Skip to main content
CVE-2019-1010044 CRITICAL POC Act Now

borg-reducer c6d5240 is affected by: Buffer Overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Buffer Overflow RCE Memory Corruption Graphpass
NVD GitHub
CVSS 3.0
9.8
EPSS
2.3%
CVE-2019-1010038 CRITICAL POC Act Now

OpenModelica OMCompiler is affected by: Buffer Overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Buffer Overflow RCE Memory Corruption Omcompiler
NVD
CVSS 3.0
9.8
EPSS
2.5%
CVE-2019-1010022 CRITICAL POC Act Now

GNU Libc current is affected by: Mitigation bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Glibc
NVD
CVSS 3.0
9.8
EPSS
3.2%
CVE-2019-1010298 CRITICAL PATCH Act Now

Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Integer Overflow vulnerability could allow attackers to cause unexpected behavior through arithmetic overflow.

Integer Overflow Buffer Overflow RCE Op Tee
NVD GitHub VulDB
CVSS 3.0
9.8
EPSS
5.5%
CVE-2019-1010297 CRITICAL PATCH Act Now

Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Integer Overflow vulnerability could allow attackers to cause unexpected behavior through arithmetic overflow.

Integer Overflow Buffer Overflow Op Tee
NVD GitHub VulDB
CVSS 3.0
9.8
EPSS
1.1%
CVE-2019-1010296 CRITICAL PATCH Act Now

Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Integer Overflow vulnerability could allow attackers to cause unexpected behavior through arithmetic overflow.

Integer Overflow Buffer Overflow RCE Op Tee
NVD GitHub VulDB
CVSS 3.0
9.8
EPSS
1.1%
CVE-2019-1010295 CRITICAL PATCH Act Now

Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Buffer Overflow Op Tee
NVD GitHub VulDB
CVSS 3.0
9.8
EPSS
0.5%
CVE-2019-1010293 CRITICAL PATCH Act Now

Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Boundary crossing. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Memory Corruption Buffer Overflow Op Tee
NVD GitHub VulDB
CVSS 3.0
9.8
EPSS
0.4%
CVE-2019-6824 CRITICAL Act Now

A CWE-119: Buffer Errors vulnerability exists in ProClima (all versions prior to version 8.0.0) which allows an unauthenticated, remote attacker to execute arbitrary code on the targeted system in. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Proclima
NVD
CVSS 3.1
9.8
EPSS
4.5%
CVE-2019-6823 CRITICAL Act Now

A CWE-94: Code Injection vulnerability exists in ProClima (all versions prior to version 8.0.0) which could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection RCE Proclima
NVD
CVSS 3.1
9.8
EPSS
5.0%
CVE-2019-1072 CRITICAL PATCH Act Now

A remote code execution vulnerability exists when Azure DevOps Server and Team Foundation Server (TFS) improperly handle user input, aka 'Azure DevOps Server and Team Foundation Server Remote Code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Microsoft RCE Team Foundation Server Azure Devops Server
NVD
CVSS 3.0
9.8
EPSS
12.4%
CVE-2019-0785 CRITICAL PATCH Act Now

A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server, aka 'Windows DHCP Server Remote Code Execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Microsoft RCE Memory Corruption Windows Server 2012 +2
NVD
CVSS 3.0
9.8
EPSS
49.6%
CVE-2019-1010308 CRITICAL PATCH Act Now

Aquaverde GmbH Aquarius CMS prior to version 4.1.1 is affected by: Incorrect Access Control. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Insufficiently Protected Credentials vulnerability could allow attackers to obtain user credentials due to weak protection mechanisms.

Information Disclosure Aquarius Cms
NVD GitHub
CVSS 3.0
9.8
EPSS
1.6%
CVE-2019-1010306 CRITICAL PATCH Act Now

Slanger 0.6.0 is affected by: Remote Code Execution (RCE). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Deserialization of Untrusted Data vulnerability could allow attackers to execute arbitrary code through malicious serialized objects.

RCE Deserialization Slanger
NVD GitHub
CVSS 3.0
9.8
EPSS
4.0%
CVE-2019-1010039 CRITICAL PATCH Act Now

uLaunchELF < commit 170827a is affected by: Buffer Overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Denial Of Service Buffer Overflow RCE Memory Corruption Ulaunchelf
NVD GitHub
CVSS 3.0
9.8
EPSS
2.3%
CVE-2019-1010009 CRITICAL Act Now

DGLogik Inc DGLux Server All Versions is affected by: Insecure Permissions. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Dglux Server
NVD GitHub
CVSS 3.0
9.8
EPSS
2.8%
CVE-2019-1109 CRITICAL PATCH Act Now

A spoofing vulnerability exists when Microsoft Office Javascript does not check the validity of the web page making a request to Office documents.An attacker who successfully exploited this. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Microsoft Information Disclosure Office Office 365
NVD
CVSS 3.0
9.1
EPSS
4.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy