Lucene search
K

10 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:17 a.m.5 views

SUSE CVE-2019-5443

A non-privileged user or program can put code and a config file in a known non-privileged path under C:/usr/local/ that will make curl = 7.65.1 automatically run the code as an openssl "engine" on invocation. If that curl is invoked by a privileged user it can do anything it wants...

7.8CVSS6.2AI score0.00717EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/08 6:23 p.m.29 views

Security Bulletin: cURL vulnerability CVE-2019-5443 impacts IBM Aspera Streaming/IBM Aspera Streaming for Video version 3.9.6.1 and earlier

Summary cURL vulnerability CVE-2019-5443 impacts IBM Aspera Streaming/IBM Aspera Streaming for Video version 3.9.6.1 and earlier. The fix for this set of vulnerabilities was delivered in IBM Aspera High-Speed Transfer Server V4.0.0 and IBM Aspera High-Speed Transfer Endpoint V4.0.0 with streaming...

7.8CVSS1.8AI score0.00717EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/17 12:46 a.m.41 views

Security Bulletin: Curl vulnerabilities CVE-2019-5443 impacts IBM Aspera High-Speed Transfer Server, IBM Aspera High-Speed Transfer Client, IBM Aspera Desktop Client 3.9.1 and earlier

Summary Curl vulnerabilities CVE-2019-5443 impacts IBM Aspera High-Speed Transfer Server, IBM Aspera High-Speed Transfer Client, IBM Aspera Desktop Client 3.9.1 and earlier. The fix was delivered in version 3.9.3. Vulnerability Details CVEID: CVE-2019-5443 DESCRIPTION: A non-privileged user or...

7.8CVSS1.9AI score0.00717EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/01/17 12:0 a.m.60 views

Oracle Enterprise Manager Ops Center (Oct 2019 CPU)

The version of Oracle Enterprise Manager Ops Center installed on the remote host is affected by multiple vulnerabilities in Enterprise Manager Base Platform component: - An unspecified vulnerability in the Networking cURL component of Oracle Enterprise Manager Ops Center. An easy to exploit...

7.8CVSS6.5AI score0.27004EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2019/10/23 12:0 a.m.89 views

Oracle MySQL Server 5.7 <= 5.7.27 / 8.0 <= 8.0.17 Security Update (cpuoct2019) - Windows

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

7.8CVSS6.9AI score0.49739EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2019/10/23 12:0 a.m.43 views

Oracle MySQL Server 5.7 <= 5.7.27 / 8.0 <= 8.0.17 Security Update (cpuoct2019) - Linux

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

7.8CVSS6.9AI score0.49739EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2019/10/18 12:0 a.m.1016 views

MySQL 5.7.x < 5.7.28 Multiple Vulnerabilities (Oct 2019 CPU)

The version of MySQL running on the remote host is 5.7.x prior to 5.7.28. It is, therefore, affected by multiple vulnerabilities, including three of the top vulnerabilities below, as noted in the October 2019 Critical Patch Update advisory: - Vulnerabilities in the MySQL Server product of Oracle...

7.8CVSS6AI score0.03726EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2019/10/18 12:0 a.m.294 views

MySQL 8.0.x < 8.0.18 Multiple Vulnerabilities (Oct 2019 CPU)

The version of MySQL running on the remote host is 8.0.x prior to 8.0.18. It is, therefore, affected by multiple vulnerabilities, including three of the top vulnerabilities below, as noted in the October 2019 Critical Patch Update advisory: - Vulnerability in the MySQL Server product of Oracle...

7.8CVSS5.9AI score0.03726EPSS
Exploits0References31
CVE
CVE
added 2019/07/02 6:31 p.m.225 views

CVE-2019-5443

Technical details about CVE-2019-5443 are not publicly provided in the provided documents. The available information is a high-level summary; monitor for updates.

7.8CVSS7.5AI score0.00717EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2019/07/02 6:31 p.m.36 views

CVE-2019-5443

A non-privileged user or program can put code and a config file in a known non-privileged path under C:/usr/local/ that will make curl = 7.65.1 automatically run the code as an openssl "engine" on invocation. If that curl is invoked by a privileged user it can do anything it wants...

7.8CVSS6AI score0.00717EPSS
Exploits0
Rows per page
Query Builder