Oracle iLearning CVE-2020-2709 Remote Security Vulnerability

Description Oracle iLearning is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Learner Pages' component is affected. This vulnerability affects the following supported versions: 6.1 Technologies Affected Oracle iLearning 6.1...

WordPress WP Maintenance Plugin CVE-2019-19979 Cross Site Request Forgery Vulnerability

Description The WP Maintenance Plugin for WordPress is prone to a cross-site request-forgery vulnerability. An attacker can exploit this issue to perform certain unauthorized actions and gain access to the affected application. Other attacks are also possible. WP Maintenance versions prior to 5.0...

Lexmark Services Monitor CVE-2019-16758 Directory Traversal Vulnerability

Description Lexmark Services Monitor is prone to a directory-traversal vulnerability. Remote attackers may use a specially crafted request with directory-traversal sequences '../' to retrieve sensitive information. This may aid in further attacks. Lexmark Services Monitor 2.27.4.0.39 is vulnerabl...

Multiple Kubernetes Sidecar Containers CVE-2019-11255 Unauthorized Access Vulnerability

Description Multiple Kubernetes Sidecar Containers are prone to an unauthorized access vulnerability. An attacker can exploit this issue to gain unauthorized access and perform unintended actions. This may lead to further attacks. Technologies Affected Kubernetes external-provisioner 0.4.1...

Redhat Quay CVE-2019-3864 Security Bypass Vulnerability

Description Redhat Quay is prone to a security-bypass vulnerability. Attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Redhat Quay 3 Recommendations Block external access at the network...

Broadcom Brocade SANnav CVE-2019-16210 Information Disclosure Vulnerability

Description Broadcom Brocade SANnav is prone to an information disclosure vulnerability Successfully exploiting this issue may allow an attacker to obtain sensitive information that may aid in further attacks or cause a denial-of-service condition. Versions prior to Brocade SANnav 2.0 are...

Elasticsearch CVE-2019-7619 Information Disclosure Vulnerability

Description Elasticsearch is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks. Versions prior to Elasticsearch 7.4.0 or 6.8.4 are vulnerable. Technologies Affected Elasticsearch...

OpenAFS CVE-2019-18602 Information Disclosure Vulnerability

Description OpenAFS is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may lead to further attacks. The following versions are affected: OpenAFS 1.0 through 1.6.23 OpenAFS 1.8.0 through 1.8.4 Technologies Affected OpenAFS...

Golang Go CVE-2019-17596 Remote Denial of Service Vulnerability

Description Golang Go is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Versions prior to Go 1.13.2 and Go 1.12.11 are vulnerable. Technologies Affected golang Go 1.12.1 golang Go 1.12.10 golang Go 1.12.5 golang Go...

Oracle MySQL Connectors CVE-2019-2920 Remote Security Vulnerability

Description Oracle MySQL Connectors is prone to a remote security vulnerability. The vulnerability can be exploited over the 'MySQL Protocol' Protocol. The 'Connector/ODBC' component is affected. This vulnerability affects the following supported versions: 5.3.13 and prior, 8.0.17 and prior...

Oracle Hospitality Cruise Dining Room Management CVE-2019-2953 Remote Security Vulnerability

Description Oracle Hospitality Cruise Dining Room Management is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. This vulnerability affects the following supported versions: 8.0.80 Technologies Affected Oracle Hospitality Cruise Dining Room...

Juniper Junos CVE-2019-0050 Denial of Service Vulnerability

Description Juniper Junos is prone to a denial-of-service vulnerability. An attacker may exploit this issue to cause denial-of-service conditions. Technologies Affected Juniper Junos 15.1X49 Juniper Junos 15.1X49-D10 Juniper Junos 15.1X49-D100 Juniper Junos 15.1X49-D101 Juniper Junos 15.1X49-D110...

QEMU CVE-2019-12067 Null Pointer Dereference Denial of Service Vulnerability

Description QEMU is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected QEMU QEMU Recommendations Block external access at the network boundary, unless external parties require service. If global access isn't...

Multiple Jenkins Plugins Multiple Security Vulnerabilities

Description Jenkins plugins are prone to the following vulnerabilities: 1. A HTML-injection vulnerability 2. Multiple information-disclosure vulnerabilities 3. A security-bypass vulnerability An attacker may leverage these issues to steal cookie-based authentication credentials, gain access to...

Palo Alto Networks Zingbox Inspector CVE-2019-15023 Information Disclosure Vulnerability

Description Palo Alto Networks Zingbox Inspector is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Versions prior to Zingbox Inspector 1.295 are vulnerable. Technologies Affected Paloaltonetworks...

PHP 'ext/exif/exif.c' Denial of Service Vulnerability

Description PHP is prone to a denial-of-service vulnerability. Successful exploits may allow the attacker to crash the affected application resulting in denial-of-service condition. Versions prior to PHP 7.4.0 are vulnerable. Technologies Affected PHP PHP 7.3.0 PHP PHP 7.3.1 PHP PHP 7.3.2 PHP PHP...

Microsoft Windows Event Viewer CVE-2019-0948 Information Disclosure Vulnerability

Description Microsoft Windows Event Viewer is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows ...

Microsoft Windows GDI Component CVE-2019-1011 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Systems...

Microsoft Windows GDI Component CVE-2019-0977 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Systems...

Microsoft SQL Server CVE-2019-0819 Information Disclosure Vulnerability

Description Microsoft SQL Server is prone to an information-disclosure vulnerability. An attacker can leverage this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft SQL Server 2017 for x64-based Systems Recommendations Block external access at...