Lucene search
K
SymantecRecent

6867 matches found

Symantec
Symantec
•added 2019/08/13 12:0 a.m.•27 views

Microsoft Windows Graphics Component CVE-2019-1153 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Office 2019 for Mac Microsoft Windows 10 Version 1607 for 32-bit Systems...

2.1CVSS1.1AI score0.02832EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•37 views

Microsoft Edge Chakra Scripting Engine CVE-2019-1141 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

7.6CVSS0.6AI score0.01883EPSS
Exploits0
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•40 views

Microsoft Windows VBScript Engine CVE-2019-1183 Remote Code Execution Vulnerability

Description Microsoft Windows VBScript Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft...

0.7AI score0.04848EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•49 views

Microsoft Windows CVE-2019-1185 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1903 for 32-bit Systems Microsoft Windows 10 Version 1903 for ARM64-based...

3.6AI score0.01096EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•85 views

Microsoft Windows Remote Desktop Protocol Server CVE-2019-1225 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft Windows 10 Version 18...

1.1AI score0.09503EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•43 views

Microsoft Windows 'HTTP.sys' CVE-2019-9518 Denial of Service Vulnerability

Description Microsoft Windows is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the affected system to become unresponsive, resulting in a denial-of-service condition. Technologies Affected Apple SwiftNIO HTTP/2 1.0.0 Apple SwiftNIO HTTP/2 1.1.0 App...

1.6AI score0.25448EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•31 views

Microsoft Windows CVE-2019-1177 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on the system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems...

4.6CVSS1.6AI score0.00712EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•40 views

Microsoft Outlook CVE-2019-1204 Remote Privilege Escalation Vulnerability

Description Microsoft Outlook is prone to a remote privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Office 2019 for 32-bit editions Microsoft Office 2019 for 64-bit editions Microsoft Office 365 ProPlus for 32-bit...

4.3CVSS0.2AI score0.04423EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•26 views

Microsoft Edge Chakra Scripting Engine CVE-2019-1196 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

7.6CVSS0.6AI score0.01934EPSS
Exploits0
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•30 views

Microsoft Windows Kernel CVE-2019-1164 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can leverage this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft...

2.1AI score0.00944EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•18 views

Microsoft Live Accounts ADV190014 Privilege Escalation Vulnerability

Description Microsoft Live Accounts are prone to a privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Exchange Online Microsoft Office 365 Microsoft Outlook Web Access Recommendations Block external access at the...

0.5AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•94 views

Microsoft Windows ALPC CVE-2019-1162 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can leverage this issue to execute arbitrary code in the security context of the local system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

2AI score0.00878EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•28 views

Microsoft Windows CVE-2019-1175 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges on the system. Technologies Affected Microsoft Windows 10 Version 1709 for ARM64-based Systems Microsoft Windows 10 Version 1803 for 32-bit...

4.6CVSS2.4AI score0.00712EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•33 views

Microsoft Windows Win32k CVE-2019-1169 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Syste...

2.3AI score0.01045EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•26 views

Microsoft Windows Kernel CVE-2019-1190 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1809 for 32-bit Systems Microsoft Windows 10 Version 1809 for ARM64-based...

7.2CVSS3.8AI score0.0103EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•39 views

Microsoft Windows JET Database Engine CVE-2019-1157 Remote Code Execution Vulnerability

Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

9.3CVSS0.7AI score0.04477EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•49 views

Microsoft Git for Visual Studio CVE-2019-1211 Local Privilege Escalation Vulnerability

Description Microsoft Git for Visual Studio is prone to a local privilege-escalation vulnerability. A local attacker can leverage this issue to gain elevated privileges. Technologies Affected Microsoft Visual Studio 2017 15.9 Microsoft Visual Studio 2017 Microsoft Visual Studio 2019 16.0 Microsof...

3.7CVSS1.8AI score0.01654EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•37 views

Zoho Applications Manager Plugin CVE-2019-15104 SQL Injection Vulnerability

Description Zoho Applications Manager Plugin is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. An attacker may leverage this issue to compromise the application, access or modify data, or exploit latent...

9CVSS1.2AI score0.07789EPSS
Exploits1References1Affected Software1
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•256 views

Microsoft Windows Remote Desktop Services CVE-2019-1226 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected system. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft Windows 10 Version 1803 for...

10CVSS2.8AI score0.07586EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•36 views

Microsoft Windows JET Database Engine CVE-2019-1147 Remote Code Execution Vulnerability

Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

9.3CVSS0.7AI score0.04321EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•41 views

Microsoft Windows Graphics Component CVE-2019-1144 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Windows 10...

9.3CVSS0.7AI score0.13055EPSS
Exploits1Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•33 views

Microsoft Windows Hyper-V CVE-2019-0720 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Hyper-V Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windows 10...

7.7CVSS1.4AI score0.03841EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•112 views

Microsoft Windows Bluetooth CVE-2019-9506 Remote Security Vulnerability

Description Microsoft Windows Bluetooth is prone to a remote security vulnerability. An attacker can leverage this issue to bypass security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Cisco 8821 Wireless IP Phones Cisco 8845 IP Phones Cisc...

0.2AI score0.02691EPSS
Exploits2Affected Software4
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•27 views

Microsoft Windows Graphics Component CVE-2019-1154 Information Disclosure Vulnerability

Description Microsoft Windows is prone to a information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Systems...

2.1CVSS6.2AI score0.01661EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•37 views

Microsoft Windows CVE-2019-1180 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on the system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems...

4.6CVSS1.9AI score0.00816EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•40 views

Microsoft Windows Graphics Component CVE-2019-1148 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Office 2019 for Mac Microsoft Windows 10 Version 1607 for 32-bit Systems...

2.1CVSS1.1AI score0.02832EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•46 views

Microsoft Outlook for iOS CVE-2019-1218 Spoofing Vulnerability

Description Microsoft Outlook for iOS is prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Technologies Affected Microsoft Outloo...

3.5CVSS0.3AI score0.03879EPSS
Exploits0
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•26 views

Microsoft Windows MS XML CVE-2019-1057 Remote Memory Corruption Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits can allow attackers to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected Microsoft...

9.3CVSS0.8AI score0.03071EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•32 views

Microsoft Outlook CVE-2019-1199 Remote Code Execution Vulnerability

Description Microsoft Outlook is prone to a remote code-execution vulnerability. Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Office 2019...

9.3CVSS0.1AI score0.04646EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•28 views

Microsoft Edge Scripting Engine CVE-2019-1030 Information Disclosure Vulnerability

Description Microsoft Edge is prone to an information disclosure vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Edge Recommendations Run all software as a nonprivileged user with minimal acce...

4.3CVSS6.3AI score0.06053EPSS
Exploits0
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•101 views

HTTP/2 CVE-2019-9517 Remote Denial of Service Vulnerability

Description HTTP/2 is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to consume excess memory, denying service to legitimate users. Technologies Affected Apache Apache 2.4.20 Apache Apache 2.4.23 Apache Apache 2.4.25 Apache Apache 2.4.26 Apache Apache 2.4.27...

7.8CVSS0.5AI score0.27004EPSS
Exploits0References2Affected Software15
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•45 views

Microsoft Windows Remote Desktop Protocol CVE-2019-1223 Denial of Service Vulnerability

Description Microsoft Windows Remote Desktop Protocol is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause the target service to stop responding, denying service to legitimate users. Technologies Affected Microsoft Windows 10 Version 1803 for 32-bit Systems...

2.2AI score0.05224EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•26 views

Microsoft Windows SymCrypt CVE-2019-1171 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1709 for ARM64-based Systems Microsoft Windows 10 Versi...

1.6AI score0.01371EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•43 views

Microsoft Windows Graphics Component CVE-2019-1149 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Office 2019...

9.3CVSS0.7AI score0.13904EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•42 views

Microsoft Windows DHCP Server CVE-2019-1212 Remote Denial of Service Vulnerability

Description Microsoft Windows DHCP Server is prone to a remote denial of service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based...

7.8CVSS1.1AI score0.06738EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•131 views

Microsoft Windows 'HTTP.sys' CVE-2019-9512 Denial of Service Vulnerability

Description Microsoft Windows is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the affected system to become unresponsive, resulting in a denial-of-service condition. Technologies Affected Apple SwiftNIO HTTP/2 1.0.0 Apple SwiftNIO HTTP/2 1.1.0 App...

1.6AI score0.83433EPSS
Exploits1References1Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•97 views

Microsoft Windows 'HTTP.sys' CVE-2019-9514 Denial of Service Vulnerability

Description Microsoft Windows is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the affected system to become unresponsive, resulting in a denial-of-service condition. Technologies Affected Apple SwiftNIO HTTP/2 1.0.0 Apple SwiftNIO HTTP/2 1.1.0 App...

1.6AI score0.82813EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•44 views

Microsoft Windows JET Database Engine CVE-2019-1155 Remote Code Execution Vulnerability

Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Office 2010 32-bit edition SP2 Microsoft Office 2010 64-bit editi...

9.3CVSS0.6AI score0.04269EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•78 views

Microsoft Windows 'HTTP.sys' CVE-2019-9511 Denial of Service Vulnerability

Description Microsoft Windows is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the affected system to become unresponsive, resulting in a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems...

1.5AI score0.58373EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•193 views

Microsoft Windows 'HTTP.sys' CVE-2019-9513 Denial of Service Vulnerability

Description Microsoft Windows is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the affected system to become unresponsive, resulting in a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems...

1.5AI score0.82017EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•55 views

Microsoft Windows CVE-2019-1184 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on the system or gain unauthorized access. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft...

7.2CVSS2.5AI score0.70227EPSS
Exploits1Affected Software2
Symantec
Symantec
•added 2019/08/12 12:0 a.m.•26 views

Apache Solr for Linux CVE-2019-12409 Remote Code Execution Vulnerability

Description Apache Solr for Linux is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Apache Solr for Linux versions 8.1.1 and 8.2.0 are vulnerable. Technologies Affected Apache Solr 8.1.1 Apache Sol...

0.9AI score0.21866EPSS
Exploits4References4Affected Software1
Symantec
Symantec
•added 2019/08/09 12:0 a.m.•39 views

Multiple F5 BIG-IP Products CVE-2019-6647 Memory Leak Denial of Service Vulnerability

Description Multiple F5 BIG-IP Products are prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause excessive memory consumption; resulting in denial-of-service conditions. Technologies Affected F5 BIG-IP AAM 11.5.1 F5 BIG-IP AAM 11.6.4 F5 BIG-IP AAM 12.1.0 F5 BIG-...

4.3CVSS0.8AI score0.01361EPSS
Exploits0References1Affected Software13
Symantec
Symantec
•added 2019/08/08 12:0 a.m.•18 views

Dell EMC Integrated Data Protection Appliance Multiple Security Vulnerabilities

Description Dell EMC Integrated Data Protection Appliance is prone to multiple security vulnerabilities. Attackers can exploit these issues to steal cookie-based authentication credentials, control how the page is rendered to the user, obtain sensitive information or bypass certain security...

1.4AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/08/02 12:0 a.m.•36 views

Apache Tika CVE-2019-10088 Denial of Service Vulnerability

Description Apache Tika is prone to a denial-of-service vulnerability. An attacker may exploit this issue to cause denial-of-service conditions. Apache Tika versions 1.7 through 1.21 are vulnerable. Technologies Affected Apache Tika 1.10 Apache Tika 1.11 Apache Tika 1.12 Apache Tika 1.13 Apache...

6.8CVSS0.6AI score0.0484EPSS
Exploits0References4Affected Software2
Symantec
Symantec
•added 2019/07/31 8:0 a.m.•25 views

Symantec Endpoint Protection Privilege Escalation

SUMMARY Symantec has released updates to address issues that were discovered in the Symantec Endpoint Protection SEP and Symantec Endpoint Protection Small Business Edition SEP SBE products. AFFECTED PRODUCTS Symantec Endpoint Protection SEP --- CVE | Affected Versions | Remediation CVE-2019-1275...

4.6CVSS0.4AI score0.0125EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/07/29 12:0 a.m.•153 views

FasterXML Jackson-databind CVE-2019-14379 Remote Code Execution Vulnerability

Description FasterXML Jackson-databind is prone to a remote-code execution vulnerability. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions. Versions prior to...

7.5CVSS0.6AI score0.08045EPSS
Exploits0References2Affected Software4
Symantec
Symantec
•added 2019/07/24 12:0 a.m.•16 views

PHP 'ext/exif/exif.c' Denial of Service Vulnerability

Description PHP is prone to a denial-of-service vulnerability. Successful exploits may allow the attacker to crash the affected application resulting in denial-of-service condition. Versions prior to PHP 7.4.0 are vulnerable. Technologies Affected PHP PHP 7.3.0 PHP PHP 7.3.1 PHP PHP 7.3.2 PHP PHP...

1.7AI score
Exploits0References3Affected Software1
Symantec
Symantec
•added 2019/07/23 12:0 a.m.•92 views

XStream API CVE-2019-10173 Deserialization Remote Code Execution Vulnerability

Description XStream API is prone to a remote code-execution vulnerability. Successfully exploiting this issue may allow an attacker to execute arbitrary commands in the context of the affected application. Xstream API versions 1.4.10 is vulnerable. Technologies Affected IBM QRadar 7.3.0 IBM QRada...

7.5CVSS1.1AI score0.94774EPSS
Exploits4References2Affected Software6
Symantec
Symantec
•added 2019/07/17 12:0 a.m.•20 views

Jenkins Multiple Security Vulnerabilities

Description Jenkins is prone to the following vulnerabilities: 1. A unauthorized-access vulnerability 2. A cross-site request forgery vulnerability An attacker may leverage these issues to execute arbitrary script code in the browser of the victim in the context of the affected site, steal...

7.8AI score
Exploits0References2Affected Software3
Total number of security vulnerabilities6867