CVE List - 2019 / January
Showing 1101 - 1200 of 1212 CVEs for January 2019 (Page 12 of 13)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-6976 | 2019-01-26 | libvips before 8.7.4 generates output images from uninitialized memory locations... |
| CVE-2019-6703 | 2019-01-27 | Incorrect access control in migla_ajax_functions.php in the Calmar Webmedia Total... |
| CVE-2019-6977 | 2019-01-27 | gdImageColorMatch in gd_color_match.c in the GD Graphics Library (aka LibGD)... |
| CVE-2019-6978 | 2019-01-28 | The GD Graphics Library (aka LibGD) 2.2.5 has a double... |
| CVE-2018-20744 | 2019-01-28 | The Olivier Poitrey Go CORS handler through 1.3.0 actively converts... |
| CVE-2019-6979 | 2019-01-28 | An issue was discovered in the User IP History Logs... |
| CVE-2018-20745 | 2019-01-28 | Yii 2.x through 2.0.15.1 actively converts a wildcard CORS policy... |
| CVE-2019-6982 | 2019-01-28 | An issue was discovered in Foxit 3D Plugin Beta before... |
| CVE-2019-6983 | 2019-01-28 | An issue was discovered in Foxit 3D Plugin Beta before... |
| CVE-2019-6984 | 2019-01-28 | An issue was discovered in Foxit 3D Plugin Beta before... |
| CVE-2019-6985 | 2019-01-28 | An issue was discovered in Foxit 3D Plugin Beta before... |
| CVE-2018-16889 | 2019-01-28 | Ceph does not properly sanitize encryption keys in debug logging... |
| CVE-2018-10910 | 2019-01-28 | A bug in Bluez may allow for the Bluetooth Discoverable... |
| CVE-2019-3815 | 2019-01-28 | A memory leak was discovered in the backport of fixes... |
| CVE-2019-6986 | 2019-01-28 | SPARQL Injection in VIVO Vitro v1.10.0 allows a remote attacker... |
| CVE-2019-6988 | 2019-01-28 | An issue was discovered in OpenJPEG 2.3.0. It allows remote... |
| CVE-2018-19724 | 2019-01-28 | Adobe Experience Manager Forms versions 6.2, 6.3 and 6.4 have... |
| CVE-2018-19726 | 2019-01-28 | Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0... |
| CVE-2018-19727 | 2019-01-28 | Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0... |
| CVE-2018-19728 | 2019-01-28 | Adobe Acrobat and Reader versions 2019.008.20081 and earlier, 2019.008.20080 and... |
| CVE-2019-3593 | 2019-01-28 | Exploitation of Privilege/Trust vulnerability |
| CVE-2018-19015 | 2019-01-28 | An attacker could inject commands to launch programs and create,... |
| CVE-2019-6990 | 2019-01-28 | A stored-self XSS exists in web/skins/classic/views/zones.php of ZoneMinder through 1.32.3,... |
| CVE-2019-6991 | 2019-01-28 | A classic Stack-based buffer overflow exists in the zmLoadUser() function... |
| CVE-2019-6992 | 2019-01-28 | A stored-self XSS exists in web/skins/classic/views/controlcaps.php of ZoneMinder through 1.32.3,... |
| CVE-2018-19012 | 2019-01-28 | Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all... |
| CVE-2019-3462 | 2019-01-28 | Incorrect sanitation of the 302 redirect field in HTTP transport... |
| CVE-2018-19721 | 2019-01-28 | Adobe Acrobat and Reader versions 2018.011.20058 and earlier, 2017.011.30099 and... |
| CVE-2018-19723 | 2019-01-28 | Adobe Acrobat and Reader versions 2018.011.20058 and earlier, 2017.011.30099 and... |
| CVE-2018-19010 | 2019-01-28 | Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all... |
| CVE-2018-19014 | 2019-01-28 | Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all... |
| CVE-2019-7146 | 2019-01-29 | In elfutils 0.175, there is a buffer over-read in the... |
| CVE-2019-7147 | 2019-01-29 | A buffer over-read exists in the function crc64ib in crc64.c... |
| CVE-2019-7148 | 2019-01-29 | An attempted excessive memory allocation was discovered in the function... |
| CVE-2019-7149 | 2019-01-29 | A heap-based buffer over-read was discovered in the function read_srclines... |
| CVE-2019-7150 | 2019-01-29 | An issue was discovered in elfutils 0.175. A segmentation fault... |
| CVE-2019-7151 | 2019-01-29 | A NULL pointer dereference was discovered in wasm::Module::getFunctionOrNull in wasm/wasm.cpp... |
| CVE-2019-7152 | 2019-01-29 | A heap-based buffer over-read was discovered in wasm::WasmBinaryBuilder::processFunctions() in wasm/wasm-binary.cpp... |
| CVE-2019-7153 | 2019-01-29 | A NULL pointer dereference was discovered in wasm::WasmBinaryBuilder::processFunctions() in wasm/wasm-binary.cpp... |
| CVE-2019-7154 | 2019-01-29 | The main function in tools/wasm2js.cpp in Binaryen 1.38.22 has a... |
| CVE-2016-10740 | 2019-01-29 | Various resources in Atlassian Crowd before version 2.10.1 allow remote... |
| CVE-2019-7156 | 2019-01-29 | In libdoc through 2019-01-28, calcFileBlockOffset in ole.c allows division by... |
| CVE-2018-16880 | 2019-01-29 | A flaw was found in the Linux kernel's handle_rx() function... |
| CVE-2019-7160 | 2019-01-29 | idreamsoft iCMS 7.0.13 allows admincp.php?app=files ../ Directory Traversal via the... |
| CVE-2018-10612 | 2019-01-29 | In 3S-Smart Software Solutions GmbH CODESYS Control V3 products prior... |
| CVE-2018-1668 | 2019-01-29 | IBM DataPower Gateway 7.5.0.0 through 7.5.0.19, 7.5.1.0 through 7.5.1.18, 7.5.2.0... |
| CVE-2018-1733 | 2019-01-29 | IBM QRadar SIEM 7.2 and 7.3 fails to adequately filter... |
| CVE-2018-18985 | 2019-01-29 | Tridium Niagara Enterprise Security 2.3u1, all versions prior to 2.3.118.6,... |
| CVE-2018-1976 | 2019-01-29 | IBM API Connect 5.0.0.0 through 5.0.8.4 is impacted by sensitive... |
| CVE-2019-3806 | 2019-01-29 | An issue has been found in PowerDNS Recursor versions after... |
| CVE-2019-3807 | 2019-01-29 | An issue has been found in PowerDNS Recursor versions 4.1.x... |
| CVE-2019-7168 | 2019-01-29 | A stored-self XSS exists in Croogo through v3.0.5, allowing an... |
| CVE-2019-7169 | 2019-01-29 | A stored-self XSS exists in Croogo through v3.0.5, allowing an... |
| CVE-2019-7170 | 2019-01-29 | A stored-self XSS exists in Croogo through v3.0.5, allowing an... |
| CVE-2019-7171 | 2019-01-29 | A stored-self XSS exists in Croogo through v3.0.5, allowing an... |
| CVE-2019-7172 | 2019-01-29 | A stored-self XSS exists in ATutor through v2.2.4, allowing an... |
| CVE-2019-7173 | 2019-01-29 | A stored-self XSS exists in Croogo through v3.0.5, allowing an... |
| CVE-2018-12609 | 2019-01-29 | OX App Suite 7.8.4 and earlier allows Server-Side Request Forgery. |
| CVE-2018-12610 | 2019-01-29 | OX App Suite 7.8.4 and earlier allows Information Exposure. |
| CVE-2018-12611 | 2019-01-29 | OX App Suite 7.8.4 and earlier allows Directory Traversal. |
| CVE-2018-15136 | 2019-01-29 | TitanHQ SpamTitan before 7.01 has Improper input validation. This allows... |
| CVE-2018-17431 | 2019-01-29 | Web Console in Comodo UTM Firewall before 2.7.0 allows remote... |
| CVE-2018-19440 | 2019-01-29 | ARM Trusted Firmware-A allows information disclosure. |
| CVE-2018-19782 | 2019-01-29 | Multiple cross-site scripting (XSS) vulnerabilities in GET requests in FreshRSS... |
| CVE-2018-19858 | 2019-01-29 | PrinceXML, versions 10 and below, is vulnerable to XXE due... |
| CVE-2018-19027 | 2019-01-30 | Three type confusion vulnerabilities exist in CX-One Versions 4.50 and... |
| CVE-2018-20748 | 2019-01-30 | LibVNC before 0.9.12 contains multiple heap out-of-bounds write vulnerabilities in... |
| CVE-2018-20749 | 2019-01-30 | LibVNC before 0.9.12 contains a heap out-of-bounds write vulnerability in... |
| CVE-2018-20750 | 2019-01-30 | LibVNC through 0.9.12 contains a heap out-of-bounds write vulnerability in... |
| CVE-2019-1565 | 2019-01-30 | The PAN-OS external dynamics lists in PAN-OS 7.1.21 and earlier,... |
| CVE-2019-1566 | 2019-01-30 | The PAN-OS management web interface in PAN-OS 7.1.21 and earlier,... |
| CVE-2019-3911 | 2019-01-30 | Reflected cross-site scripting (XSS) vulnerability in LabKey Server Community Edition... |
| CVE-2019-3912 | 2019-01-30 | An open redirect vulnerability in LabKey Server Community Edition before... |
| CVE-2019-3913 | 2019-01-30 | Command manipulation in LabKey Server Community Edition before 18.3.0-61806.763 allows... |
| CVE-2019-7234 | 2019-01-30 | An issue was discovered in idreamsoft iCMS 7.0.13. admincp.php?app=apps&do=save allows... |
| CVE-2019-7235 | 2019-01-30 | An issue was discovered in idreamsoft iCMS 7.0.13. admincp.php?app=apps&do=save allows... |
| CVE-2019-7236 | 2019-01-30 | An issue was discovered in idreamsoft iCMS 7.0.13. editor/editor.admincp.php allows... |
| CVE-2019-7237 | 2019-01-30 | An issue was discovered in idreamsoft iCMS 7.0.13 on Windows.... |
| CVE-2019-7233 | 2019-01-30 | In libdoc through 2019-01-28, doc2text in catdoc.c has a NULL... |
| CVE-2018-17189 | 2019-01-30 | In Apache HTTP server versions 2.4.37 and prior, by sending... |
| CVE-2018-17199 | 2019-01-30 | In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session... |
| CVE-2018-3956 | 2019-01-30 | An exploitable out-of-bounds read vulnerability exists in the handling of... |
| CVE-2019-0190 | 2019-01-30 | A bug exists in the way mod_ssl handled client renegotiations.... |
| CVE-2019-6109 | 2019-01-31 | An issue was discovered in OpenSSH 7.9. Due to missing... |
| CVE-2019-6110 | 2019-01-31 | In OpenSSH 7.9, due to accepting and displaying arbitrary stderr... |
| CVE-2019-6111 | 2019-01-31 | An issue was discovered in OpenSSH 7.9. Due to the... |
| CVE-2019-6438 | 2019-01-31 | SchedMD Slurm before 17.11.13 and 18.x before 18.08.5 mishandles 32-bit... |
| CVE-2019-7216 | 2019-01-31 | An issue was discovered in FileChucker 4.99e-free-e02. filechucker.cgi has a... |
| CVE-2019-7249 | 2019-01-31 | In Keybase before 2.12.6 on macOS, the move RPC to... |
| CVE-2019-7250 | 2019-01-31 | An issue was discovered in the Cross Reference Add-on 36... |
| CVE-2017-18360 | 2019-01-31 | In change_port_settings in drivers/usb/serial/io_ti.c in the Linux kernel before 4.11.3,... |
| CVE-2018-11790 | 2019-01-31 | When loading a document with Apache Open Office 4.1.5 and... |
| CVE-2019-4040 | 2019-01-31 | IBM I 7.2 and 7.3 is vulnerable to cross-site scripting.... |
| CVE-2018-17926 | 2019-01-31 | The product M2M ETHERNET (FW Versions 2.22 and prior, ETH-FW... |
| CVE-2019-7282 | 2019-01-31 | In NetKit through 0.17, rcp.c in the rcp client allows... |
| CVE-2019-7283 | 2019-01-31 | An issue was discovered in rcp in NetKit through 0.17.... |
| CVE-2018-15515 | 2019-01-31 | The CaptivelPortal service on D-Link Central WiFiManager CWM-100 1.03 r0098... |
| CVE-2018-15516 | 2019-01-31 | The FTP service on D-Link Central WiFiManager CWM-100 1.03 r0098... |
| CVE-2018-15517 | 2019-01-31 | The MailConnect feature on D-Link Central WiFiManager CWM-100 1.03 r0098... |
| CVE-2018-18940 | 2019-01-31 | servlet/SnoopServlet (a servlet installed by default) in Netscape Enterprise 3.63... |