Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2033 matches found

UbuntuCve
UbuntuCveadded 2019/07/25 7:15 p.m.23 views

CVE-2019-1010127

VCFTools vcftools prior to version 0.1.15 is affected by: Use-after-free. The impact is: Denial of Service or possibly other impact eg. code execution or information disclosure. The component is: The header::addFILTERdescriptor method in header.cpp. The attack vector is: The victim must open a...

7.8CVSS7.1AI score0.01642EPSS
Exploits1References3
Prion
Prionadded 2019/07/25 7:15 p.m.14 views

Information disclosure

VCFTools vcftools prior to version 0.1.15 is affected by: Use-after-free. The impact is: Denial of Service or possibly other impact eg. code execution or information disclosure. The component is: The header::addFILTERdescriptor method in header.cpp. The attack vector is: The victim must open a...

6.8CVSS7.9AI score0.01642EPSS
Exploits1References2Affected Software1
NVD
NVDadded 2019/07/25 2:15 p.m.21 views

CVE-2019-1010174

CImg The CImg Library v.2.3.3 and earlier is affected by: command injection. The impact is: RCE. The component is: loadnetwork function. The attack vector is: Loading an image from a user-controllable url can lead to command injection, because no string sanitization is done on the url. The fixed...

9.8CVSS9.8AI score0.04912EPSS
Exploits0References3
Prion
Prionadded 2019/07/24 2:15 p.m.12 views

Sql injection

marginalia 1.6 is affected by: SQL Injection. The impact is: The impact is a injection of any SQL queries when a user controller argument is added as a component. The component is: Affects users that add a component that is user controller, for instance a parameter or a header. The attack vector...

7.5CVSS9.7AI score0.01381EPSS
Exploits0References1Affected Software1
Prion
Prionadded 2019/07/24 1:15 p.m.10 views

Design/Logic Flaw

mgetty prior to 1.2.1 is affected by: out-of-bounds read. The impact is: DoS, the program may crash if the memory is not mapped. The component is: putwhitespan in g3/pbm2g3.c. The attack vector is: Local, the victim must open a specially crafted file. The fixed version is: 1.2.1...

4.3CVSS5.3AI score0.00843EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2019/07/24 12:15 p.m.20 views

Buffer overflow

Socusoft Co Photo 2 Video Converter 8.0.0 is affected by: Buffer Overflow - Local shell-code execution and Denial of Service. The impact is: Local privilege escalation dependant upon conditions, shell code execution and denial-of-service. The component is: pdmlog.dll library. The attack vector is...

7.2CVSS8.1AI score0.00713EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2019/07/24 11:42 a.m.24 views

CVE-2019-1010163

Socusoft Co Photo 2 Video Converter 8.0.0 is affected by: Buffer Overflow - Local shell-code execution and Denial of Service. The impact is: Local privilege escalation dependant upon conditions, shell code execution and denial-of-service. The component is: pdmlog.dll library. The attack vector is...

8.1AI score0.00713EPSS
Exploits1References3
Prion
Prionadded 2019/07/23 2:15 p.m.9 views

Design/Logic Flaw

Application permissions give additional remote troubleshooting permission to the site input.mozilla.org, which has been retired and now redirects to another site. This additional permission is unnecessary and is a potential vector for malicious attacks. This vulnerability affects Firefox 68...

5.8CVSS6.8AI score0.01126EPSS
Exploits1References7Affected Software2
Cvelist
Cvelistadded 2019/07/23 1:35 p.m.21 views

CVE-2019-1010205

LINAGORA hublin latest commit 72ead897082403126bf8df9264e70f0a9de247ff is affected by: Directory Traversal. The impact is: The vulnerability allows an attacker to access any file with a fixed extension on the server. The component is: A web-view renderer; details here:...

7.5AI score0.02763EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2019/07/23 8:21 a.m.30 views

CVE-2019-1010241

Jenkins Credentials Binding Plugin Jenkins 1.17 is affected by: CWE-257: Storing Passwords in a Recoverable Format. The impact is: Authenticated users can recover credentials. The component is: config-variables.jelly line 30 passwordVariable. The attack vector is: Attacker creates and executes a...

6.5CVSS5.4AI score0.01468EPSS
Exploits1References4
UbuntuCve
UbuntuCveadded 2019/07/22 6:15 p.m.32 views

CVE-2019-1010218

Cherokee Webserver Latest Cherokee Web server Upto Version 1.2.103 Current stable is affected by: Buffer Overflow - CWE-120. The impact is: Crash. The component is: Main cherokee command. The attack vector is: Overwrite argv0 to an insane length with execl. The fixed version is: There's no fix ye...

7.5CVSS7.1AI score0.01352EPSS
Exploits1References2
Cvelist
Cvelistadded 2019/07/22 5:30 p.m.17 views

CVE-2019-1010218

Cherokee Webserver Latest Cherokee Web server Upto Version 1.2.103 Current stable is affected by: Buffer Overflow - CWE-120. The impact is: Crash. The component is: Main cherokee command. The attack vector is: Overwrite argv0 to an insane length with execl. The fixed version is: There's no fix ye...

7.6AI score0.01352EPSS
Exploits1References1
Cvelist
Cvelistadded 2019/07/22 5:30 p.m.25 views

CVE-2019-1010220

tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer, Return Address etc. on stack. The component is: line 234: "NDPRINTndo, "%s", buf;", in function named "printprefix", in "print-hncp.c". The attack vector is: The victim must open a...

6.3AI score0.01348EPSS
Exploits0References11
NVD
NVDadded 2019/07/22 4:15 p.m.16 views

CVE-2019-1010232

Juniper juniper/libslax libslax latest version as of commit 084ddf6ab4a55b59dfa9a53f9c5f14d192c4f8e5 Commits on Sep 1, 2018 is affected by: Buffer Overflow. The impact is: remote dos. The component is: slaxlexer.c:601funtion:slaxGetInput. The attack vector is: ./slaxproc --slax-to-xslt POC0...

6.5CVSS6.6AI score0.01047EPSS
Exploits1References1
OSV
OSVadded 2019/07/22 4:15 p.m.14 views

CVE-2019-1010232

Juniper juniper/libslax libslax latest version as of commit 084ddf6ab4a55b59dfa9a53f9c5f14d192c4f8e5 Commits on Sep 1, 2018 is affected by: Buffer Overflow. The impact is: remote dos. The component is: slaxlexer.c:601funtion:slaxGetInput. The attack vector is: ./slaxproc --slax-to-xslt POC0...

6.5CVSS7AI score
Exploits0References1
NVD
NVDadded 2019/07/22 3:15 p.m.8 views

CVE-2019-1010237

Ilias 5.3 before 5.3.12; 5.2 before 5.2.21 is affected by: Cross Site Scripting XSS - CWE-79 Type 2: Stored XSS or Persistent. The impact is: Execute code in the victim's browser. The component is: Assessment / TestQuestionPool. The attack vector is: Cloze Test Text gap attacker / Corrections vie...

6.1CVSS5.9AI score0.01662EPSS
Exploits0References3
CNVD
CNVDadded 2019/07/22 12:0 a.m.3 views

Microsoft Windows rpcss.dll Elevation of Privilege Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows rpcss.dll. An attacker...

7.8CVSS7.2AI score0.0491EPSS
Exploits1References1
OSV
OSVadded 2019/07/19 5:15 p.m.18 views

CVE-2019-1010241

Jenkins Credentials Binding Plugin Jenkins 1.17 is affected by: CWE-257: Storing Passwords in a Recoverable Format. The impact is: Authenticated users can recover credentials. The component is: config-variables.jelly line 30 passwordVariable. The attack vector is: Attacker creates and executes a...

6.5CVSS6.7AI score
Exploits0References2
NVD
NVDadded 2019/07/19 5:15 p.m.18 views

CVE-2019-1010241

Jenkins Credentials Binding Plugin Jenkins 1.17 is affected by: CWE-257: Storing Passwords in a Recoverable Format. The impact is: Authenticated users can recover credentials. The component is: config-variables.jelly line 30 passwordVariable. The attack vector is: Attacker creates and executes a...

6.5CVSS6.5AI score0.01468EPSS
Exploits1References2
Debian CVE
Debian CVEadded 2019/07/19 4:42 p.m.25 views

CVE-2019-1010238

Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact is: The heap based buffer overflow can be used to get code execution. The component is: function name: pangolog2visgetembeddinglevels, assignment of nchars and the loop condition. The attack vector is: Bug can be used when...

9.8CVSS9.9AI score0.06274EPSS
Exploits1
Rows per page
Query Builder