Skip to main content
CVE-2019-9835 CRITICAL POC Act Now

The receiver (aka bridge) component of Fujitsu Wireless Keyboard Set LX901 GK900 devices allows Keystroke Injection. Rated critical severity (CVSS 9.6), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection Lx901 Firmware Gk900 Firmware
NVD
CVSS 3.0
9.6
EPSS
0.6%
CVE-2019-9829 HIGH POC This Week

Maccms 10 allows remote attackers to execute arbitrary PHP code by entering this code in a template/default_pc/html/art Edit action. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP RCE Maccms
NVD GitHub
CVSS 3.0
8.8
EPSS
2.0%
CVE-2019-9833 HIGH POC This Week

The Screen Stream application through 3.0.15 for Android allows remote attackers to cause a denial of service via many simultaneous /start-stop requests. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Google Denial Of Service Screen Stream
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
8.8%
CVE-2019-9832 HIGH POC This Week

The AirDrop application through 2.0 for Android allows remote attackers to cause a denial of service via a client that makes many socket connections through a configured port. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Google Denial Of Service Airdrop
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
8.3%
CVE-2019-9831 HIGH POC This Week

The AirMore application through 1.6.1 for Android allows remote attackers to cause a denial of service (system hang) via many simultaneous /?Key=PhoneRequestAuthorization requests. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Google Denial Of Service Airmore
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
9.0%
CVE-2019-9834 MEDIUM POC This Month

The Netdata web application through 1.13.0 allows remote attackers to inject their own malicious HTML code into an imported snapshot, aka HTML Injection. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Netdata
NVD GitHub Exploit-DB
CVSS 3.0
6.1
EPSS
5.1%
CVE-2019-5616 MEDIUM POC This Month

CircuitWerkes Sicon-8, a hardware device used for managing electrical devices, ships with a web-based front-end controller and implements an authentication mechanism in JavaScript that is run in the. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Scion 8 Firmware
NVD
CVSS 3.0
5.3
EPSS
1.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy