Lucene search
+L

745 matches found

OSV
OSV
added 2019/11/30 11:15 p.m.28 views

CVE-2019-19269

An issue was discovered in tlsverifycrl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL skX509REVOKEDvalue function when encountering an empty CRL installed by a system administrator. The dereference occurs when validating the...

4.9CVSS4.9AI score
Exploits0References7
Prion
Prion
added 2019/11/30 11:15 p.m.24 views

Null pointer dereference

An issue was discovered in tlsverifycrl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL skX509REVOKEDvalue function when encountering an empty CRL installed by a system administrator. The dereference occurs when validating the...

4CVSS5AI score0.01645EPSS
Exploits0References7Affected Software3
OSV
OSV
added 2019/11/30 11:15 p.m.3 views

UBUNTU-CVE-2019-19269

An issue was discovered in tlsverifycrl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL skX509REVOKEDvalue function when encountering an empty CRL installed by a system administrator. The dereference occurs when validating the...

4.9CVSS6.3AI score0.01645EPSS
Exploits0References3
OSV
OSV
added 2019/11/26 4:15 a.m.2 views

DEBIAN-CVE-2019-19272

An issue was discovered in tlsverifycrl in ProFTPD before 1.3.6. Direct dereference of a NULL pointer a variable initialized to NULL leads to a crash when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup...

7.5CVSS6.3AI score0.00947EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/11/26 4:15 a.m.34 views

CVE-2019-19272

An issue was discovered in tlsverifycrl in ProFTPD before 1.3.6. Direct dereference of a NULL pointer a variable initialized to NULL leads to a crash when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup...

7.5CVSS6.8AI score0.00947EPSS
Exploits0References2
OSV
OSV
added 2019/11/26 4:15 a.m.5 views

UBUNTU-CVE-2019-19272

An issue was discovered in tlsverifycrl in ProFTPD before 1.3.6. Direct dereference of a NULL pointer a variable initialized to NULL leads to a crash when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup...

7.5CVSS6.7AI score0.00947EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2019/11/26 3:34 a.m.48 views

CVE-2019-19269

An issue was discovered in tlsverifycrl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL skX509REVOKEDvalue function when encountering an empty CRL installed by a system administrator. The dereference occurs when validating the...

4.9CVSS5.4AI score0.01645EPSS
Exploits0
Cvelist
Cvelist
added 2019/11/26 3:34 a.m.42 views

CVE-2019-19269

An issue was discovered in tlsverifycrl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL skX509REVOKEDvalue function when encountering an empty CRL installed by a system administrator. The dereference occurs when validating the...

5.9AI score0.01645EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2019/11/26 3:33 a.m.37 views

CVE-2019-19272

An issue was discovered in tlsverifycrl in ProFTPD before 1.3.6. Direct dereference of a NULL pointer a variable initialized to NULL leads to a crash when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup...

7.5CVSS6.4AI score0.00947EPSS
Exploits0
Cvelist
Cvelist
added 2019/11/26 3:33 a.m.35 views

CVE-2019-19272

An issue was discovered in tlsverifycrl in ProFTPD before 1.3.6. Direct dereference of a NULL pointer a variable initialized to NULL leads to a crash when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup...

7.6AI score0.00947EPSS
Exploits0References1
CVE
CVE
added 2019/11/26 3:33 a.m.1387 views

CVE-2019-19272

CVE-2019-19272 affects ProFTPD before 1.3.6. The issue is a NULL pointer dereference in tls_verify_crl during TLS mutual-auth validation, causing a crash (availability impact). The root cause is direct dereference of a NULL pointer in certificate validation. Affected versions are ProFTPD prior to...

7.5CVSS7.5AI score0.00947EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2019/11/26 12:0 a.m.4 views

PT-2019-15797 · Openssl +3 · Openssl +3

Name of the Vulnerable Software and Affected Versions: ProFTPD versions through 1.3.6b Description: An issue was discovered in the tls verify crl function. A dereference of a NULL pointer may occur when the OpenSSL sk X509 REVOKED value function encounters an empty CRL installed by a system...

10CVSS5.7AI score0.74254EPSS
Exploits8References68
CNVD
CNVD
added 2019/10/16 12:0 a.m.4 views

cPanel Competitive Conditions Issue Vulnerability

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A Competing Conditions Issue vulnerability exists in versions of cPanel prior to 58.0.4. The vulnerability stems from improper...

6.8CVSS7AI score0.00526EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/10/10 4:7 a.m.29 views

CVE-2018-8019

When using an OCSP responder Apache Tomcat Native 1.2.0 to 1.2.16 and 1.1.23 to 1.1.34 did not correctly handle invalid responses. This allowed for revoked client certificates to be incorrectly identified. It was therefore possible for users to authenticate with revoked certificates when using...

7.4CVSS2.7AI score0.04068EPSS
Exploits0References2
CNVD
CNVD
added 2019/09/26 12:0 a.m.2 views

ShopsN open source mall system sa*** function SQL injection vulnerabilities exist

ShopsN free version of B2C e-commerce is a product of Shanghai Yisu Network Technology Co. ShopsN open source mall system sa function SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive information mutual database...

7.6AI score
Exploits0
NVD
NVD
added 2019/09/09 12:15 p.m.22 views

CVE-2019-16137

An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion...

7.8CVSS7.5AI score0.01423EPSS
Exploits0References1
OSV
OSV
added 2019/09/09 12:15 p.m.2 views

DEBIAN-CVE-2019-16137

An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion...

7.5CVSS7.3AI score0.01423EPSS
Exploits0References1
OSV
OSV
added 2019/09/09 12:15 p.m.7 views

CVE-2019-16137

An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion...

7.5CVSS7.5AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/09/09 12:15 p.m.17 views

CVE-2019-16137

An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion...

7.8CVSS7.1AI score0.01423EPSS
Exploits0References3
Prion
Prion
added 2019/09/09 12:15 p.m.22 views

Privilege escalation

An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion...

7.8CVSS7.5AI score0.01423EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder