Lucene search
K
SymantecMost viewed

6867 matches found

Symantec
Symantec
•added 2019/12/26 12:0 a.m.•31 views

GitLab CVE-2018-20492 Access Bypass Vulnerability

Description GitLab is prone to an access-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. GitLab versions prior to 11.4.13, 11.5.x prior to 11.5.6, and 11.6.x prior to 11.6...

1.1AI score0.0088EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/12/20 12:0 a.m.•31 views

GitLab CVE-2019-15584 Denial of Service Vulnerability

Description GitLab is prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause denial-of-service conditions. GitLab versions prior to 12.3.2, 12.2.6, and 12.1.10 are vulnerable. Technologies Affected Gitlab GitLab Community Edition 10.2 Gitlab GitLab Community Edition...

1.2AI score0.01198EPSS
Exploits1References1Affected Software2
Symantec
Symantec
•added 2019/12/17 12:0 a.m.•31 views

Multiple Jenkins Plugins Multiple Security Vulnerabilities

Description Jenkins plugins are prone to the following vulnerabilities: 1. Multiple information-disclosure vulnerabilities. 2. Multiple cross-site request forgery vulnerabilities. 3. Multiple HTML-injection vulnerabilities. 4. An XML External Entity injection vulnerability An attacker may...

0.2AI score
Exploits0References1Affected Software17
Symantec
Symantec
•added 2019/12/17 12:0 a.m.•31 views

TYPO3 CVE-2019-19849 Multiple Remote Code Execution Vulnerabilities

Description TYPO3 is prone to multiple remote code-execution vulnerabilities. Successfully exploiting these issues allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions. Versions prior to TYPO3 8.7.30,...

2.4AI score0.01267EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/12/16 12:0 a.m.•31 views

Atlassian Crowd CVE-2017-18107 Cross Site Request Forgery Vulnerability

Description Atlassian Crowd is prone to a cross-site request-forgery vulnerability because it fails to properly validate HTTP requests. Exploiting this issue allows a remote attacker to perform certain unauthorized actions and gain access to the affected application. Other attacks are also...

0.1AI score0.00449EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/12/16 12:0 a.m.•31 views

Atlassian Application Links CVE-2019-15011 Information Disclosure Vulnerability

Description Atlassian Application Links is prone to an information-disclosure vulnerability. An attacker can exploit this issue to obtain sensitive information. That may aid in further attacks. The following versions of Atlassian Application Links are affected: Versions prior to 5.0.12 Versions...

1.9AI score0.00915EPSS
Exploits0References2Affected Software2
Symantec
Symantec
•added 2019/12/11 12:0 a.m.•31 views

Xen CVE-2019-19583 Denial of Service Vulnerability

Description Xen is prone to a denial-of-service vulnerability. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. Xen Xen version through 4.12.0 are vulnerable. Technologies Affected Citrix Hypervisor 8.0 Citrix XenServer 7.0 Citrix XenServer...

0.4AI score0.02155EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/12/10 12:0 a.m.•31 views

Multiple Intel Processors CVE-2019-11157 Multiple Security Vulnerabilities

Description Multiple Intel Processors are prone to multiple security vulnerabilities. A local attacker can leverage these issues to obtain sensitive information and gain elevated privileges. This may aid in further attacks. Technologies Affected Intel 6th generation Core processors Intel 7th...

2.7AI score0.00676EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/12/10 12:0 a.m.•31 views

Lenovo Power Management Driver CVE-2019-6192 Local Buffer Overflow Vulnerability

Description Lenovo Power Management Driver is prone to a local buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer. Attackers can exploit this issue to cause denial of service conditions. Due to the natur...

1.9AI score0.01742EPSS
Exploits5References2Affected Software1
Symantec
Symantec
•added 2019/12/10 12:0 a.m.•31 views

Microsoft Defender CVE-2019-1488 Security Bypass Vulnerability

Description Microsoft Defender is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit...

0.9AI score0.00803EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/12/10 12:0 a.m.•31 views

Microsoft Git for Visual Studio CVE-2019-1350 Remote Code Execution Vulnerability

Description Microsoft Git for Visual Studio is prone to a remote code-execution vulnerability. Successful exploits allow attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected...

0.25666EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/12/04 12:0 a.m.•31 views

VMware Harbor Container Registry for PCF Multiple Security Vulnerabilities

Description VMware Harbor Container Registry for PCF is prone to the following security vulnerabilities. 1. Multiple SQL-injection vulnerabilities 2. A cross-site request forgery vulnerability 3. A privilege-escalation vulnerability 4. A user-enumeration vulnerability Exploiting this issue...

0.3AI score
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/11/27 12:0 a.m.•31 views

F5 BIG-IP Traffic Management Microkernel CVE-2019-6667 Denial of Service Vulnerability

Description F5 BIG-IP is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the resource exhaustion resulting in a denial-of-service condition. Technologies Affected F5 BIG-IP AAM 11.5.1 F5 BIG-IP AAM 11.6.0 F5 BIG-IP AAM 11.6.5 F5 BIG-IP AAM 12.1.0 F5...

0.8AI score0.01014EPSS
Exploits0References1Affected Software14
Symantec
Symantec
•added 2019/11/18 12:0 a.m.•31 views

Moodle CVE-2019-14884 Cross Site Scripting Vulnerability

Description Moodle is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attack...

7AI score0.00909EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/11/18 12:0 a.m.•31 views

Linux Kernel CVE-2019-19079 Memory Leak Denial of Service Vulnerability

Description Linux Kernel is prone to a denial-of-service vulnerability. Successful exploitation of this issue will cause excessive memory consumption, resulting in a denial-of-service condition. Linux kernel versions prior to 5.3 are vulnerable. Technologies Affected Linux kernel 2.6.0 Linux kern...

7.8CVSS1.2AI score0.02948EPSS
Exploits0References3Affected Software1
Symantec
Symantec
•added 2019/11/14 12:0 a.m.•31 views

Siemens SIMATIC S7-1200 CVE-2019-13945 Local Unauthorized Access Vulnerability

...

3.2AI score0.00532EPSS
Exploits0
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•31 views

TIBCO EBX Add-on CVE-2019-17332 Cross Site Scripting Vulnerability

Description TIBCO EBX Add-on is prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let t...

0.2AI score0.00717EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•31 views

McAfee Data Loss Prevention CVE-2019-3640 Information Disclosure Vulnerability

Description McAfee Data Loss Prevention is prone to an information-disclosure vulnerability. Attackers can exploit this issue to gain access to sensitive information by sniffing the traffic through a man-in-the-middle attack. Successful exploits will lead to other attacks. McAfee Data Loss...

0.8AI score0.00528EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•31 views

Microsoft Windows Data Sharing Service CVE-2019-1383 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windo...

2.6AI score0.00713EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•31 views

Microsoft Windows CVE-2019-1384 Security Bypass Vulnerability

Description Microsoft Windows is prone to a security bypass vulnerability. Successfully exploiting this issue may allow attackers to bypass certain security restrictions and perform unauthorized actions. This may lead to other attacks. Technologies Affected Microsoft Windows 10 Version 1607 for...

0.7AI score0.06112EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•31 views

Microsoft Windows Remote Procedure Call CVE-2019-1409 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to disclose sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Versi...

1.2AI score0.01307EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•31 views

Microsoft Windows Installer CVE-2019-1415 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

2.4AI score0.00786EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/11/11 12:0 a.m.•31 views

Envoy CVE-2019-18836 Remote Denial of Service Vulnerability

Description Envoy is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause denial of service conditions. Technologies Affected Envoy Envoy 1.12.0 Istio Istio 1.3.0 Istio Istio 1.3.1 Istio Istio 1.3.2 Istio Istio 1.3.3 Recommendations Block external access ...

5CVSS1.8AI score0.01938EPSS
Exploits1References3Affected Software2
Symantec
Symantec
•added 2019/11/06 12:0 a.m.•31 views

Cisco Web Security Appliance CVE-2019-15956 Unauthorized Access Vulnerability

Description Cisco Web Security Appliance is prone to an unauthorized-access vulnerability. Attackers can exploit this issue to gain unauthorized access and perform unauthorized actions. This may aid in further attacks. This issue is being tracked by Cisco Bug ID CSCvp51493. Technologies Affected...

1.8AI score0.00981EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/06 12:0 a.m.•31 views

Multiple Cisco Products CVE-2019-15289 Denial of Service Vulnerability

Description Multiple Cisco Products are prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. This issue is being tracked by Cisco Bug IDs CSCvq12177, CSCvq29889 and CSCvq65302. Technologies Affected Cisco RoomOS Software Cisco...

1.1AI score0.01374EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/11/05 12:0 a.m.•31 views

Linux Kernel Multiple Security Vulnerabilities

Description Linux Kernel is prone to the following security vulnerabilities: 1. A security-bypass vulnerability 2. A local privilege-escalation vulnerability An attacker can exploit these issues to bypass certain security restrictions and perform unauthorized actions or gain elevated privileges...

1.2AI score0.00533EPSS
Exploits1References4Affected Software1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•31 views

Red Hat '389-ds-base' CVE-2019-14824 Security Bypass Vulnerability

Description Red Hat '389-ds-base' is prone to a security-bypass vulnerability. Attackers can exploit this issue to bypass certain security restrictions, obtain sensitive information and perform unauthorized actions. This may aid in further attacks. Technologies Affected Redhat 389-ds-base Redhat...

6.6AI score0.013EPSS
Exploits0References3Affected Software5
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•31 views

Multiple F5 BIG-IP Products CVE-2019-6657 Cross Site Scripting Vulnerability

Description Multiple F5 BIG-IP Products are prone to a cross-site scripting vulnerability because they fail to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site...

0.3AI score0.00641EPSS
Exploits0References1Affected Software13
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•31 views

Apple macOS/watchOS/iCloud for Windows CVE-2019-8750 Memory Corruption Vulnerability

Description Apple macOS, watchOS and iCloud for Windows are prone to a memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code and perform unauthorized actions. Failed exploit attempts may result in a denial-of-service condition. Technologies Affected Apple Wat...

0.8AI score0.01635EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•31 views

Apple tvOS/iOS/iPadOS CVE-2019-8795 Memory Corruption Vulnerability

Description Apple iOS, iPad and tvOS are prone to a memory-corruption vulnerability. A remote attacker can leverage this issue to execute arbitrary code with system privileges. Failed exploit attempts may result in a denial-of-service condition. Technologies Affected Apple Ipad Mini- Apple TV App...

8.1AI score0.01328EPSS
Exploits0References2Affected Software3
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•31 views

Multiple IBM Products CVE-2019-4459 Cross Site Scripting Vulnerability

Description Multiple IBM Products are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may...

0.5AI score0.00561EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/15 12:0 a.m.•31 views

Oracle Solaris Cpuoct2019 Multiple Local Security Vulnerabilities

Description Oracle Solaris is prone to multiple local security vulnerabilities. These vulnerabilities affect the following supported versions: 11 Technologies Affected Oracle Solaris 11 Recommendations Permit local access for trusted individuals only. Where possible, use restricted environments a...

2.1AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•31 views

Microsoft Windows CVE-2019-1343 Denial of Service Vulnerability

Description Microsoft Windows is prone to a denial of service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft...

1.3AI score0.10221EPSS
Exploits1Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•31 views

Siemens SIMATIC WinAC RTX (F) 2010 CVE-2019-13921 Denial of Service Vulnerability

Description Siemens SIMATIC WinAC RTX F 2010 is prone to denial of service vulnerability Remote attackers may exploit this issue to cause denial-of-service conditions. Technologies Affected Siemens SIMATIC WinAC RTX F 2010 Recommendations Run all software as a nonprivileged user with minimal acce...

0.6AI score0.01367EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•31 views

Microsoft Edge Chakra Scripting Engine CVE-2019-1366 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.09509EPSS
Exploits0
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•31 views

Microsoft Windows Update Assistant CVE-2019-1378 Local Privilege Escalation Vulnerability

Description Microsoft Windows Update Assistant is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on the system. Technologies Affected Microsoft Windows Update Assistant Recommendations Permit local access for trusted individuals...

3.3AI score0.01223EPSS
Exploits0
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•31 views

Microsoft SQL Server Management Studio CVE-2019-1376 Information Disclosure Vulnerability

Description Microsoft SQL Server Management Studio is prone to an information-disclosure vulnerability. An attacker can leverage this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft SQL Server Management Studio 18.3.1 Recommendations Block...

6.4AI score0.05026EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•31 views

Multiple Cisco Products CVE-2019-12695 Cross Site Scripting Vulnerability

Description Multiple Cisco Products are prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected device. This...

6.7AI score0.01057EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•31 views

Cisco Unified CM CVE-2019-12711 XML Entity Expansion Multiple Security Vulnerabilities

Description Cisco Unified Communications Manager is prone to multiple security vulnerabilities. An attacker can exploit these issues to gain access to sensitive information or cause denial-of-service conditions. These issues are being tracked by Cisco Bug ID CSCvp46079. Technologies Affected Cisc...

6.4CVSS1.4AI score0.01075EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/09/27 12:0 a.m.•31 views

WhatsApp CVE-2019-11927 Integer Overflow Vulnerability

Description WhatsApp is prone to an integer overflow vulnerability. Attackers can exploit this issue to cause denial-of-service conditions. Due to the nature of this issue, arbitrary code-execution may be possible; however this has not been confirmed. Technologies Affected WhatsApp Inc. WhatsApp...

6.8CVSS0.5AI score0.00932EPSS
Exploits0References1
Symantec
Symantec
•added 2019/09/24 12:0 a.m.•31 views

Apple iOS and iPadOS CVE-2019-8775 Local Security Bypass Vulnerability

Description Apple iOS and iPadOS are prone to a local security bypass vulnerability. Attackers can exploit this issue to bypass security restrictions and perform unauthorized actions. This issue is fixed in Apple iPadOS 13.1 and iOS 13.1. Technologies Affected Apple Watch Apple Watch OS 1.0 Apple...

1AI score0.00305EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/09/10 12:0 a.m.•31 views

Multiple SAP Products CVE-2019-0365 Unspecified Denial of Service Vulnerability

Description Multiple SAP Products are prone to an unspecified denial-of-service vulnerability. Successful exploits may allow an attacker to cause denial-of-service conditions. SAP Kernel KRNL32NUC, KRNL32UC and KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49,...

7.8CVSS0.9AI score0.01405EPSS
Exploits0References1Affected Software5
Symantec
Symantec
•added 2019/09/10 12:0 a.m.•31 views

Microsoft Exchange CVE-2019-1233 Remote Denial of Service Vulnerability

Description Microsoft Exchange is prone to a remote denial of service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Exchange Server 2016 Cumulative Update 12 Microsoft Exchange Server 2016 Cumulative Update 13 Microsoft...

0.6AI score0.06176EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/09/10 12:0 a.m.•31 views

Microsoft Windows Hyper-V CVE-2019-1254 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windows 10...

1.6AI score0.01326EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/09/10 12:0 a.m.•31 views

Microsoft Windows JET Database Engine CVE-2019-1249 Remote Code Execution Vulnerability

Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

0.7AI score0.11924EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/09/10 12:0 a.m.•31 views

Microsoft Windows GDI CVE-2019-1252 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...

0.9AI score0.61314EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/09/10 12:0 a.m.•31 views

Microsoft .NET Core CVE-2019-1301 Denial of Service Vulnerability

Description Microsoft .NET Core is prone to a remote denial of service vulnerability. An attacker can exploit this issue to cause a denial of service condition. Technologies Affected Microsoft .NET Core 2.1 Microsoft .NET Core 2.2 Recommendations Block external access at the network boundary,...

1.1AI score0.0533EPSS
Exploits0
Symantec
Symantec
•added 2019/09/10 12:0 a.m.•31 views

Google Chrome CVE-2019-13692 Security Bypass Vulnerability

Description Google Chrome is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass security restrictions and perform unauthorized actions; this may aid in launching further attacks. Versions prior to Chrome 77.0.3865.75 are vulnerable. Technologies Affected Google...

1.4AI score0.00724EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/08/28 12:0 a.m.•31 views

Dell EMC Enterprise Copy Data Management Certificate Validation Security Bypass Vulnerability

Description Dell EMC Enterprise Copy Data Management is prone to a security-bypass vulnerability because the application fails to properly validate certificates. Successfully exploiting this issue allows attackers to perform man-in-the-middle attacks or impersonate trusted servers, which will aid...

0.6AI score
Exploits0References1
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•31 views

Microsoft Windows Graphics Component CVE-2019-1152 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Windows 10...

9.3CVSS0.7AI score0.13055EPSS
Exploits0Affected Software3
Total number of security vulnerabilities5000