Skip to main content
CVE-2019-13473 CRITICAL POC Act Now

TELESTAR Bobs Rock Radio, Dabman D10, Dabman i30 Stereo, Imperial i110, Imperial i150, Imperial i200, Imperial i200-cd, Imperial i400, Imperial i450, Imperial i500-bt, and Imperial i600. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Bobs Rock Radio Firmware Dabman D10 Firmware Dabman I30 Stereo Firmware Imperial I110 Firmware +8
NVD
CVSS 3.1
9.8
EPSS
4.4%
CVE-2019-16227 CRITICAL POC PATCH Act Now

An issue was discovered in py-lmdb 0.97. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Memory Corruption Py Lmdb
NVD GitHub
CVSS 3.1
9.8
EPSS
2.0%
CVE-2019-16225 CRITICAL POC PATCH Act Now

An issue was discovered in py-lmdb 0.97. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Memory Corruption Py Lmdb
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
CVE-2019-16224 CRITICAL POC PATCH Act Now

An issue was discovered in py-lmdb 0.97. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Memory Corruption Py Lmdb
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
CVE-2019-1306 CRITICAL PATCH Act Now

A remote code execution vulnerability exists when Azure DevOps Server (ADO) and Team Foundation Server (TFS) fail to validate input properly, aka 'Azure DevOps and Team Foundation Server Remote Code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Microsoft RCE Team Foundation Server Azure Devops Server
NVD
CVSS 3.1
9.8
EPSS
17.0%
CVE-2019-10074 CRITICAL Act Now

An RCE is possible by entering Freemarker markup in an Apache OFBiz Form Widget textarea field when encoding has been disabled on such a field. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apache Ofbiz
NVD
CVSS 3.1
9.8
EPSS
3.4%
CVE-2019-0189 CRITICAL Act Now

The java.io.ObjectInputStream is known to cause Java serialisation issues. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Java RCE Apache Deserialization Ofbiz
NVD
CVSS 3.1
9.8
EPSS
23.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy