Skip to main content
CVE-2019-6799 MEDIUM POC PATCH THREAT This Month

An issue was discovered in phpMyAdmin before 4.8.5. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

PHP Information Disclosure Phpmyadmin Debian Linux
NVD
CVSS 3.0
5.9
EPSS
15.4%
CVE-2019-6976 MEDIUM PATCH This Month

libvips before 8.7.4 generates output images from uninitialized memory locations when processing corrupted input image data because iofuncs/memory.c does not zero out allocated memory. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Use of Uninitialized Resource vulnerability could allow attackers to access uninitialized memory causing crashes or information disclosure.

Information Disclosure Libvips
NVD GitHub
CVSS 3.0
5.3
EPSS
2.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy