Skip to main content
CVE-2019-6145 MEDIUM POC This Month

Forcepoint VPN Client for Windows versions lower than 6.6.1 have an unquoted search path vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Microsoft Vpn Client
NVD
CVSS 3.1
6.7
EPSS
0.7%
CVE-2019-14916 MEDIUM POC This Month

An issue was discovered in PRiSE adAS 1.7.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Adas
NVD
CVSS 3.1
6.5
EPSS
1.0%
CVE-2019-14912 MEDIUM POC This Month

An issue was discovered in PRiSE adAS 1.7.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Open Redirect Adas
NVD
CVSS 3.1
6.1
EPSS
1.2%
CVE-2019-16643 MEDIUM POC This Month

An issue was discovered in ZrLog 2.1.1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Zrlog
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
CVE-2019-14913 MEDIUM POC This Month

An issue was discovered in PRiSE adAS 1.7.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Adas
NVD
CVSS 3.1
5.4
EPSS
0.9%
CVE-2019-11327 MEDIUM POC This Month

An issue was discovered on Topcon Positioning Net-G5 GNSS Receiver devices with firmware 5.2.2. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Net G5 Firmware
NVD
CVSS 3.1
4.9
EPSS
1.4%
CVE-2019-16534 MEDIUM This Month

On DrayTek Vigor2925 devices with firmware 3.8.4.3, XSS exists via a crafted WAN name on the General Setup screen. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Vigor2925 Firmware
NVD
CVSS 3.1
6.1
EPSS
0.8%
CVE-2019-16533 MEDIUM This Month

On DrayTek Vigor2925 devices with firmware 3.8.4.3, Incorrect Access Control exists in loginset.htm, and can be used to trigger XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Vigor2925 Firmware
NVD
CVSS 3.1
6.1
EPSS
0.8%
CVE-2019-15086 MEDIUM This Month

An issue was discovered in PRiSE adAS 1.7.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Adas
NVD
CVSS 3.1
6.1
EPSS
0.8%
CVE-2019-14915 MEDIUM PATCH This Month

An issue was discovered in PRiSE adAS 1.7.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Adas
NVD
CVSS 3.1
6.1
EPSS
0.5%
CVE-2019-14911 MEDIUM PATCH This Month

An issue was discovered in PRiSE adAS 1.7.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Adas
NVD
CVSS 3.1
6.1
EPSS
1.0%
CVE-2019-4505 MEDIUM PATCH This Month

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Network Deployment could allow a remote attacker to obtain sensitive information, caused by sending a specially-crafted URL. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

IBM Information Disclosure Websphere Application Server Websphere Virtual Enterprise
NVD
CVSS 3.1
5.3
EPSS
2.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy