Lucene search
K
SymantecRecent

6867 matches found

Symantec
Symantec
•added 2019/10/08 12:0 a.m.•49 views

Microsoft Windows CVE-2019-1339 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges on the affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-bas...

1.6AI score0.0123EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•43 views

Microsoft Windows CVE-2019-1320 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attackers can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1709 for ARM64-based Systems Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft...

2.6AI score0.01014EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•29 views

Microsoft Internet Explorer CVE-2019-1371 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Internet...

0.2AI score0.06911EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•34 views

Microsoft Windows Remote Desktop Protocol CVE-2019-1326 Denial of Service Vulnerability

Description Microsoft Windows Remote Desktop Protocol is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause the target service to stop responding, denying service to legitimate users. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems...

1.1AI score0.06035EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•43 views

Microsoft Internet Explorer VBScript Engine CVE-2019-1239 Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Internet...

1AI score0.07053EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•29 views

Microsoft Internet Explorer VBScript Engine CVE-2019-1238 Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Internet...

0.7AI score0.05478EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•70 views

Microsoft Windows Win32k CVE-2019-1362 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Syste...

2.3AI score0.01444EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•102 views

Microsoft Windows CVE-2019-1322 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft Windows 10 Version 1803 for ARM64-based Systems Microsoft...

2.5AI score0.19205EPSS
Exploits25Affected Software2
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•35 views

vBulletin CVE-2019-17132 Remote Code Execution Vulnerability

Description vBulletin is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. vBulletin versions 5.5.4 and prior are...

6.8CVSS0.3AI score0.1178EPSS
Exploits4References3Affected Software1
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•32 views

Redhat OpenShift Container Platform CVE-2019-14854 Information Disclosure Vulnerability

Description Redhat OpenShift Container Platform is prone to an information-disclosure vulnerability. Successful exploits may allow the attacker to obtain sensitive information. This may lead to other attacks. OpenShift Container Platform 4.1 and 4.2 are vulnerable. Technologies Affected Redhat...

0.7AI score0.00799EPSS
Exploits1References5Affected Software1
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•129 views

WebKit CVE-2019-8720 Memory Corruption Vulnerability

Description WebKit is prone to a memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code within the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions. Versions prior to Apple iTun...

0.3AI score0.01543EPSS
Exploits0References2Affected Software2
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•16 views

Google Android Media Framework Multiple Security Vulnerabilities

Description Google Android is prone to the following security vulnerabilities: 1. Multiple remote-code execution vulnerabilities 2. An information-disclosure vulnerability An attacker can exploit these issues to gain sensitive information, or execute arbitrary code. Failed exploits may result in...

0.7AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•16 views

Google Android System Component Multiple Security Vulnerabilities

Description Google Android is prone to multiple security vulnerabilities. An attacker can leverage these issues to gain access to sensitive information or elevated privileges. These issues are being tracked by Android IDs A-123700348, A-124940143 Technologies Affected Google Android 10.0 Google...

0.6AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•89 views

WebKit Multiple Cross Site Scripting and Memory Corruption Vulnerabilities

Description WebKit is prone to multiple cross-site scripting and memory-corruption vulnerabilities. Attackers can exploit these issues to execute arbitrary code on the affected system. Failed exploit attempts may result in a denial-of-service condition. Technologies Affected Apple iCloud 6.0 Appl...

0.1AI score
Exploits0References2Affected Software3
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•65 views

Bouncy Castle Java Cryptography APIs CVE-2019-17359 Denial of Service Vulnerability

Description Bouncy Castle Java Cryptography APIs are prone to a denial-of-service vulnerability. Successful exploitation of this issue will cause excessive resource consumption, resulting in a denial-of-service condition. Bouncy Castle Java Cryptography API 1.63 is vulnerable. Technologies Affect...

5CVSS0.5AI score0.08878EPSS
Exploits0References4Affected Software7
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•21 views

Qualcomm Closed Source Components Multiple Unspecified Vulnerabilities

Description Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. An attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. These issues are being tracked by Android Bug IDs A-122474427, A-129766175, A-129765090,...

0.5AI score
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•29 views

vBulletin CVE-2019-17271 Multiple SQL Injection Vulnerabilities

Description vbulletin is prone to multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in an SQL query. An attacker can leverage these issues to compromise the application, access or modify data, or exploit latent vulnerabilities in the...

4CVSS1.3AI score0.01447EPSS
Exploits2References2Affected Software1
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•29 views

IBM Maximo Anywhere CVE-2019-4265 Information Disclosure Vulnerability

Description IBM Maximo Anywhere is prone to an information-disclosure vulnerability. Attackers can exploit this issue to view sensitive information. Information obtained may lead to further attacks. IBM Maximo Anywhere versions 7.6.0, 7.6.1, 7.6.2, and 7.6.3 are vulnerable. Technologies Affected...

2.1CVSS2.5AI score0.00366EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•43 views

Google Android Framework Component CVE-2019-2173 Local Privilege Escalation Vulnerability

Description Google Android is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. This issue is being tracked by Android Bug ID A-123013720. Technologies Affected Google Android 7.1.1 Google Android 7.1.2 Google Android 8.0 Google...

1.6AI score0.00161EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•56 views

Linux Kernel CVE-2019-17351 Local Denial of Service Vulnerability

Description Linux Kernel is prone to a local denial-of-service vulnerability. A local attacker can exploit this issue cause a denial-of-service condition or possibly have other unspecified impact. Linux kernel prior to 5.2.3 are vulnerable. Technologies Affected Linux kernel 2.4.17 Linux kernel...

1.1AI score0.00408EPSS
Exploits0References3Affected Software2
Symantec
Symantec
•added 2019/10/04 12:0 a.m.•37 views

Bootstrap 3 Typeahead CVE-2019-10215 Cross Site Scripting Vulnerabilitiy

Description Bootstrap 3 Typeahead is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

6.9AI score0.01532EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/04 12:0 a.m.•93 views

Linux Kernel CVE-2019-17133 Buffer Overflow Vulnerability

Description Linux Kernel is prone to a buffer-overflow vulnerability. Attackers can exploit this issue to execute arbitrary code on the affected application. Failed attempts will likely cause a denial-of-service condition. Linux kernel versions through 5.3.2 are vulnerable. Technologies Affected...

7.5CVSS1.2AI score0.06652EPSS
Exploits0References4Affected Software4
Symantec
Symantec
•added 2019/10/04 12:0 a.m.•32 views

Apache Hadoop CVE-2018-11768 Memory Corruption Vulnerability

Description Apache Hadoop is prone to a memory-corruption vulnerability. A remote attacker may exploit this issue to crash the server resulting in a denial-of-service condition. Technologies Affected Apache Hadoop 2.0.0 Alpha Apache Hadoop 2.0.0-alpha Apache Hadoop 2.0.1 Alpha Apache Hadoop 2.0.2...

0.3AI score0.06554EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/10/04 12:0 a.m.•25 views

PHP 'mb_eregi' Heap Buffer Overflow Vulnerability

Description PHP is prone to a heap-based buffer-overflow vulnerability. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions. PHP version 7.3 is vulnerable. Technologie...

0.7AI score
Exploits0References4Affected Software1
Symantec
Symantec
•added 2019/10/04 12:0 a.m.•35 views

HP Touchpoint Analytics CVE-2019-6333 Unspecfied Local Code Execution Vulnerability

Description HP Touchpoint Analytics is prone to an unspecfied local code-execution vulnerability. A local attacker can leverage this issue to execute arbitrary code in the context of affected application. Failed attempts may lead to denial-of-service conditions. Versions prior to Touchpoint...

1.8AI score0.00532EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/04 12:0 a.m.•27 views

HP Access Control CVE-2019-6330 Unspecified Privilege Escalation Vulnerability

Description HP Access Control is prone to an unspecified privilege-escalation vulnerability. Attackers can leverage this issue to gain elevated privileges. Successful exploits may compromise affected computers. Note: Technical details are currently unavailable. We will update this BID as soon as...

1.2AI score0.02384EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/04 12:0 a.m.•181 views

Android-gif-drawable CVE-2019-11932 Double Free Remote Code Execution Vulnerability

Description Android-gif-drawable is prone to a remote code execution vulnerability. Attackers may leverage this issue to execute arbitrary code in the context of the device. Failed attacks will cause denial-of-service conditions. Technologies Affected Google Android 8.1 Google Android 9.0 Karol...

1.4AI score0.4453EPSS
Exploits16References4Affected Software2
Symantec
Symantec
•added 2019/10/03 12:0 a.m.•29 views

Multiple Dell EMC Products CVE-2019-3765 Remote Security Bypass Vulnerability

Description Multiple Dell EMC products are prone to a remote security-bypass vulnerability. An attacker can exploit this issue to obtain sensitive information, bypass security restrictions and perform unauthorized actions. This may aid in further attacks. The following products are vulnerable: De...

5.5CVSS1.2AI score0.01135EPSS
Exploits0References2Affected Software2
Symantec
Symantec
•added 2019/10/03 12:0 a.m.•303 views

EMC RSA BSAFE Crypto-C Micro and Micro Edition Suite Multiple Security Vulnerabilities

Description EMC RSA BSAFE Crypto-C Micro and Micro Edition Suite are prone to the following security vulnerabilities: 1. Multiple information disclosure vulnerabilities 2. A denial-of-service vulnerability 3. A heap buffer overflow vulnerability An attacker can exploit these issues to gain...

0.2AI score
Exploits0References1
Symantec
Symantec
•added 2019/10/03 12:0 a.m.•271 views

Multiple Cisco Products CVE-2019-12700 Denial of Service Vulnerability

Description Multiple Cisco Products are prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause the resource exhaustion and reload the affected device, denying service to legitimate users. This issue is being tracked by Cisco bug IDs CSCvm92401, CSCvn83385...

1.3AI score0.01879EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•63 views

Eclipse Mojarra CVE-2019-17091 Cross Site Scripting Vulnerability

Description Eclipse Mojarra is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may all...

0.2AI score0.02469EPSS
Exploits1References3Affected Software3
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•25 views

Cisco Firepower Management Center Software CVE-2019-12701 Security Bypass Vulnerability

Description Cisco Firepower Management Center Software is prone to a remote security-bypass vulnerability. An attacker can exploit this issue to bypass security restrictions and perform unauthorized actions. This may aid in further attacks. This issue is being tracked by Cisco Bug ID CSCvp92361...

0.7AI score0.01493EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•31 views

Multiple Cisco Products CVE-2019-12695 Cross Site Scripting Vulnerability

Description Multiple Cisco Products are prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected device. This...

6.7AI score0.01057EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•33 views

Multiple Cisco Products CVE-2019-12678 Denial of Service Vulnerability

Description Multiple Cisco Products are prone to a denial-of-service vulnerability. Attackers can exploit this issue to crash the affected device, denying service to legitimate users This issue is being tracked by Cisco Bug ID CSCvp45882. Technologies Affected Cisco Adaptive Security Appliance AS...

1.6AI score0.01824EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•50 views

Multiple Cisco Unified Communications Products Cross Site Request Forgery Vulnerability

Description Multiple Cisco Unified Communications Products are prone to a cross-site request-forgery vulnerability because the application does not properly validate HTTP requests. Exploiting this issue may allow a remote attacker to perform certain unauthorized actions in the context of the...

1AI score
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•29 views

Multiple Cisco Products CVE-2019-12676 Denial of Service Vulnerability

Description Multiple Cisco Products are prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a reload to the affected device; denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCvp49790. Technologies Affected Cisco Adaptive Securi...

1.4AI score0.00507EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•33 views

Facebook HHVM CVE-2019-11929 Memory Corruption Vulnerability

Description Facebook HHVM is prone to a memory corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the system. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Facebook HHVM 3.14.2 Facebook HHVM...

0.7AI score0.04028EPSS
Exploits0References3Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•30 views

Cisco Identity Services Engine CVE-2019-12631 Cross Site Scripting Vulnerability

Description Cisco Identity Services Engine is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site...

0.01057EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•19 views

Cisco IC3000 Industrial Compute Gateway CVE-2019-12714 Denial of Service Vulnerability

Description Cisco IC3000 Industrial Compute Gateway is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition, denying service to legitimate users. This issue is being tracked by Cisco Bug IDs CSCvq92705. Technologies Affected Cisco...

2.6AI score0.01513EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•35 views

Multiple Cisco Products CVE-2019-12698 Denial of Service Vulnerability

Description Multiple Cisco Products are prone to a denial-of-service vulnerability. Successful exploitation of the issue will cause excessive CPU resource consumption, resulting in a denial-of-service condition. This issue is being tracked by Cisco Bug ID CSCvp76944. Technologies Affected Cisco...

1.4AI score0.01967EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•51 views

Cisco Firepower Management Center Multiple Remote Code Execution Vulnerabilities

Description Cisco Firepower Management Center is prone to multiple remote code-execution vulnerabilities. An attacker can exploit these issues to execute arbitrary code on the affected system. This may aid in further attacks. These issues are being tracked by Cisco Bug IDs CSCvf87540 and...

1.6AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•31 views

Multiple Cisco Products CVE-2019-15256 Denial of Service Vulnerability

Description Multiple Cisco Products are prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a reload to the affected device; denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCvo11077. Technologies Affected Cisco Adaptive Securi...

1.6AI score0.01967EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•25 views

Cisco Firepower Management Center CVE-2019-12691 Directory Traversal Vulnerability_

Description Cisco Firepower Management Center is prone to a directory-traversal vulnerability. An attacker can exploit this issue using directory-traversal characters '../' to access and write arbitrary files or to execute arbitrary files or gain sensitive information. This issue is being tracked...

1.8AI score0.03917EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•25 views

Cisco Adaptive Security Appliance Software CVE-2019-12677 Denial of Service Vulnerability

Description Cisco Adaptive Security Appliance is prone to a remote denial-of-service vulnerability. Successful exploits may allow an attacker to cause a denial-of-service conditions. This issue is being tracked by Cisco Bug ID CSCux45179. Technologies Affected Cisco Adaptive Security Appliance AS...

1.7AI score0.01526EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•34 views

Cisco Firepower Management Center CVE-2019-12690 Command Injection Vulnerability

Description Cisco Firepower Management Center is prone to a command-injection vulnerability. An attacker may exploit this issue to execute arbitrary commands on the underlying OS with root privileges. This issue is being tracked by Cisco Bug ID CSCvh03962. Technologies Affected Cisco FirePOWER...

1.2AI score0.03507EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•55 views

Cisco Firepower Management Center Multiple SQL Injection Vulnerabilities

Description Cisco Firepower Management Center is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or modify data or...

0.9AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•37 views

Multiple Cisco Products CVE-2019-12673 Denial of Service Vulnerability

Description Multiple Cisco Products are prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. This issue is being tracked by Cisco bug ID CSCvo83169. Technologies Affected Cisco Adaptive Security Appliance ASA Software 9.10 Cisco...

1.6AI score0.01772EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•43 views

Cisco Unified Communications Manager CVE-2019-15272 Security Bypass Vulnerability

Description Cisco Unified Communications Manager is prone to a security-bypass vulnerability. Successful exploits may allow an attacker to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks. This issue is tracked by Cisco Bug ID CSCvp14434...

1.5AI score0.01319EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•30 views

Cisco Unified CM CVE-2019-12711 XML Entity Expansion Multiple Security Vulnerabilities

Description Cisco Unified Communications Manager is prone to multiple security vulnerabilities. An attacker can exploit these issues to gain access to sensitive information or cause denial-of-service conditions. These issues are being tracked by Cisco Bug ID CSCvp46079. Technologies Affected Cisc...

6.4CVSS1.4AI score0.01075EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•34 views

Cisco Unified Communications Manager CVE-2019-12710 SQL Injection Vulnerability

Description Cisco Unified Communications Manager is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit...

1.7AI score0.01495EPSS
Exploits0References1Affected Software1
Total number of security vulnerabilities6867