400 matches found
Embedthis GoAhead Web Server CVE-2019-5097 Denial of Service Vulnerability
Description Embedthis GoAhead is prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause a denial-of-service condition, denying service to legitimate users. GoAhead versions 5.0.1 and prior are vulnerable. Technologies Affected Embedthis Software GoAhead Web Server...
BMC Remedy Smart Reporting CVE-2019-11216 XML External Entity Injection Vulnerability
Description BMC Remedy Smart Reporting is prone to an XML External Entity injection vulnerability. Attackers can exploit this issue to obtain potentially sensitive information or cause a denial-of-service condition. This may lead to further attacks. BMC Remedy Smart Reporting versions 9.1.03.001,...
Microsoft Excel 2016 XML External Entity Information Disclosure Vulnerability
Description Microsoft Excel 2016 is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Excel 2016 1901 Recommendations Deploy network intrusion detection systems to...
HAProxy CVE-2019-19330 CRLF Injection Vulnerability
Description HAProxy is prone to a CRLF-injection vulnerability. An attacker can exploit this issue to add arbitrary headers to a webpage. This may aid in further attacks. HAProxy versions prior to 2.0.10 are vulnerable. Technologies Affected haproxy haproxy 1.4 haproxy haproxy 1.4.0 haproxy hapro...
FreeIPA CVE-2019-10195 Information Disclosure Vulnerability
Description FreeIPA is prone to a information-disclosure vulnerability. The attackers can exploit this issue to obtain sensitive information that may lead to further attacks. FreeIPA version 4.6.x through and prior to 4.6.7, 4.7.x through and prior to4.7.4 and 4.8.x through and prior to 4.8.3 are...
SQLite CVE-2019-19317 Denial of Service Vulnerability
Description SQLite is prone to a denial of service vulnerability. Attackers can exploit this issue to cause denial-of-service conditions. SQLite 3.30.1 is vulnerable; other versions may also be affected. Technologies Affected SQLite SQLite 3.30.1 Recommendations Block external access at the netwo...
Asterisk Open Source CVE-2019-18976 Denial of Service Vulnerability
Description Asterisk Open Source is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to crash the application, resulting in a denial-of-service condition. Technologies Affected Asterisk Certified Asterisk 13.21 Asterisk Certified Asterisk 13.21-cert Asterisk...
Cisco Small Business RV Series Routers CVE-2019-15990 Information Disclosure Vulnerability
Description Cisco Small Business RV Series Routers are prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. This issue is being tracked by Cisco Bug ID CSCvq76840. Technologies Affected Cisco RV016...
ISC BIND CVE-2019-6477 Remote Denial of Service Vulnerability
Description ISC BIND is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected ISC Bind 9.11.0 ISC Bind 9.11.2 ISC Bind 9.11.3 ISC Bind 9.11.4 ISC Bind 9.11.5 ISC Bind 9.11.6 ISC Bind 9.11.7 ISC Bind 9.11...
Multiple QNAP Products NAS-201911-20 Multiple Security Vulnerabilities
Description Multiple QNAP products are prone to multiple security vulnerabilities. An attacker may leverage these issues to execute arbitrary commands or gain unauthorized access to the affected device. Technologies Affected Qnap Helpdesk 1.0.06 Qnap Helpdesk 1.1.01 Qnap Helpdesk 1.2.0 Qnap...
Moodle CVE-2019-14879 Security Bypass Vulnerability
Description Moodle is prone to a security-bypass vulnerability. Successfully exploiting this issue will allow attackers to bypass security restrictions and perform unauthorized actions; this may aid in launching further attacks. Moodle version 3.7 through 3.7.2, 3.6 through 3.6.6, 3.5 through 3.5...
F5 BIG-IP APM CVE-2019-6661 Denial of Service Vulnerability
Description F5 BIG-IP APM is prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause excessive resource consumption, resulting in a denial-of-service condition. BIG-IP APM 14.1.0 through 14.1.2, 14.0.0 through 14.0.1, 13.0.0 through 13.1.3, 12.1.0 through 12.1.4, and...
Microsoft Windows Hyper-V CVE-2019-0712 Denial of Service Vulnerability
Description Microsoft Windows is prone to a denial of service vulnerability. An attacker can exploit this issue to crash the host machine, resulting in a denial of service condition. Technologies Affected Microsoft Hyper-V Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windows ...
SAP UI5 HTTP Handler CVE-2019-0388 Unspecified Content Spoofing Vulnerability
Description SAP UI5 HTTP Handler is prone to an unspecified content-spoofing vulnerability. Attackers can exploit this issue to manipulate and spoof content, which may aid in further attacks. Technologies Affected SAP SAPUI5 SAP UI 7.5 SAP UI 7.51 SAP UI 7.52 SAP UI 7.53 SAP UI 7.54 Recommendatio...
Microsoft Visual Studio CVE-2019-1425 Remote Privilege Escalation Vulnerability
Description Microsoft Visual Studio is prone to a remote privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Visual Studio 2017 15.9 Microsoft Visual Studio 2019 16.0 Microsoft Visual Studio 2019 16.3 Recommendations...
Adobe Illustrator CVE-2019-7962 DLL Loading Privilege Escalation Vulnerability
Description Adobe Illustrator is prone to a privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Adobe Illustrator CC version 23.1 and prior are vulnerable. Technologies Affected Adobe Illustrator CC 19 Adobe Illustrator CC 21 Adobe Illustrator CC 22...
Microsoft Office Online CVE-2019-1447 Spoofing Vulnerability
Description Microsoft Office Online is prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Technologies Affected Microsoft Office...
Microsoft Edge CVE-2019-1413 Security Bypass Vulnerability
Description Microsoft Edge is prone to a security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. This may lead to other attacks. Technologies Affected Microsoft Edge Recommendations Run all...
Microsoft Azure Stack CVE-2019-1234 Spoofing Vulnerability
Description Microsoft Azure Stack is prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Technologies Affected Microsoft Azure Stac...
Microsoft Windows GDI CVE-2019-1439 Information Disclosure Vulnerability
Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...