Skip to main content
CVE-2019-7962 HIGH This Week

Adobe Illustrator CC versions 23.1 and earlier have an insecure library loading (dll hijacking) vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Adobe Illustrator Cc
NVD
CVSS 3.1
7.8
EPSS
0.8%
CVE-2019-7960 HIGH PATCH This Week

Adobe Animate CC versions 19.2.1 and earlier have an insecure library loading (dll hijacking) vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Privilege Escalation Adobe Animate Cc
NVD
CVSS 3.1
7.8
EPSS
0.8%
CVE-2019-3663 HIGH This Week

Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Advanced Threat Defense
NVD
CVSS 3.1
7.8
EPSS
0.9%
CVE-2019-14818 HIGH PATCH This Week

A flaw was found in all dpdk version 17.x.x before 17.11.8, 16.x.x before 16.11.10, 18.x.x before 18.11.4 and 19.x.x before 19.08.1 where a malicious master, or a container with access to vhost_user. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Memory Leak vulnerability could allow attackers to exhaust available memory leading to denial of service.

Denial Of Service Data Plane Development Kit Enterprise Linux Fast Datapath Openstack Virtualization Eus +1
NVD
CVSS 3.1
7.5
EPSS
2.8%
CVE-2019-11182 HIGH This Week

Memory corruption in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Intel Memory Corruption Baseboard Management Controller Firmware
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2019-11180 HIGH This Week

Insufficient input validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Intel Baseboard Management Controller Firmware
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2019-11177 HIGH This Week

Unhandled exception in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Intel Baseboard Management Controller Firmware
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2019-11175 HIGH This Week

Insufficient input validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Intel Baseboard Management Controller Firmware
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2019-8240 HIGH PATCH This Week

Adobe Bridge CC versions 9.1 and earlier have a memory corruption vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Information Disclosure Adobe Memory Corruption Bridge Cc
NVD
CVSS 3.1
7.5
EPSS
2.5%
CVE-2019-8239 HIGH PATCH This Week

Adobe Bridge CC versions 9.1 and earlier have a memory corruption vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Information Disclosure Adobe Memory Corruption Bridge Cc
NVD
CVSS 3.1
7.5
EPSS
2.5%
CVE-2019-18949 HIGH This Week

SnowHaze before 2.6.6 is sometimes too late to honor a per-site JavaScript blocking setting, which leads to unintended JavaScript execution via a chain of webpage redirections targeted to the user's. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Snowhaze
NVD
CVSS 3.1
7.5
EPSS
1.4%
CVE-2019-18647 HIGH This Week

The Untangle NG firewall 14.2.0 is vulnerable to an authenticated command injection when logged in as an admin user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Ng Firewall
NVD GitHub
CVSS 3.1
7.2
EPSS
1.9%
CVE-2019-18646 HIGH This Week

The Untangle NG firewall 14.2.0 is vulnerable to authenticated inline-query SQL injection within the timeDataDynamicColumn parameter when logged in as an admin user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Ng Firewall
NVD GitHub
CVSS 3.1
7.2
EPSS
0.9%
CVE-2019-11173 HIGH This Week

Insufficient session validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure and/or denial of service via local. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Intel Information Disclosure Baseboard Management Controller Firmware
NVD
CVSS 3.1
7.1
EPSS
0.3%
CVE-2019-11155 HIGH This Week

Improper directory permissions in Intel(R) PROSet/Wireless WiFi Software before version 21.40 may allow an authenticated user to potentially enable denial of service and information disclosure via. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Intel Information Disclosure Proset Wireless Wifi
NVD
CVSS 3.1
7.1
EPSS
0.3%
CVE-2019-11154 HIGH This Week

Improper directory permissions in Intel(R) PROSet/Wireless WiFi Software before version 21.40 may allow an authenticated user to potentially enable denial of service and information disclosure via. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Intel Information Disclosure Proset Wireless Wifi
NVD
CVSS 3.1
7.1
EPSS
0.3%
Prev Page 3 of 3

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy