Microsoft Windows Remote Desktop Protocol CVE-2020-0609 Remote Code Execution Vulnerability

Description Microsoft Windows Remote Desktop Protocol is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Technologies...

Microsoft Office CVE-2020-0652 Memory Corruption Vulnerability

Description Microsoft Office is prone to a memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

Microsoft Internet Explorer CVE-2020-0640 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Internet Explor...

Microsoft Windows '.Group' File Handling Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Windows Recommendatio...

Libsixel CVE-2019-20205 Integer Overflow Vulnerability

Description Libsixel is prone to an integer overflow vulnerability. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Libsixel versions through 1.8.4 are vulnerable...

Libsixel CVE-2019-20023 Memory Leak Denial of Service Vulnerability

Description Libsixel is prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash the application; denying service to legitimate users. Libsixel versions through 1.8.4 are vulnerable. Technologies Affected Libsixel Libsixel 1.0.0 Libsixel Libsixel 1.1.0 Libsixel...

Siemens SiNVR 3 SSA-761617 Multiple Security Vulnerabilities

Description Siemens SiNVR 3 is prone to the following security vulnerabilities: 1. Multiple information-disclosure vulnerabilities 2. Multiple authentication-bypass vulnerabilities 3. A directory-traversal vulnerability 4. A privilege-escalation vulnerability An attacker can exploit this issue...

Embedthis GoAhead Web Server CVE-2019-5096 Remote Code Execution Vulnerability

Description Embedthis GoAhead Web Server is prone to a remote code execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the application. Failed exploit attempts will likely cause a denial-of-service condition. Embedthis GoAhead Web Server...

Django CVE-2019-19118 Privilege Escalation Vulnerability

Description Django is prone to a privilege-escalation vulnerability. A remote attacker can exploit this issue to gain elevated privileges and perform unauthorized actions on an affected system. Django versions prior to 2.2.8 and 2.1.15 are vulnerable. Technologies Affected Djangoproject Django 2....

Lenovo System Interface Foundation Multiple Security Vulnerabilities

Description Lenovo System Interface Foundation is prone to multiple security vulnerabilities. An attacker can exploit these issues to execute arbitrary code or gain elevated privileges on the affected system. Versions prior to Lenovo System Interface Foundation 1.1.18.3 are vulnerable. Technologi...

Apache Shiro CVE-2019-12422 Information Disclosure Vulnerability

Description Apache Shiro is prone to an information-disclosure vulnerability. Successfully exploiting this issue may allow an attacker to obtain sensitive information that may aid in further attacks. Versions prior to Apache Shiro 1.4.2 are vulnerable. Technologies Affected Apache Apache Shiro...

Lexmark Services Monitor CVE-2019-16758 Directory Traversal Vulnerability

Description Lexmark Services Monitor is prone to a directory-traversal vulnerability. Remote attackers may use a specially crafted request with directory-traversal sequences '../' to retrieve sensitive information. This may aid in further attacks. Lexmark Services Monitor 2.27.4.0.39 is vulnerabl...

Microsoft Windows Win32k Graphics CVE-2019-1441 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected Microsoft Windows ...

Microsoft Windows Media Foundation CVE-2019-1430 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft Windows 10 Version 1903 f...

Fuji Electric V-Server CVE-2019-18240 Multiple Heap Based Buffer Overflow Vulnerabilities

Description Fuji Electric V-Server is prone to multiple unspecified heap-based buffer overflow vulnerabilities. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions...

Apple watchOS CVE-2019-8747 Memory Corruption Vulnerability

Description Apple watchOS is prone to memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code and perform unauthorized actions. Failed exploit attempts may result in a denial-of-service condition. Technologies Affected Apple Watch Apple watchOS 1.0 Apple watchO...

Trend Micro Anti-Threat Toolkit CVE-2019-9491 Remote Code Execution Vulnerability

Description Trend Micro Anti-Threat Toolkit is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will result in a denial of service condition. The following products are...

Multiple Sonatype Products CVE-2019-16530 Unspecified Remote Code Execution Vulnerability

Description Multiple Sonatype Products are prone to an unspecified remote code execution vulnerability Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. The following Sonatype products are vulnerable Nexus Repository Manager ...

Adobe Experience Manager APSB19-48 Multiple Security Vulnerabilities

Description Adobe Experience Manager is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary script code in the context of the affected website. This may allow the attacker to steal cookie-based authentication credentials, to gain access to sensitive...

iTerm2 CVE-2019-9535 Remote Command Execution Vulnerability

Description iTerm2 is prone to a remote command-injection vulnerability Attackers can exploit this issue to execute arbitrary commands on the system. iTerm2 version 3.3.5 and prior versions are vulnerable. Technologies Affected iTerm2 iTerm2 3.0.4 iTerm2 iTerm2 3.1.0 iTerm2 iTerm2 3.1.5 iTerm2...