Skip to main content
CVE-2019-18269 CRITICAL Act Now

Omron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Plc Cj Firmware Plc Cs Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
0.2%
CVE-2019-19826 CRITICAL Act Now

The Views Dynamic Fields module through 7.x-1.0-alpha4 for Drupal makes insecure unserialize calls in handlers/views_handler_filter_dynamic_fields.inc, as demonstrated by PHP object injection,. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP RCE Deserialization Views Dynamic Field
NVD
CVSS 3.1
9.8
EPSS
1.8%
CVE-2019-16778 CRITICAL PATCH Act Now

In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Buffer Overflow Heap Overflow Tensorflow
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2019-18261 CRITICAL Act Now

In Omron PLC CS series, all versions, Omron PLC CJ series, all versions, and Omron PLC NJ series, all versions, the software does not implement sufficient measures to prevent multiple failed. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Plc Cj Firmware Plc Cs Firmware Plc Nj Firmware
NVD
CVSS 3.1
9.8
EPSS
1.3%
CVE-2019-18259 CRITICAL Act Now

In Omron PLC CJ series, all versions and Omron PLC CS series, all versions, an attacker could spoof arbitrary messages or execute commands. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Plc Cj Firmware Plc Cs Firmware
NVD
CVSS 3.1
9.8
EPSS
2.1%
CVE-2019-18830 CRITICAL Act Now

Barco ClickShare Button R9861500D01 devices before 1.9.0 allow OS Command Injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Command Injection Clickshare Cs 100 Firmware Clickshare Cse 200 Firmware Clickshare Cse 800 Firmware
NVD
CVSS 3.1
9.8
EPSS
4.3%
CVE-2019-18826 CRITICAL Act Now

Barco ClickShare Button R9861500D01 devices before 1.9.0 have Improper Following of a Certificate's Chain of Trust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Clickshare Cs 100 Firmware Clickshare Cse 200 Firmware Clickshare Cse 800 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy