Total
23789 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-5723 | 1 Portier | 1 Portier | 2023-12-10 | 5.0 MEDIUM | 9.8 CRITICAL |
An issue was discovered in portier vision 4.4.4.2 and 4.4.4.6. Passwords are stored using reversible encryption rather than as a hash value, and the used Vigenere algorithm is badly outdated. Moreover, the encryption key is static and too short. Due to this, the passwords stored by the application can be easily decrypted. | |||||
CVE-2018-17386 | 1 Thephpfactory | 1 Micro Deal Factory | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
SQL Injection exists in the Micro Deal Factory 2.4.0 component for Joomla! via the id parameter, or the PATH_INFO to mydeals/ or listdeals/. | |||||
CVE-2019-9626 | 1 Phpshe | 1 Phpshe | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
PHPSHE 1.7 allows module/index/cart.php pintuan_id SQL Injection to index.php. | |||||
CVE-2019-15937 | 1 Pengutronix | 1 Barebox | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_reply in net/nfs.c because a length field is directly used for a memcpy. | |||||
CVE-2019-12550 | 1 Wago | 6 852-1305, 852-1305 Firmware, 852-1505 and 3 more | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
WAGO 852-303 before FW06, 852-1305 before FW06, and 852-1505 before FW03 devices contain hardcoded users and passwords that can be used to login via SSH and TELNET. | |||||
CVE-2019-10672 | 1 Symonics | 1 Libmysofa | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
treeRead in hdf/btree.c in libmysofa before 0.7 does not properly validate multiplications and additions. | |||||
CVE-2019-1974 | 1 Cisco | 3 Integrated Management Controller Supervisor, Ucs Director, Ucs Director Express For Big Data | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote attacker to bypass user authentication and gain access as an administrative user. The vulnerability is due to insufficient request header validation during the authentication process. An attacker could exploit this vulnerability by sending a series of malicious requests to an affected device. An exploit could allow the attacker to gain full administrative access to the affected device. | |||||
CVE-2019-12301 | 1 Percona | 1 Percona Server | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
The Percona Server 5.6.44-85.0-1 packages for Debian and Ubuntu suffered an issue where the server would reset the root password to a blank value upon an upgrade. This was fixed in 5.6.44-85.0-2. | |||||
CVE-2018-7124 | 1 Hp | 1 Intelligent Management Center | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. | |||||
CVE-2019-15000 | 1 Atlassian | 1 Bitbucket | 2023-12-10 | 6.8 MEDIUM | 9.8 CRITICAL |
The commit diff rest endpoint in Bitbucket Server and Data Center before 5.16.10 (the fixed version for 5.16.x ), from 6.0.0 before 6.0.10 (the fixed version for 6.0.x), from 6.1.0 before 6.1.8 (the fixed version for 6.1.x), from 6.2.0 before 6.2.6 (the fixed version for 6.2.x), from 6.3.0 before 6.3.5 (the fixed version for 6.3.x), from 6.4.0 before 6.4.3 (the fixed version for 6.4.x), and from 6.5.0 before 6.5.2 (the fixed version for 6.5.x) allows remote attackers who have permission to access a repository, if public access is enabled for a project or repository then attackers are able to exploit this issue anonymously, to read the contents of arbitrary files on the system and execute commands via injecting additional arguments into git commands. | |||||
CVE-2019-12730 | 1 Ffmpeg | 1 Ffmpeg | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
aa_read_header in libavformat/aadec.c in FFmpeg before 3.2.14 and 4.x before 4.1.4 does not check for sscanf failure and consequently allows use of uninitialized variables. | |||||
CVE-2019-15548 | 1 Ncurses Project | 1 Ncurses | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
An issue was discovered in the ncurses crate through 5.99.0 for Rust. There are instr and mvwinstr buffer overflows because interaction with C functions is mishandled. | |||||
CVE-2019-15806 | 1 Commscope | 2 Tr4400, Tr4400 Firmware | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
CommScope ARRIS TR4400 devices with firmware through A1.00.004-180301 are vulnerable to an authentication bypass to the administrative interface because they include the current base64 encoded password within http://192.168.1.1/basic_sett.html. Any user connected to the Wi-Fi can exploit this. | |||||
CVE-2019-0786 | 1 Microsoft | 3 Windows 10, Windows Server 2016, Windows Server 2019 | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
An elevation of privilege vulnerability exists in the Microsoft Server Message Block (SMB) Server when an attacker with valid credentials attempts to open a specially crafted file over the SMB protocol on the same machine, aka 'SMB Server Elevation of Privilege Vulnerability'. | |||||
CVE-2017-17945 | 1 Asus | 2 Hivivo, Vivobaby | 2023-12-10 | 6.4 MEDIUM | 9.1 CRITICAL |
The ASUS HiVivo aspplication before 5.6.27 for ASUS Watch has Missing SSL Certificate Validation. | |||||
CVE-2019-9750 | 1 Iotivity | 1 Iotivity | 2023-12-10 | 6.4 MEDIUM | 9.1 CRITICAL |
In IoTivity through 1.3.1, the CoAP server interface can be used for Distributed Denial of Service attacks using source IP address spoofing and UDP-based traffic amplification. The reflected traffic is 6 times bigger than spoofed requests. This occurs because the construction of a "4.01 Unauthorized" response is mishandled. NOTE: the vendor states "While this is an interesting attack, there is no plan for maintainer to fix, as we are migrating to IoTivity Lite." | |||||
CVE-2017-14852 | 1 Orpak | 1 Siteomat | 2023-12-10 | 5.0 MEDIUM | 9.8 CRITICAL |
An insecure communication was found between a user and the Orpak SiteOmat management console for all known versions, due to an invalid SSL certificate. The attack allows for an eavesdropper to capture the communication and decrypt the data. | |||||
CVE-2019-15819 | 1 Restaurant Reservations Project | 1 Restaurant Reservations | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
The nd-restaurant-reservations plugin before 1.5 for WordPress has no requirement for nd_rst_import_settings_php_function authentication. | |||||
CVE-2018-18251 | 1 Deltek | 1 Vision | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
Deltek Vision 7.x before 7.6 permits the execution of any attacker supplied SQL statement through a custom RPC over HTTP protocol. The Vision system relies on the client binary to enforce security rules and integrity of SQL statements and other content being sent to the server. Client HTTP calls can be manipulated by one of several means to execute arbitrary SQL statements (similar to SQLi) or possibly have unspecified other impact via this custom protocol. To perform these attacks an authenticated session is first required. In some cases client calls are obfuscated by encryption, which can be bypassed due to hard-coded keys and an insecure key rotation protocol. Impacts may include remote code execution in some deployments; however, the vendor states that this cannot occur when the installation documentation is heeded. | |||||
CVE-2019-15494 | 1 It-novum | 1 Openitcockpit | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
openITCOCKPIT before 3.7.1 allows SSRF, aka RVID 5-445b21. |