Skip to main content
CVE-2019-10959 CRITICAL Act Now

BD Alaris Gateway Workstation Versions, 1.1.3 Build 10, 1.1.3 MR Build 11, 1.2 Build 15, 1.3.0 Build 14, 1.3.1 Build 13, This does not impact the latest firmware Versions 1.3.2 and 1.6.1,. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload Alaris Gateway Workstation Firmware Alaris Gs Syringe Pump Firmware Alaris Gh Syringe Pump Firmware Alaris Cc Syringe Pump Firmware +1
NVD
CVSS 3.0
10.0
EPSS
2.5%
CVE-2019-7321 CRITICAL PATCH Act Now

Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow RCE Memory Corruption Mupdf
NVD GitHub
CVSS 3.0
9.8
EPSS
3.2%
CVE-2019-12798 CRITICAL Act Now

An issue was discovered in Artifex MuJS 1.0.5. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mujs
NVD
CVSS 3.0
9.8
EPSS
1.7%
CVE-2019-11119 CRITICAL PATCH Act Now

Insufficient session validation in the service API for Intel(R) RWC3 version 4.186 and before may allow an unauthenticated user to potentially enable escalation of privilege via network access. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Privilege Escalation Intel Raid Web Console 3
NVD
CVSS 3.1
9.8
EPSS
2.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy