Skip to main content
CVE-2019-17181 CRITICAL POC THREAT Emergency

A remote SEH buffer overflow has been discovered in IntraSrv 1.0 (2007-06-03). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Intrasrv
NVD
CVSS 3.1
9.8
EPSS
48.7%
CVE-2019-11043 CRITICAL POC KEV THREAT Emergency

In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Buffer Overflow RCE Ubuntu Linux Debian Linux +20
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
99.5%
CVE-2019-16662 CRITICAL POC THREAT Emergency

An issue was discovered in rConfig 3.9.2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Rconfig
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
97.7%
CVE-2019-16897 CRITICAL POC Act Now

In K7 Antivirus Premium 16.0.xxx through 16.0.0120; K7 Total Security 16.0.xxx through 16.0.0120; and K7 Ultimate Security 16.0.xxx through 16.0.0120, the module K7TSHlpr.dll improperly validates the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation K7 Antivirus Premium K7 Total Security K7 Ultimate Security
NVD GitHub
CVSS 3.1
9.8
EPSS
1.6%
CVE-2019-14931 CRITICAL POC THREAT Act Now

An issue was discovered on Mitsubishi Electric Europe B.V. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Smartrtu Firmware Me Rtu Firmware
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
57.7%
CVE-2019-14930 CRITICAL POC Act Now

An issue was discovered on Mitsubishi Electric Europe B.V. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Smartrtu Firmware Me Rtu Firmware
NVD
CVSS 3.1
9.8
EPSS
2.3%
CVE-2019-14929 CRITICAL POC Act Now

An issue was discovered on Mitsubishi Electric Europe B.V. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Smartrtu Firmware Me Rtu Firmware
NVD
CVSS 3.1
9.8
EPSS
1.9%
CVE-2019-14926 CRITICAL POC Act Now

An issue was discovered on Mitsubishi Electric Europe B.V. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Smartrtu Firmware Me Rtu Firmware
NVD
CVSS 3.1
9.8
EPSS
2.1%
CVE-2019-18189 CRITICAL Act Now

A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (11.0, XG) and Worry-Free Business Security (9.5, 10.0) may allow an attacker to bypass authentication and log on to an. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Trend Micro Apex One Officescan Worry Free Business Security
NVD
CVSS 3.1
9.8
EPSS
4.5%
CVE-2019-14450 CRITICAL Act Now

A directory traversal vulnerability was discovered in RepetierServer.exe in Repetier-Server 0.8 through 0.91 that allows for the creation of a user controlled XML file at an unintended location. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal RCE Repetier Server
NVD
CVSS 3.1
9.8
EPSS
10.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy