13538 matches found
HPE Intelligent Management Center Denial of Service (CVE-2019-5355)
A denial-of-service vulnerability exists in the dbman component of HPE Intelligent Management Center. Successful exploitation of this vulnerability could result in a denial of service condition on the target server...
Oracle E-Business Suite SQL Injection (CVE-2019-2633; CVE-2019-2638)
An SQL vulnerability exists in the Work In Process component of Oracle E-Business Suite. Successful exploitation of this vulnerability could result in the execution of arbitrary SQL statements with the privileges of the APPS database user...
Advantech WebAccess SCADA Stack-based Buffer Overflow (CVE-2019-3975; CVE-2019-3951)
A stack-based buffer overflow vulnerability exists in the webvrpcs service of Advantech WebAccess. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Oracle Weblogic Insecure Deserialization (CVE-2020-2551)
An insecure deserialization vulnerability exists in Oracle Weblogic. A remote unauthenticated attacker can exploit this vulnerability by sending crafted requests to a vulnerable server. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the affected...
Microsoft Remote Desktop Client Remote Code Execution (CVE-2020-0817)
A remote code execution vulnerability exists in the Windows Remote Desktop Client. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
PostgreSQL Database Password Change Stack Buffer Overflow (CVE-2019-10164)
A stack buffer overflow exists in PostgreSQL Database. The vulnerability is due to a stack buffer overflow when setting a password. A remote, authenticated attacker could send a crafted request in order to trigger the vulnerability. Successful exploitation will result in arbitrary code execution...
Microsoft Win32k Elevation of Privilege (CVE-2020-0720)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Advantech WebAccess Buffer Overflow (CVE-2019-13556)
A stack-based buffer overflow vulnerability exists in Advantech WebAccess. The vulnerability is due to a lack of boundary checks while copying user-supplied data into a stack-based buffer within giffconv.exe. A remote, unauthenticated attacker could exploit this vulnerability by sending a...
Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3751)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Buffer Errors (APSB20-05: CVE-2020-3754)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Microsoft Win32k Elevation of Privilege (CVE-2020-0726)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Elevation of Privilege (CVE-2020-0723)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB20-05: CVE-2020-3755)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3750)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3748)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3743)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3741)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Elevation of Privilege (CVE-2020-0722)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Elevation of Privilege (CVE-2020-0725)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Graphics Component Elevation of Privilege (CVE-2020-0745)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Graphics Component Elevation of Privilege (CVE-2020-0715)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Elevation of Privilege (CVE-2020-0721)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Common Log File System Driver Information Disclosure (CVE-2020-0658; CVE-2020-0657)
An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Heap Overflow (APSB20-05: CVE-2020-3742)
A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
Microsoft Win32k Elevation of Privilege (CVE-2020-0731)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB20-05: CVE-2020-3747)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Buffer Errors (APSB20-05: CVE-2020-3752)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3746)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Jenkins Pipeline Groovy Remote Code Execution (CVE-2019-1003001)
A remote code execution vulnerability exists in Jenkins pipeline groovy. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3745)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Flash Player Type Confusion (APSB20-06: CVE-2020-3757)
A type confusion vulnerability exists in Adobe Flash Player. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3749)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Remote Desktop Client Remote Code Execution (CVE-2020-0734)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Remote Desktop Client Remote Code Execution (CVE-2020-0681)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Exchange Server Elevation of Privilege (CVE-2020-0692)
An elevation of privilege vulnerability exists in Microsoft Microsoft Exchange. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB20-05: CVE-2020-3744)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Redis Buffer Overflow (CVE-2019-10192; CVE-2019-10193)
A buffer overflow vulnerability exists in Redis. Successful exploitation of this vulnerability could result in the execution of arbitrary code on the affected system...
Apple iTunes Memory Corruption (CVE-2019-8601)
A memory corruption vulnerability exists in Apple iTunes. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
WordPress Code Snippets Plugin Cross Site Request Forgery (CVE-2020-8417)
A cross site request forgery vulnerability exists in WordPress Code Snippets plugin. Successful exploitation of this vulnerability can result in the execution of arbitrary code on the affected system...
Foxit Reader Use After Free (CVE-2018-14304; CVE-2018-14300; CVE-2018-17682; CVE-2018-3924)
A use after free vulnerability exists in Foxit Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Oracle Weblogic Server Information Disclosure (CVE-2019-2647; CVE-2019-2648)
An information disclosure vulnerability exists in Oracle Weblogic Server. This vulnerability is due to insufficient validation of XML data. Successful exploitation of this vulnerability could lead to the disclosure of file contents on the target machine...
Microsoft Windows DHCP Client Code Execution (CVE-2019-0547)
A remote code execution vulnerability exists in Microsoft DHCP Client. The vulnerability is due to improper processing of DHCP response messages, causing memory corruption. A remote attacker could exploit this vulnerability by sending maliciously crafted DHCP responses to a vulnerable target...
Advantech WebAccess Buffer Overflow (CVE-2019-6550)
A stack-based buffer overflow vulnerability exists in Advantech WebAccess. Successful exploitation of this vulnerability will allow remote attackers to execute arbitrary code on the affected system...
Foxit Reader Annotations Point Use After Free (CVE-2018-9958)
A use-after-free vulnerability exists in Foxit Reader. This vulnerability is due to improper handling of an annotation object. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the affected system...
Linear eMerge Command Injection (CVE-2019-7256)
A command injection vulnerability exists in Linear eMerge E3-series devices. Successful exploitation of this vulnerability would allow remote attackers to execute arbitrary commands on the affected system...
MediaWiki Reflected Cross-Site Scripting (CVE-2017-8809)
A reflected cross-site scripting vulnerability exists in MediaWiki. The vulnerability is due to insufficient input validation on user input in the api.php component. A remote user can exploit this vulnerability by enticing a user to click on a malicious link...
Zoho ManageEngine Applications Manager SQL Injection (CVE-2019-11469)
A SQL injection vulnerability exists in Zoho ManageEngine Applications Manager. The vulnerability is due to improper validation of user-supplied input in FaultTemplateOptions.jsp. Successful exploitation could result in arbitrary SQL code execution...
Pandora FMS Command Injection (CVE-2019-20224)
A command injection vulnerability exists in Pandora FMS. Successful exploitation of this vulnerability would allow remote attackers to execute arbitrary commands on the affected system...
Microsoft Windows NTLM Authentication Bypass (CVE-2019-1040)
An authentication bypass vulnerability exists in the NTLM component of Microsoft Windows. The vulnerability is due to improper validation of the MIC in an AUTHENTICATE message. Successful exploitation of this vulnerability would allow remote attackers to gain access to sensitive information and...
Memcached lru mode Denial of Service (CVE-2019-11596)
A denial of service vulnerability exists in Memcached 'lru mode' and 'lru tempttl' commands. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...