Oracle E-Business Suite CVE-2020-2591 Remote Security Vulnerability

Description Oracle E-Business Suite is prone to a remote security vulnerability in 'Oracle Web Applications Desktop Integrator' product. This vulnerability can be exploited over the 'HTTP' protocol. The 'Application Service' component is affected. This vulnerability affects the following supporte...

Oracle WebLogic Server Multiple Remote Security Vulnerabilities

Description Oracle WebLogic Server is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over 'HTTP' protocol. The 'WLS Core Components' is affected. These vulnerabilities affect the following supported versions: 10.3.6.0.0 Technologies Affected Oracle...

Microsoft Excel CVE-2020-0653 Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

Oracle Solaris cpujan2020 Multiple Local Security Vulnerabilities

Description Oracle Solaris is prone to multiple local security vulnerabilities. These vulnerabilities affect the following supported versions: 10, 11 Technologies Affected Oracle Solaris 10 Oracle Solaris 11 Recommendations Permit local access for trusted individuals only. Where possible, use...

FasterXML Jackson-databind CVE-2019-14540 Information Disclosure Vulnerability

Description FasterXML Jackson-databind is prone to an information-disclosure vulnerability. An attacker can exploit this issue to obtain sensitive information that may aid in further attacks. FasterXML jackson-databind versions prior to 2.9.10 are vulnerable. Technologies Affected FasterXML...

Libsixel CVE-2019-20205 Integer Overflow Vulnerability

Description Libsixel is prone to an integer overflow vulnerability. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Libsixel versions through 1.8.4 are vulnerable...

Trend Micro Apex One and OfficeScan CVE-2019-19691 Information Disclosure Vulnerability

Description Trend Micro Apex One and OfficeScan are prone to an information-disclosure vulnerability. Remote attackers can exploit this issue to obtain sensitive information that may lead to further attacks. The following products are affected: Trend Micro Apex One 2019 Trend Micro OfficeScan XG...

PHP CVE-2019-11047 Heap Buffer Overflow Vulnerability

Description PHP is prone to a heap-based buffer-overflow vulnerability. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions. PHP 7.2.x versions prior to 7.2.26, 7.3.x...

Drupal Modal Page Module SA-CONTRIB-2019-094 Unauthorized Access Vulnerability

Description The modal page module for Drupal is prone to an unauthorized-access vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. Drupal Modal Page versions 8.x-2.4, 8.x-2.3,...

Microsoft Windows Win32k Graphics CVE-2019-1468 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected Microsoft Windows ...

McAfee TechCheck for Windows CVE-2019-3667 DLL Loading Arbitrary Code Execution Vulnerability

Description McAfee TechCheck is prone to an arbitrary code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will result in a denial of service condition. McAfee TechCheck versions 3.0.0.17 an...

Git CVE-2019-19604 Arbitrary Code Execution Vulnerability

Description Git is prone to an arbitrary code-execution vulnerability. A remote attacker may exploit this issue to execute arbitrary code in the context of the affected application. Failed attempts will likely cause a denial-of-service condition. Git versions prior to 2.20.2, 2.21.x through and...

Broadcom CA Nolio CVE-2019-19230 Deserialization Remote Code Execution Vulnerability

Description Broadcom CA Nolio is prone to a remote-code execution vulnerability. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions. Broadcom CA Nolio version 6.6 is...

Symantec Norton Password Manager CVE-2019-18381 Cross-Origin Security Bypass Vulnerability

Description Symantec Norton Password Manager is prone to a security bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. Versions prior to Symantec Norton Password Manager...

Reliable Controls LicenseManager CVE-2019-18245 Local Code Execution Vulnerability

Description Reliable Controls LicenseManager is prone to a local code execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the application. Failed exploit attempts will likely cause a denial-of-service condition. Reliable Controls...

Embedthis GoAhead Web Server CVE-2019-5096 Remote Code Execution Vulnerability

Description Embedthis GoAhead Web Server is prone to a remote code execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the application. Failed exploit attempts will likely cause a denial-of-service condition. Embedthis GoAhead Web Server...

Multiple F5 BIG-IP Products CVE-2019-6666 Denial of Service Vulnerability

Description Multiple F5 BIG-IP Products are prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause a denial of service condition. Technologies Affected F5 BIG-IP AAM 13.0.0 F5 BIG-IP AAM 13.1.1 F5 BIG-IP AAM 14.0.0 F5 BIG-IP AAM 14.1.0 F5 BIG-IP AAM 15.0.0 F5 BIG-IP...

Apache Shiro CVE-2019-12422 Information Disclosure Vulnerability

Description Apache Shiro is prone to an information-disclosure vulnerability. Successfully exploiting this issue may allow an attacker to obtain sensitive information that may aid in further attacks. Versions prior to Apache Shiro 1.4.2 are vulnerable. Technologies Affected Apache Apache Shiro...

Fortinet FortiClient for Linux Multiple Local Security Vulnerabilities

Description Fortinet FortiClient for Linux is prone to multiple local security vulnerabilities. An attacker may exploit these issues to inject and execute arbitrary system-commands with root privileges, overwrite system-files, gain elevated privileges or cause denial of service conditions. Versio...

Siemens Desigo PX CVE-2019-13927 Denial of Service Vulnerability

Description Siemens Desigo PX is prone to denial of service vulnerability Remote attackers may exploit this issue to cause denial-of-service conditions. Technologies Affected Siemens Desigo PX PXA40-W0 Siemens Desigo PX PXA40-W1 Siemens Desigo PX PXA40-W2 Siemens Desigo PX PXC00-E.D Siemens Desig...