Skip to main content
CVE-2019-13357 HIGH POC This Week

In Total Defense Anti-virus 9.0.0.773, resource acquisition from the untrusted search path C:\ used by caschelp.exe allows local attackers to hijack ccGUIFrm.dll, which leads to code execution. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

RCE Anti Virus
NVD GitHub
CVSS 3.1
7.8
EPSS
0.6%
CVE-2019-13356 HIGH POC This Week

In Total Defense Anti-virus 9.0.0.773, insecure access control for the directory %PROGRAMDATA%\TotalDefense\Consumer\ISS\9\bd\TDUpdate2\ used by AMRT.exe allows local attackers to hijack bdcore.dll,. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Anti Virus
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2019-13355 HIGH POC This Week

In Total Defense Anti-virus 9.0.0.773, insecure access control for the directory %PROGRAMDATA%\TotalDefense\Consumer\ISS\9\ used by ccschedulersvc.exe allows local attackers to hijack. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Anti Virus
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2019-5094 HIGH POC This Week

An exploitable code execution vulnerability exists in the quota file functionality of E2fsprogs 1.45.3. Rated high severity (CVSS 7.5). Public exploit code available and no vendor patch available.

Buffer Overflow RCE Memory Corruption E2Fsprogs Debian Linux +4
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2019-16754 HIGH POC This Week

RIOT 2019.07 contains a NULL pointer dereference in the MQTT-SN implementation (asymcute), potentially allowing an attacker to crash a network node running RIOT. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Riot
NVD GitHub
CVSS 3.1
7.5
EPSS
1.5%
CVE-2019-13527 HIGH This Week

In Rockwell Automation Arena Simulation Software Cat. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Rockwell Information Disclosure Memory Corruption Arena
NVD
CVSS 3.1
7.8
EPSS
5.3%
CVE-2019-16729 HIGH PATCH This Week

pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM setups. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Python Pam Python Debian Linux Ubuntu Linux
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2019-14753 HIGH This Week

SICK FX0-GPNT00000 and FX0-GENT00000 devices through 3.4.0 have a Buffer Overflow. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Fx0 Gpnt00000 Firmware Fx0 Gent00000 Firmware
NVD
CVSS 3.1
7.5
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy