CVE List - 2019 / October
Showing 501 - 600 of 1566 CVEs for October 2019 (Page 6 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-1327 | 2019-10-10 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID... |
| CVE-2019-1328 | 2019-10-10 | A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. |
| CVE-2019-1329 | 2019-10-10 | An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Elevation of Privilege... |
| CVE-2019-1330 | 2019-10-10 | An elevation of privilege vulnerability exists in Microsoft SharePoint, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1329. |
| CVE-2019-1331 | 2019-10-10 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID... |
| CVE-2019-1333 | 2019-10-10 | A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. |
| CVE-2019-1334 | 2019-10-10 | An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1345. |
| CVE-2019-1335 | 2019-10-10 | A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE... |
| CVE-2019-1336 | 2019-10-10 | An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'. This CVE... |
| CVE-2019-1337 | 2019-10-10 | An information disclosure vulnerability exists when Windows Update Client fails to properly handle objects in memory, aka 'Windows Update Client Information Disclosure Vulnerability'. |
| CVE-2019-1338 | 2019-10-10 | A security feature bypass vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLMv2 protection if a client is also sending LMv2 responses, aka... |
| CVE-2019-1339 | 2019-10-10 | An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from... |
| CVE-2019-1340 | 2019-10-10 | An elevation of privilege vulnerability exists in Windows AppX Deployment Server that allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to... |
| CVE-2019-1341 | 2019-10-10 | An elevation of privilege vulnerability exists when umpo.dll of the Power Service, improperly handles a Registry Restore Key function, aka 'Windows Power Service Elevation of Privilege Vulnerability'. |
| CVE-2019-1342 | 2019-10-10 | An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique... |
| CVE-2019-1343 | 2019-10-10 | A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-1346, CVE-2019-1347. |
| CVE-2019-1344 | 2019-10-10 | An information disclosure vulnerability exists in the way that the Windows Code Integrity Module handles objects in memory, aka 'Windows Code Integrity Module Information Disclosure Vulnerability'. |
| CVE-2019-1322 | 2019-10-10 | An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1320, CVE-2019-1340. |
| CVE-2019-1345 | 2019-10-10 | An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1334. |
| CVE-2019-1346 | 2019-10-10 | A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-1343, CVE-2019-1347. |
| CVE-2019-1347 | 2019-10-10 | A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-1343, CVE-2019-1346. |
| CVE-2019-1356 | 2019-10-10 | An information disclosure vulnerability exists when Microsoft Edge based on Edge HTML improperly handles objects in memory, aka 'Microsoft Edge based on Edge HTML Information Disclosure Vulnerability'. |
| CVE-2019-1357 | 2019-10-10 | A spoofing vulnerability exists when Microsoft Browsers improperly handle browser cookies, aka 'Microsoft Browser Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-0608. |
| CVE-2019-1358 | 2019-10-10 | A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique... |
| CVE-2019-1359 | 2019-10-10 | A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique... |
| CVE-2019-1361 | 2019-10-10 | An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Information Disclosure Vulnerability'. |
| CVE-2019-1362 | 2019-10-10 | An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is... |
| CVE-2019-1363 | 2019-10-10 | An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, allowing an attacker to retrieve information from a targeted system, aka... |
| CVE-2019-1364 | 2019-10-10 | An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is... |
| CVE-2019-1365 | 2019-10-10 | An elevation of privilege vulnerability exists when Microsoft IIS Server fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploited this vulnerability... |
| CVE-2019-1366 | 2019-10-10 | A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE... |
| CVE-2019-1368 | 2019-10-10 | A security feature bypass exists when Windows Secure Boot improperly restricts access to debugging functionality, aka 'Windows Secure Boot Security Feature Bypass Vulnerability'. |
| CVE-2019-1369 | 2019-10-10 | An information disclosure vulnerability exists when affected Open Enclave SDK versions improperly handle objects in memory, aka 'Open Enclave SDK Information Disclosure Vulnerability'. |
| CVE-2019-1371 | 2019-10-10 | A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer Memory Corruption Vulnerability'. |
| CVE-2019-1372 | 2019-10-10 | An remote code execution vulnerability exists when Azure App Service/ Antares on Azure Stack fails to check the length of a buffer prior to copying memory to it.An attacker who... |
| CVE-2019-1375 | 2019-10-10 | A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server, aka 'Microsoft Dynamics 365 (On-Premise)... |
| CVE-2019-1376 | 2019-10-10 | An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when it improperly enforces permissions, aka 'SQL Server Management Studio Information Disclosure Vulnerability'. This CVE ID is unique... |
| CVE-2019-1378 | 2019-10-10 | An elevation of privilege vulnerability exists in Windows 10 Update Assistant in the way it handles permissions.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows... |
| CVE-2019-10923 | 2019-10-10 | An attacker with network access to an affected product may cause a denial of service condition by breaking the real-time synchronization (IRT) of the affected installation. |
| CVE-2019-13921 | 2019-10-10 | A vulnerability has been identified in SIMATIC WinAC RTX (F) 2010 (All versions < SP3 Update 1). Affected versions of the software contain a vulnerability that could allow an unauthenticated... |
| CVE-2019-13929 | 2019-10-10 | A vulnerability has been identified in SIMATIC IT UADM (All versions < V1.3). An authenticated remote attacker with network access to port 1434/tcp of SIMATIC IT UADM could potentially recover... |
| CVE-2019-4265 | 2019-10-10 | IBM Maximo Anywhere 7.6.0, 7.6.1, 7.6.2, and 7.6.3 does not have device root detection which could result in an attacker gaining sensitive information about the device. IBM X-Force ID: 160198. |
| CVE-2019-17320 | 2019-10-10 | NetSarang XFTP Client 6.0149 and earlier version contains a buffer overflow vulnerability caused by improper boundary checks when copying file name from an attacker controlled FTP server. That leads attacker... |
| CVE-2015-9457 | 2019-10-10 | The pretty-link plugin before 1.6.8 for WordPress has PrliLinksController::list_links SQL injection via the group parameter. |
| CVE-2015-9458 | 2019-10-10 | The searchterms-tagging-2 plugin through 1.535 for WordPress has SQL injection via the pk_stt2_db_get_popular_terms count parameter exploitable via CSRF. |
| CVE-2015-9459 | 2019-10-10 | The searchterms-tagging-2 plugin through 1.535 for WordPress has XSS via the wp-admin/options-general.php count parameter. |
| CVE-2015-9460 | 2019-10-10 | The booking-system plugin before 2.1 for WordPress has DOPBSPBackEndTranslation::display SQL injection via the language parameter. |
| CVE-2015-9461 | 2019-10-10 | The awesome-filterable-portfolio plugin before 1.9 for WordPress has afp_get_new_portfolio_item_page SQL injection via the item_id parameter. |
| CVE-2015-9462 | 2019-10-10 | The awesome-filterable-portfolio plugin before 1.9 for WordPress has afp_get_new_category_page SQL injection via the cat_id parameter. |
| CVE-2019-17449 | 2019-10-10 | Avira Software Updater before 2.0.6.21094 allows a DLL side-loading attack. NOTE: The vendor thinks that this vulnerability is invalid because exploiting it would require at least administrator privileges and would... |
| CVE-2015-9464 | 2019-10-10 | The s3bubble-amazon-s3-html-5-video-with-adverts plugin 0.7 for WordPress has directory traversal via the adverts/assets/plugins/ultimate/content/downloader.php path parameter. |
| CVE-2015-9465 | 2019-10-10 | The yet-another-stars-rating plugin before 0.9.1 for WordPress has yasr_get_multi_set_values_and_field SQL injection via the set_id parameter. |
| CVE-2015-9466 | 2019-10-10 | The wti-like-post plugin before 1.4.3 for WordPress has WtiLikePostProcessVote SQL injection via the HTTP_CLIENT_IP, HTTP_X_FORWARDED_FOR, HTTP_X_FORWARDED, HTTP_FORWARDED_FOR, or HTTP_FORWARDED variable. |
| CVE-2015-9467 | 2019-10-10 | The broken-link-manager plugin before 0.5.0 for WordPress has wpslDelURL or wpslEditURL SQL injection via the url parameter. |
