6867 matches found
Google Chrome Prior to 78.0.3904.87 Multiple Security Vulnerabilities
Description Google Chrome is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code in the context of the browser or cause denial-of-service conditions. Versions prior to Chrome 78.0.3904.87 are vulnerable. Technologies Affected Google Chrome...
Multiple IBM Products CVE-2019-4394 Local Security Vulnerability
Description Multiple IBM Products are prone to a local security vulnerability. Successfully exploiting this issue will allow attackers to perform unauthorized actions; this may aid in launching further attacks. Technologies Affected IBM Cloud Orchestrator 2.4 IBM Cloud Orchestrator 2.4.0.1 IBM...
Cisco SPA100 Series Analog Telephone Adapters CVE-2019-12708 Information Disclosure Vulnerability
Description Cisco SPA100 Series Analog Telephone Adapters are prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information that may aid in further attacks. This issue is being tracked by Cisco Bug ID CSCvq50520. Technologies Affected...
Oracle MySQL Connectors CVE-2019-2920 Remote Security Vulnerability
Description Oracle MySQL Connectors is prone to a remote security vulnerability. The vulnerability can be exploited over the 'MySQL Protocol' Protocol. The 'Connector/ODBC' component is affected. This vulnerability affects the following supported versions: 5.3.13 and prior, 8.0.17 and prior...
Golang Go CVE-2019-17596 Remote Denial of Service Vulnerability
Description Golang Go is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Versions prior to Go 1.13.2 and Go 1.12.11 are vulnerable. Technologies Affected golang Go 1.12.1 golang Go 1.12.10 golang Go 1.12.5 golang Go...
Palo Alto Networks GlobalProtect Agent CVE-2019-17435 Local Privilege Escalation Vulnerability
Description Palo Alto Networks GlobalProtect Agent is prone to a local privilege-escalation vulnerability. Local attackers may exploit this issue to gain elevated privileges on the affected system. Versions prior to Palo Alto Networks GlobalProtect agent 4.1.13 and 5.0.4 for Windows platform are...
Juniper Junos CVE-2019-0060 Denial of Service Vulnerability
Description Juniper Junos is prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause a process crash, denying service to legitimate users. The following versions of Juniper Junos are affected: Juniper Junos 15.1X49 versions prior to 15.1X49-D171, 15.1X49-D180 are...
Juniper Junos CVE-2019-0068 Denial of Service Vulnerability
Description Juniper Junos is prone to a denial-of-service vulnerability. An attacker may exploit this issue to cause denial-of-service conditions. Technologies Affected Juniper Junos 12.3X48 Juniper Junos 12.3X48-D10 Juniper Junos 12.3X48-D15 Juniper Junos 12.3X48-D20 Juniper Junos 12.3X48-D25...
Juniper Junos CVE-2019-0064 Denial of Service Vulnerability
Description Juniper Junos is prone to a denial-of-service vulnerability. An attacker may exploit this issue to cause denial-of-service conditions. The following versions of Juniper Junos are affected: Juniper Junos 18.2R3 for SRX 5000 Series platform. Juniper Junos 18.4R2 for SRX 5000 Series...
QEMU CVE-2019-12067 Null Pointer Dereference Denial of Service Vulnerability
Description QEMU is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected QEMU QEMU Recommendations Block external access at the network boundary, unless external parties require service. If global access isn't...
Juniper Junos CVE-2019-0057 Local Authorization Bypass Vulnerability
Description Juniper Junos is prone to a local authorization-bypass vulnerability. Attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Versions prior to Junos OS 18.2R1, and 18.2X75-D5 are vulnerable. Technologies Affected Juniper Junos 18.2...
Microsoft Windows Secure Boot CVE-2019-1368 Local Security Bypass Vulnerability
Description Microsoft Windows is prone to a local security-bypass vulnerability. A local attacker can leverage this issue to bypass certain security restrictions and perform unauthorized actions. Technologies Affected Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft Windows 10 Versi...
Microsoft SQL Server Management Studio CVE-2019-1313 Information Disclosure Vulnerability
Description Microsoft SQL Server Management Studio is prone to an information-disclosure vulnerability. An attacker can leverage this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft SQL Server Management Studio 18.3 Microsoft SQL Server...
Microsoft Edge CVE-2019-1356 Information Disclosure Vulnerability
Description Microsoft Edge is prone to an information disclosure vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Edge Recommendations Run all software as a nonprivileged user with minimal acce...
Multiple Cisco Unified Communications Products CVE-2019-12707 Cross Site Scripting Vulnerability
Description Multiple Cisco Unified Communications Products are prone to a cross-site scripting vulnerability because they fail to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affecte...
Cisco Unified Communications Manager CVE-2019-12710 SQL Injection Vulnerability
Description Cisco Unified Communications Manager is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit...
Multiple Cisco Products CVE-2019-12678 Denial of Service Vulnerability
Description Multiple Cisco Products are prone to a denial-of-service vulnerability. Attackers can exploit this issue to crash the affected device, denying service to legitimate users This issue is being tracked by Cisco Bug ID CSCvp45882. Technologies Affected Cisco Adaptive Security Appliance AS...
IBM WebSphere Application Server CVE-2019-4441 Information Disclosure Vulnerability
Description IBM WebSphere Application Server is prone to an information disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks. IBM WebSphere Application Server versions 7.0, 8.0, 8.5, 9.0, and Liberty are vulnerable...
Palo Alto Networks Zingbox Inspector CVE-2019-15019 Security Bypass Vulnerability
Description Palo Alto Networks Zingbox Inspector is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Versions prior to Zingbox Inspector 1.295 are vulnerable...
Kubernetes API Server CVE-2019-11253 Denial of Service Vulnerability
Description Kubernetes API Server is prone to a denial-of-service vulnerability. Successful exploitation of the issue will cause excessive CPU resource consumption, resulting in a denial-of-service condition. The following products are affected: Kubernetes 1.0.0 through 1.12.x Kubernetes 1.13.0...
Moodle CVE-2019-14829 Remote Security Vulnerability
Description Moodle is prone to a remote security vulnerability. An attacker can leverage this issue to perform unauthorized actions. This may aid in further attacks. Moodle 3.7 through 3.7.1, 3.6 through 3.6.5, 3.5 through 3.5.7 and earlier unsupported versions Technologies Affected Moodle Moodle...
Honeywell equIP Series IP Cameras CVE-2019-18228 Denial of Service Vulnerability
Description Honeywell equIP Series IP Cameras is prone to a denial-of-service vulnerability. Remote attackers can exploit this issue to cause denial-of-service conditions. Technologies Affected Honeywell H3W2GR1 Honeywell H3W2GR2 Honeywell H3W4GR1 Honeywell H4L2GR1 Honeywell H4W2GR1 Honeywell...
Microsoft Internet Explorer CVE-2019-1220 Security Bypass Vulnerability
Description Microsoft Windows is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. Technologies Affected Microsoft Edge Microsoft Internet Explorer 10...
Microsoft Edge Chakra Scripting Engine CVE-2019-1237 Remote Memory Corruption Vulnerability
Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...
Adobe Creative Cloud Desktop Application CVE-2019-8236 Unspecified Security Bypass Vulnerability
Description Adobe Creative Cloud Desktop Application is prone to an unspecified security-bypass vulnerability. Successfully exploiting this issue will allow attackers to bypass security restrictions and perform unauthorized actions; this may aid in launching further attacks. Technologies Affected...
Microsoft Office SharePoint CVE-2019-1203 Cross Site Scripting Vulnerability
Description Microsoft Office SharePoint is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This...
Microsoft Windows CVE-2019-0716 Denial of Service Vulnerability
Description Microsoft Windows is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition, denying service to legitimate users. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607...
Microsoft Windows Graphics Component CVE-2019-1143 Information Disclosure Vulnerability
Description Microsoft Windows is prone to a information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 160...
Microsoft Windows JET Database Engine CVE-2019-1146 Remote Code Execution Vulnerability
Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...
Microsoft Windows Audio Service CVE-2019-1088 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges on the system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based System...
Microsoft Windows 'DirectWrite' API CVE-2019-1121 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsof...
Microsoft Windows LUAFV Driver CVE-2019-0796 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges on the system. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Windows 10 Version 1607 for...
Microsoft Windows JET Database Engine CVE-2019-0851 Remote Code Execution Vulnerability
Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...
Microsoft Office Access Connectivity Engine CVE-2019-0827 Remote Code Execution Vulnerability
Description Microsoft Office Access Connectivity Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Office 2010 Service Pack 2 32-bit editions Microsoft Office...
Microsoft Windows JET Database Engine CVE-2019-0877 Remote Code Execution Vulnerability
Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...
Microsoft Windows VBScript Engine CVE-2019-0842 Remote Code Execution Vulnerability
Description Microsoft Windows VBScript Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft...
Microsoft Windows Win32k CVE-2019-0848 Local Information Disclosure Vulnerability
Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...
Microsoft Windows GDI Component CVE-2019-0774 Information Disclosure Vulnerability
Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...
Microsoft Office Access Connectivity Engine CVE-2019-0674 Remote Code Execution Vulnerability
Description Microsoft Office Access Connectivity Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Office 2010 Service Pack 2 32-bit editions Microsoft Office...
OpenSC CVE-2019-6502 Memory Leak Denial of Service Vulnerability
Description OpenSC is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. OpenSC version 0.19.0 is vulnerable; other versions may also be affected. Technologies Affected Opensc-Project Opensc 0.19.0 Recommendations Permit local...
Microsoft Windows JET Database Engine CVE-2019-0582 Remote Code Execution Vulnerability
Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...
Microsoft SharePoint Server CVE-2018-8580 Information Disclosure Vulnerability
Description Microsoft SharePoint Server is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft SharePoint Enterprise Server 2013 Service Pack 1 Microsoft SharePoint...
Microsoft Windows Kernel CVE-2018-8622 Local Information Disclosure Vulnerability
Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Syste...
Microsoft SharePoint Server CVE-2018-8635 Remote Privilege Escalation Vulnerability
Description Microsoft SharePoint Server is prone to a remote privilege-escalation vulnerability because it fails to properly sanitize user-supplied input. An attacker may exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Technologies Affected Microsof...
Microsoft ChakraCore Scripting Engine CVE-2018-8459 Remote Memory Corruption Vulnerability
Description Microsoft ChakraCore Scripting Engine is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsof...
Microsoft Windows GDI Component CVE-2018-8398 Information Disclosure Vulnerability
Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...
Microsoft Edge Scripting Engine CVE-2018-8275 Remote Memory Corruption Vulnerability
Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...
Microsoft Edge CVE-2018-0871 Information Disclosure Vulnerability
Description Microsoft Edge is prone to an information disclosure vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Edge Recommendations Run all software as a nonprivileged user with minimal acce...
Microsoft Windows Common Log File System CVE-2018-8167 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based...
Microsoft Excel CVE-2018-8162 Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...