Skip to main content
CVE-2019-13567 HIGH POC This Week

The Zoom Client before 4.4.53932.0709 on macOS allows remote code execution, a different vulnerability than CVE-2019-13450. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Apple Command Injection Zoom
NVD GitHub
CVSS 3.1
8.8
EPSS
3.8%
CVE-2019-13494 HIGH POC This Week

nodeimp.exe in Castle Rock SNMPc before 9.0.12.1 and 10.x before 10.0.9 has a stack-based buffer overflow via a long variable string in a Map Objects text file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Memory Corruption Simple Network Management Protocol Console
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
3.9%
CVE-2019-13574 HIGH POC PATCH This Week

In lib/mini_magick/image.rb in MiniMagick before 4.9.4, a fetched remote image filename could cause remote command execution because Image.open input is directly passed to Kernel#open, which accepts. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Command Injection Minimagick Debian Linux
NVD GitHub
CVSS 3.0
7.8
EPSS
7.6%
CVE-2019-11242 HIGH This Week

A man-in-the-middle vulnerability related to vCenter access was found in Cohesity DataPlatform version 5.x and 6.x prior to 6.1.1c. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

VMware Information Disclosure Dataplatform
NVD GitHub
CVSS 3.0
8.1
EPSS
0.5%
CVE-2019-12731 HIGH This Week

The Windows versions of Snapview Mikogo, versions before 5.10.2 are affected by insecure implementations which allow local attackers to escalate privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Mikogo
NVD
CVSS 3.0
7.8
EPSS
0.3%
CVE-2019-8998 HIGH PATCH This Week

An information disclosure vulnerability leading to a potential local escalation of privilege in the procfs service (the /proc filesystem) of BlackBerry QNX Software Development Platform version(s). Rated high severity (CVSS 7.8).

Authentication Bypass Privilege Escalation Information Disclosure Qnx Software Development Platform
NVD
CVSS 3.1
7.8
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy