Skip to main content
CVE-2019-14924 HIGH PATCH This Week

An issue was discovered in GCDWebServer before 3.5.3. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Incorrect Authorization vulnerability could allow attackers to bypass authorization checks to access restricted resources.

Authentication Bypass Gcdwebserver
NVD GitHub
CVSS 3.0
7.5
EPSS
2.0%
CVE-2019-14357 LOW Monitor

On Mooltipass Mini devices, a side channel for the row-based OLED display was found. Rated low severity (CVSS 2.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Mooltipass Mini Firmware
NVD GitHub
CVSS 3.0
2.4
EPSS
0.3%
CVE-2019-14355 LOW Monitor

On ShapeShift KeepKey devices, a side channel for the row-based OLED display was found. Rated low severity (CVSS 2.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Keepkey Firmware
NVD
CVSS 3.0
2.4
EPSS
0.3%
CVE-2019-14354 LOW Monitor

On Ledger Nano S and Nano X devices, a side channel for the row-based OLED display was found. Rated low severity (CVSS 2.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Nano S Firmware Nano X Firmware
NVD
CVSS 3.0
2.4
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy