Skip to main content
CVE-2019-16928 CRITICAL POC KEV PATCH THREAT Act Now

Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow RCE Memory Corruption Exim Ubuntu Linux +2
NVD
CVSS 3.1
9.8
EPSS
41.6%
CVE-2019-16920 CRITICAL POC KEV THREAT Act Now

Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

D-Link RCE Command Injection Dir 655 Firmware Dir 866L Firmware +8
NVD
CVSS 3.1
9.8
EPSS
100.0%
CVE-2019-3766 CRITICAL Act Now

Dell EMC ECS versions prior to 3.4.0.0 contain an improper restriction of excessive authentication attempts vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Dell Information Disclosure Emc Elastic Cloud Storage
NVD
CVSS 3.1
9.8
EPSS
1.9%
CVE-2019-9459 CRITICAL Act Now

In libttspico, there is a possible OOB write due to a heap buffer overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Google Buffer Overflow Privilege Escalation Memory Corruption Android
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2019-9365 CRITICAL Act Now

In Bluetooth, there is a possible deserialization error due to missing string validation. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Google RCE Deserialization Android
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2019-9301 CRITICAL Act Now

In libAACdec, there is a possible out of bounds write due to an integer overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Google Integer Overflow RCE Buffer Overflow Android
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2019-11734 CRITICAL Act Now

Mozilla developers and community members reported memory safety bugs present in Firefox 68. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mozilla RCE Memory Corruption Firefox
NVD
CVSS 3.1
9.8
EPSS
1.3%
CVE-2019-11733 CRITICAL Act Now

When a master password is set, it is required to be entered again before stored passwords can be accessed in the 'Saved Logins' dialog. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Mozilla Firefox
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2019-8074 CRITICAL Act Now

ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Path Traversal vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Coldfusion
NVD
CVSS 3.1
9.8
EPSS
18.9%
CVE-2019-8073 CRITICAL Act Now

ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Command Injection via Vulnerable component vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Command Injection Coldfusion
NVD
CVSS 3.1
9.8
EPSS
8.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy