13538 matches found
Microsoft Windows Graphics Device Interface Information Disclosure (CVE-2019-1010)
An information disclosure vulnerability exists in Microsoft Graphics Device Interface of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. Successful exploitation could result in disclosure of information which could be used to further compromise the target...
Microsoft Windows Graphics Device Interface Information Disclosure (CVE-2019-0802)
An information disclosure vulnerability exists in Microsoft Graphics Device Interface of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. Successful exploitation could result in disclosure of information which could be used to further compromise the target...
Purple Fox Exploit Kit Landing Page
Purple Fox exploit kit is a web exploit kit that operates by delivering malicious payload to the victim's computer. Successful infection will allow the attacker to download additional malware to the target...
Capesand Exploit Kit Landing Page
Capesand exploit kit is a web exploit kit that operates by delivering malicious payload to the victim's computer. Successful infection will allow the attacker to download additional malware to the target...
Zoho ManageEngine OpManager Image Arbitrary File Upload (CVE-2018-18475)
An arbitrary file upload vulnerability exists in Zoho ManageEngine OpManager. The vulnerability is due to insufficient validation of uploaded images. Successful exploitation could result in unrestricted file upload and possible further attacks...
Jenkins build-metrics Plugin Cross-Site Scripting (CVE-2019-10475)
A cross-site scripting vulnerability exists in Jenkins build-metrics Plugin. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the effected system...
Citrix StoreFront Server XML External Entity Injection (CVE-2019-13608)
An XML external entity injection vulnerability exists in Citrix StoreFront Server. A successful exploitation of this vulnerability could result in the disclosure of file contents from the target system...
Oracle Outside In Excel Information Disclosure (CVE-2018-3147)
An out-of-bounds read vulnerability exists in Oracle Outside-In. The vulnerability is due to improper handling of the OfficeArtRecLen field of a GelFrame record of an Excel document. Successful exploitation could result in information disclosure which could be used to further compromise the targe...
rConfig Remote Code Execution (CVE-2019-16662; CVE-2019-16663)
A remote code execution vulnerability exists in rConfig. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Electronic Arts Origin Client URI Handler Remote Code Execution (CVE-2019-12828)
A remote code execution vulnerability exists in the Electronic Arts Origin Client. The vulnerability is due to improper sanitization of user-supplied data which may be passed to the application as an option regarding the DLL loading path. A remote attacker could exploit the vulnerability by...
Microsoft Windows Graphics Device Interface Information Disclosure (CVE-2019-0961)
An information disclosure vulnerability exists in Microsoft Graphics Device Interface of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. Successful exploitation could result in disclosure of information which could be used to further compromise the target...
OMRON CX-One CX-Stack-based Buffer Overflow (CVE-2018-7514)
A stack-based overflow exists in OMRON CX-One. The vulnerability is due to input validation error. Successful exploitation could result in arbitrary code execution...
WECON PIStudio basedll TextContent Stack-based Buffer Overflow
A stack-based overflow exists in Wecon PIStudio. This vulnerability is due to input validation error when processing TextContent attributed in a HSC configuration file. A remote attacker could exploit these vulnerabilities by enticing a user to visit a malicious web page or open a crafted documen...
PHP LDAP ldap_get_dn Denial of Service (CVE-2018-10548)
A denial of service vulnerability has been reported in PHP. The vulnerability is due to a NULL pointer dereference in ldapgetdn when performing LDAP queries. Successful exploitation of this vulnerability could lead to denial of service...
LAquis SCADA LGX Report Arbitrary File Write (CVE-2018-18988)
An arbitrary file write vulnerability exists in LAquis SCADA LGX report. Successful exploitation of this vulnerability could result in arbitrary file write and possible arbitrary code execution...
PHPUnit Command Injection (CVE-2017-9841)
A command injection vulnerability exists in PHPUnit. Successful exploitation of this vulnerability would allow remote attackers to execute arbitrary commands in the affected system...
PHP FastCGI Process Manager Remote Code Execution (CVE-2019-11043)
A remote code execution vulnerability exists in PHP-FPM nginx. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Codecs Library Information Disclosure (CVE-2018-8506)
An information disclosure vulnerability exists in Windows Codecs Library. The vulnerability is due to improper handling of objects in memory. A remote attacker can exploit this vulnerability by enticing a user to open a specially crafted image file. Successful exploitation could result in the...
Cisco IOS Authentication Bypass (CVE-2019-12643)
An authentication bypass vulnerability exists in the Cisco REST API Software. This vulnerability is due to a debugging API endpoint being enabled by default in the management of the REST API authentication service. Successful exploitation of this vulnerability could lead to an authentication bypa...
Netgate pfSense Stored Cross-Site Scripting (CVE-2019-8953)
A stored cross-site scripting vulnerability exists in Netgate pfSense. The vulnerability is due to improper validation of desc and tableactionsaclN parameters in the haproxylistenersedit.php script file...
Asterisk PJSIP Information Disclosure (CVE-2018-12227)
An information disclosure vulnerability has been reported in Asterisk PJSIP. Successful exploitation could result of endpoint presence disclosure to the remote user...
Exim Mail Server Remote Code Execution (CVE-2019-16928)
A buffer overflow vulnerability exists in Exim server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-49: CVE-2019-8193)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Microsoft Windows Information Disclosure (CVE-2018-8472)
An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-49: CVE-2019-8185)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-Bounds Write (APSB19-49: CVE-2019-8186)
An out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Kibana Timelion Remote Code Execution (CVE-2019-7609)
A remote code execution vulnerability exists in Kibana Timelion application. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Kubernetes Go Server Authentication Bypass (CVE-2019-16276)
An Authentication Bypass vulnerability exists in Golang go server. Successful exploitation of this vulnerability could allow remote attackers to perform administrative actions without authentication...
OMRON CX-One CX-Protocol CMessage Type Confusion (CVE-2018-19027)
A type confusion vulnerability exists in OMRON CX-One CX-Protocol. This vulnerability occurs due to improper parsing of the project file...
Schneider Electric IIoT Monitor downloadCSV Directory Traversal (CVE-2018-7835)
A directory traversal vulnerability exists in Schneider Electric IIoT. The vulnerability is due to insufficient validation of a user supplied path prior to using it in file operations...
Adobe Acrobat and Reader Use After Free (APSB19-49: CVE-2019-8176)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB19-49: CVE-2019-8208)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB19-49: CVE-2019-8203)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Type Confusion (APSB19-49: CVE-2019-8161)
A type confusion vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB19-49: CVE-2019-8187)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Untrusted Pointer Dereference (APSB19-49: CVE-2019-8196)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Adobe Acrobat and Reader Out-of-Bounds Write (APSB19-49: CVE-2019-8191)
An out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Security Bypass (APSB19-49: CVE-2019-8226)
A security bypass vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability would allow remote attackers to bypass security tests and protocols on the affected system...
Adobe Acrobat and Reader Type Confusion (APSB19-49: CVE-2019-8200)
A type confusion vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-Bounds Write (APSB19-49: CVE-2019-8206)
An out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Use After Free (APSB19-49: CVE-2019-8209)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Type Confusion (APSB19-49: CVE-2019-8167)
A type confusion vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-49: CVE-2019-8198)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-49: CVE-2019-8184)
An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Use After Free (APSB19-49: CVE-2019-8224)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB19-49: CVE-2019-8220)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Out-of-Bounds Write (APSB19-49: CVE-2019-8171)
An out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Adobe Acrobat and Reader Untrusted Pointer Dereference (APSB19-49: CVE-2019-8205)
A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Adobe Acrobat and Reader Use After Free (APSB19-49: CVE-2019-8180)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Use After Free (APSB19-49: CVE-2019-8181)
A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...