Skip to main content
CVE-2019-12643 CRITICAL Act Now

A vulnerability in the Cisco REST API virtual service container for Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass authentication on the managed Cisco IOS XE device. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Cisco Apple Ios Xe
NVD
CVSS 3.0
10.0
EPSS
5.3%
CVE-2019-9933 CRITICAL Act Now

Various Lexmark products have a Buffer Overflow (issue 3 of 3). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Cs31X Firmware Cs41X Firmware Cx310 Firmware Ms310 Firmware +67
NVD
CVSS 3.0
9.8
EPSS
1.5%
CVE-2019-9932 CRITICAL Act Now

Various Lexmark products have a Buffer Overflow (issue 2 of 3). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Cs31X Firmware Cs41X Firmware Cx310 Firmware Ms310 Firmware +67
NVD
CVSS 3.0
9.8
EPSS
1.5%
CVE-2019-9930 CRITICAL Act Now

Various Lexmark products have an Integer Overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Integer Overflow Buffer Overflow Cs31X Firmware Cs41X Firmware Cx310 Firmware +68
NVD
CVSS 3.0
9.8
EPSS
1.5%
CVE-2019-15294 CRITICAL Act Now

An issue was discovered in Gallagher Command Centre 8.10 before 8.10.1092(MR2). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Command Centre
NVD
CVSS 3.0
9.8
EPSS
1.2%
CVE-2019-15753 CRITICAL PATCH Act Now

In OpenStack os-vif 1.15.x before 1.15.2, and 1.16.0, a hard-coded MAC aging time of 0 disables MAC learning in linuxbridge, forcing obligatory Ethernet flooding of non-local destinations, which both. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Allocation of Resources Without Limits vulnerability could allow attackers to exhaust system resources through uncontrolled allocation.

Denial Of Service Os Vif
NVD
CVSS 3.0
9.1
EPSS
2.6%
CVE-2019-10058 CRITICAL Act Now

Various Lexmark products have Incorrect Access Control. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Cs31X Firmware Cs41X Firmware Cx310 Firmware Ms310 Firmware +70
NVD
CVSS 3.0
9.1
EPSS
1.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy