07/23 1:35 p.m.•21 views

CVE-2019-1010205

LINAGORA hublin latest commit 72ead897082403126bf8df9264e70f0a9de247ff is affected by: Directory Traversal. The impact is: The vulnerability allows an attacker to access any file with a fixed extension on the server. The component is: A web-view renderer; details here:...

7.5AI score0.02763EPSS

Exploits0References1

RedhatCVE•added 2019/07/23 8:21 a.m.•30 views

CVE-2019-1010241

Jenkins Credentials Binding Plugin Jenkins 1.17 is affected by: CWE-257: Storing Passwords in a Recoverable Format. The impact is: Authenticated users can recover credentials. The component is: config-variables.jelly line 30 passwordVariable. The attack vector is: Attacker creates and executes a...

6.5CVSS5.4AI score0.01468EPSS

Exploits1References4

UbuntuCve•added 2019/07/22 6:15 p.m.•29 views

CVE-2019-1010218

Cherokee Webserver Latest Cherokee Web server Upto Version 1.2.103 Current stable is affected by: Buffer Overflow - CWE-120. The impact is: Crash. The component is: Main cherokee command. The attack vector is: Overwrite argv0 to an insane length with execl. The fixed version is: There's no fix ye...

7.5CVSS7.1AI score0.01352EPSS

Exploits1References2

Cvelist•added 2019/07/22 5:30 p.m.•17 views

CVE-2019-1010218

7.6AI score0.01352EPSS

Exploits1References1

Cvelist•added 2019/07/22 5:30 p.m.•24 views

CVE-2019-1010220

tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer, Return Address etc. on stack. The component is: line 234: "NDPRINTndo, "%s", buf;", in function named "printprefix", in "print-hncp.c". The attack vector is: The victim must open a...

6.3AI score0.01348EPSS

Exploits0References11

OSV•added 2019/07/22 4:15 p.m.•14 views

CVE-2019-1010232

Juniper juniper/libslax libslax latest version as of commit 084ddf6ab4a55b59dfa9a53f9c5f14d192c4f8e5 Commits on Sep 1, 2018 is affected by: Buffer Overflow. The impact is: remote dos. The component is: slaxlexer.c:601funtion:slaxGetInput. The attack vector is: ./slaxproc --slax-to-xslt POC0...

6.5CVSS7AI score

Exploits0References1

NVD•added 2019/07/22 4:15 p.m.•16 views

CVE-2019-1010232

6.5CVSS6.6AI score0.01047EPSS

Exploits1References1

NVD•added 2019/07/22 3:15 p.m.•8 views

CVE-2019-1010237

Ilias 5.3 before 5.3.12; 5.2 before 5.2.21 is affected by: Cross Site Scripting XSS - CWE-79 Type 2: Stored XSS or Persistent. The impact is: Execute code in the victim's browser. The component is: Assessment / TestQuestionPool. The attack vector is: Cloze Test Text gap attacker / Corrections vie...

6.1CVSS5.9AI score0.01662EPSS

Exploits0References3

CNVD•added 2019/07/22 12:0 a.m.•3 views

Microsoft Windows rpcss.dll Elevation of Privilege Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows rpcss.dll. An attacker...

7.8CVSS7.2AI score0.0491EPSS

Exploits1References1

OSV•added 2019/07/19 5:15 p.m.•18 views

CVE-2019-1010241

6.5CVSS6.7AI score

Exploits0References2

NVD•added 2019/07/19 5:15 p.m.•18 views

CVE-2019-1010241

6.5CVSS6.5AI score0.01468EPSS

Exploits1References2

Debian CVE•added 2019/07/19 4:42 p.m.•25 views

CVE-2019-1010238

Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact is: The heap based buffer overflow can be used to get code execution. The component is: function name: pangolog2visgetembeddinglevels, assignment of nchars and the loop condition. The attack vector is: Bug can be used when...

9.8CVSS9.9AI score0.06274EPSS

Exploits1

Cvelist•added 2019/07/19 4:36 p.m.•21 views

CVE-2019-1010241

6.5AI score0.01468EPSS

Exploits1References2

NVD•added 2019/07/19 4:15 p.m.•19 views

CVE-2019-1010113

Premium Software CLEditor 1.4.5 and earlier is affected by: Cross Site Scripting XSS. The impact is: An attacker might be able to inject arbitrary html and script code into the web site. The component is: jQuery plug-in. The attack vector is: the victim must open a crafted href attribute of a lin...

6.1CVSS6.1AI score0.00826EPSS

Exploits1References1

Prion•added 2019/07/19 4:15 p.m.•12 views

Cross site scripting

4.3CVSS6.1AI score0.00826EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/07/19 3:45 p.m.•35 views

CVE-2019-1010142

scapy 2.4.0 is affected by: Denial of Service. The impact is: infinite loop, resource consumption and program unresponsive. The component is: RADIUSAttrPacketListField.getfieldself... The attack vector is: over the network or in a pcap. both work...

7.4AI score0.02791EPSS

Exploits1References6

Debian CVE•added 2019/07/19 3:45 p.m.•17 views

CVE-2019-1010142

7.5CVSS5.8AI score0.02791EPSS

Exploits1

Cvelist•added 2019/07/19 3:22 p.m.•25 views

CVE-2019-1010113

6.1AI score0.00826EPSS

Exploits1References1

Rows per page