13538 matches found
Microsoft VBScript Remote Code Execution (CVE-2019-1485)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16457)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16465)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Use After Free (APSB19-55: CVE-2019-16452)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16461)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Untrusted Pointer Dereference (APSB19-55: CVE-2019-16463)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16449)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Security bypass (APSB19-55: CVE-2019-16453)
A security bypass vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability would allow remote attackers to bypass security tests and protocols on the affected system...
Adobe Acrobat and Reader Untrusted Pointer Dereference (APSB19-55: CVE-2019-16455)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Adobe Acrobat and Reader Out-of-Bounds Write (APSB19-55: CVE-2019-16450)
An out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Heap Overflow (APSB19-55: CVE-2019-16451)
A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
Adobe Acrobat and Reader Buffer Errors (APSB19-55: CVE-2019-16462)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16458)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16456)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Binary Planting (APSB19-55: CVE-2019-16444)
A privilege escalation vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...
Adobe Acrobat and Reader Untrusted Pointer Dereference (APSB19-55: CVE-2019-16460)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Adobe Acrobat and Reader Use After Free (APSB19-55: CVE-2019-16464)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Information Disclosure (CVE-2019-1469)
An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Use After Free (APSB19-55: CVE-2019-16459)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Untrusted Pointer Dereference (APSB19-55: CVE-2019-16446)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Adobe Acrobat and Reader Use After Free (APSB19-55: CVE-2019-16448)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Broadcom CA Privileged Access Manager Remote Command Execution (CVE-2018-9021; CVE-2018-9022)
A remote code execution vulnerability exists in Broadcom CA Privileged Access Manager. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
FUDForum Remote Code Execution (CVE-2019-18873)
A remote code execution vulnerability exists in FUDForum. Successful exploitation could result in execution of arbitrary code on the affected system...
Nostromo Web Server Directory Traversal (CVE-2019-16278)
A directory traversal vulnerability exists in Nostromo Web Server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Graphics Device Interface Information Disclosure (CVE-2019-0614)
An information disclosure vulnerability exists in the Graphics Device Interface GDI component of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. Successful exploitation of this vulnerability would allow remote attackers to gain access to sensitive informatio...
FreeBSD bootpd Stack Buffer Overflow (CVE-2018-17161)
A buffer overflow vulnerability exists in FreeBSD. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
Advantech WebAccess Node Spchapi Buffer Overflow Remote Code Execution
Stack based buffer overflow vulnerabilities have been reported in Advantech WebAccess Node. A remote, unauthenticated user can exploit these vulnerabilities by sending crafted requests to the target server. Successful exploitation could result in the execution of arbitrary code in the security...
Microsoft Office Information Disclosure (CVE-2019-0560)
An information disclosure vulnerability exists in a component of Microsoft Office. This vulnerability is due to improper handling of an object. Successful exploitation of this vulnerability would allow remote attackers to gain access to sensitive information...
Microsoft Graphics Device Interface Information Disclosure (CVE-2019-0602)
An information disclosure vulnerability exists in the Graphics Device Interface GDI component of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. Successful exploitation of this vulnerability would allow remote attackers to gain access to sensitive informatio...
Cisco Prime Infrastructure and EPNM Directory Traversal (CVE-2019-1819)
A directory traversal vulnerability exists in Cisco Prime Infrastructure and Evolved Programmable Network Manager. The vulnerability is due to a lack of proper validation of a user-supplied path prior to using it in file operations. Successful exploitation results in the disclosure of file conten...
Microsoft Graphics Device Interface Information Disclosure (CVE-2019-0616)
An information disclosure vulnerability exists in Microsoft Graphics Device Interface. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Microsoft Windows DHCP Client DhcpExtractFullOptions Code Execution (CVE-2019-0697)
A remote code execution vulnerability exists in Microsoft DHCP Client. A remote attacker could exploit this vulnerability by sending maliciously crafted DHCP responses to a vulnerable Windows system. Successful exploitation of this vulnerability could allow the attacker to execute arbitrary code...
Evernote Directory Traversal (CVE-2019-10038)
A directory traversal vulnerability exists in Evernote. This vulnerability is due to improper validation of embedded links in notes. Successful exploitation could result in arbitrary program execution...
Microsoft Office Word Security Feature Bypass (CVE-2019-0540)
An information disclosure vulnerability exists in the Word component of Microsoft Office. This vulnerability is due to improper handling of fields. Successful exploitation could cause an information disclosure...
Microsoft Office Word Information Disclosure (CVE-2019-0561)
An information disclosure vulnerability exists in the Word component of Microsoft Office. This vulnerability is due to improper handling of fields. Successful exploitation of this vulnerability would allow remote attackers to gain access to sensitive information...
Cisco Webex Teams code Injection (CVE-2019-1636)
A remote code execution vulnerability exists in Cisco Webex Teams. The vulnerability is due to improper sanitation of user-supplied data which may be passed to the application as an option regarding the DLL loading path. Successful exploitation could result in code execution on the target machine...
PHP dns_get_record Out of Bounds Read (CVE-2019-9022)
An out of bounds read vulnerability exists in PHP dnsgetrecord. The vulnerability is due to improper handling of malformed DNS responses. Successful exploitation could lead to information disclosure...
Facebook Fizz Integer Overflow Denial of Service (CVE-2019-3560)
A denial-of-service vulnerability exists in Facebook Fizz. The vulnerability is due to an integer overflow in the handling of TLS 1.3 early data requests. A successful attack could create a denial of service condition to the Discovery service...
ClamAV OLE2 Out-of-Bounds Write (CVE-2019-1788)
An out-of-bounds write vulnerability exists in ClamAV. The vulnerability is due to improper handling of OLE2 files. Successful exploitation could result in denial-of-service conditions...
Responsive File Manager Directory Traversal (CVE-2018-20792)
A directory traversal vulnerability exists in the Responsive File Manager. This vulnerability is due to insufficient sanitization of directory traversal characters by the ajaxcalls.php. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected...
libVNC File Transfer Extension Heap-based Buffer Overflow (CVE-2018-15127)
A heap-based buffer overflow vulnerability has been reported in libVNC. The vulnerability is due improper validation of the file transfer request by the File Transfer extension. Successful exploitation may result in remote code execution on the target server...
wolfSSL DoPreSharedKeys PSK Identity Buffer Overflow (CVE-2019-11873)
A buffer overflow vulnerability exists in wolfSSL embedded SSL/TLS library. The vulnerability is due to improper validation of PSK identity size in the requests. A remote attacker could exploit this vulnerability by sending maliciously crafted requests to a target server. Successful exploitation ...
OMRON CX-One CX-Protocol Type Confusion (CVE-2018-19027)
A type confusion vulnerability exists in OMRON CX-One CX-Protocol. This vulnerability occurs due to improper parsing of the project file. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Malicious Activity Over DNS Tunneling
DNS Tunneling is used to pass non-DNS information using DNS messages, which are normally allowed by security devices. Malicious users or malware may use DNS tunnels to bypass inspection by the security gateway...
NTPsec ntpd Out of Bounds Read (CVE-2019-6444)
An out of bounds read vulnerability has been reported in NTPsec ntpd. The vulnerability is due to insufficient validation of the address of a field to be read in a NTP packet. Successful exploitation could lead to disclosure of sensitive information...
GnuTLS Certificate Verification Use after Free (CVE-2019-3829)
A use-after-free vulnerability exists in the GnuTLS library. The vulnerability is due to improper handling of signatures when processing X.509 certificates. A remote attacker can exploit this vulnerability in GnuTLS by sending a crafted X.509 certificate to a target application. Successful...
Dovecot Submission-Login Service NULL Pointer Dereference Denial of Service (CVE-2019-11494)
A denial-of-service vulnerability exists in the Dovecot server. The vulnerability is due to a NULL pointer dereference in the submission-login service when authentication is aborted. Successful exploitation of this vulnerability could cause a partial denial of service of the affected system...
Microsoft Remote Desktop Services Remote Code Execution (CVE-2019-1182)
A buffer overflow vulnerability exists in Microsoft Remote Desktop Services. A remote attacker could exploit this vulnerability by sending a specially crafted RDP packet. Successful exploitation of this vulnerability could lead to execution of arbitrary code on the target server...
Advantech WebAccess Stack-based Buffer Overflow (CVE-2018-17910)
A stack-based buffer overflow vulnerability exists in Advantech WebAccess. Successful exploitation could lead to arbitrary code execution on the affected...
Adobe InDesign Remote Code Execution (CVE-2019-7107)
A remote code execution vulnerability exists in Adobe InDesign. The vulnerability is due to insufficient validation of hyperlinks in InDesign documents. Successful exploitation could result in arbitrary code execution under the security context of the application...