| CVE-2015-9468 | 2019-10-10 | The broken-link-manager plugin 0.4.5 for WordPress has XSS via the page parameter in a delURL action. |
| CVE-2015-9469 | 2019-10-10 | The content-grabber plugin 1.0 for WordPress has XSS via obj_field_name or obj_field_id. |
| CVE-2015-9470 | 2019-10-10 | The history-collection plugin through 1.1.1 for WordPress has directory traversal via the download.php var parameter. |
| CVE-2015-9463 | 2019-10-10 | The s3bubble-amazon-s3-audio-streaming plugin 2.0 for WordPress has directory traversal via the adverts/assets/plugins/ultimate/content/downloader.php path parameter. |
| CVE-2015-9471 | 2019-10-10 | The dzs-zoomsounds plugin through 2.0 for WordPress has admin/upload.php arbitrary file upload. |
| CVE-2015-9472 | 2019-10-10 | The incoming-links plugin before 0.9.10b for WordPress has referrers.php XSS via the Referer HTTP header. |
| CVE-2015-9473 | 2019-10-10 | The estrutura-basica theme through 2015-09-13 for WordPress has directory traversal via the scripts/download.php arquivo parameter. |
| CVE-2015-9474 | 2019-10-10 | The Simpolio theme 1.3.2 for WordPress has insufficient restrictions on option updates. |
| CVE-2015-9475 | 2019-10-10 | The Pont theme 1.5 for WordPress has insufficient restrictions on option updates. |
| CVE-2015-9476 | 2019-10-10 | The Teardrop theme 1.8.1 for WordPress has insufficient restrictions on option updates. |
| CVE-2015-9477 | 2019-10-10 | The Vernissage theme 1.2.8 for WordPress has insufficient restrictions on option updates. |
| CVE-2015-9478 | 2019-10-10 | prettyPhoto before 3.1.6 has js/jquery.prettyPhoto.js XSS. |
| CVE-2019-17451 | 2019-10-10 | An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an integer overflow leading to a SEGV in _bfd_dwarf2_find_nearest_line... |
| CVE-2015-9479 | 2019-10-10 | The ACF-Frontend-Display plugin through 2015-07-03 for WordPress has arbitrary file upload via an action=upload request to js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php. |
| CVE-2019-17450 | 2019-10-10 | find_abstract_instance in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32, allows remote attackers to cause a denial of service (infinite recursion and... |
| CVE-2015-9480 | 2019-10-10 | The RobotCPA plugin 5 for WordPress has directory traversal via the f.php l parameter. |
| CVE-2019-5527 | 2019-10-10 | ESXi, Workstation, Fusion, VMRC and Horizon Client contain a use-after-free vulnerability in the virtual sound device. VMware has evaluated the severity of this issue to be in the Important severity... |
| CVE-2019-5535 | 2019-10-10 | VMware Workstation and Fusion contain a network denial-of-service vulnerability due to improper handling of certain IPv6 packets. VMware has evaluated the severity of this issue to be in the Moderate... |
| CVE-2019-17454 | 2019-10-10 | Bento4 1.5.1.0 has a NULL pointer dereference in AP4_Descriptor::GetTag in Core/Ap4Descriptor.h, related to AP4_StsdAtom::GetSampleDescription in Core/Ap4StsdAtom.cpp, as demonstrated by mp4info. |
| CVE-2019-17453 | 2019-10-10 | Bento4 1.5.1.0 has a NULL pointer dereference in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, related to AP4_IodsAtom::WriteFields in Core/Ap4IodsAtom.cpp, as demonstrated by mp4encrypt or mp4compact. |
| CVE-2019-17452 | 2019-10-10 | Bento4 1.5.1.0 has a NULL pointer dereference in AP4_DescriptorListInspector::Action in Core/Ap4Descriptor.h, related to AP4_IodsAtom::InspectFields in Core/Ap4IodsAtom.cpp, as demonstrated by mp4dump. |
| CVE-2019-17455 | 2019-10-10 | Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for... |
| CVE-2019-14810 | 2019-10-10 | A vulnerability has been found in the implementation of the Label Distribution Protocol (LDP) protocol in EOS. Under race conditions, the LDP agent can establish an LDP session with a... |
| CVE-2019-11526 | 2019-10-10 | An issue was discovered in Softing uaGate SI 1.60.01. A maintenance script, that is executable via sudo, is vulnerable to file path injection. This enables the Attacker to write files... |
| CVE-2019-15051 | 2019-10-10 | An issue was discovered in Softing uaGate (SI, MB, 840D) firmware through 1.71.00.1225. A CGI script is vulnerable to command injection via a maliciously crafted form parameter. |
| CVE-2019-11528 | 2019-10-10 | An issue was discovered in Softing uaGate SI 1.60.01. A system default path for executables is user writable. |
| CVE-2019-11527 | 2019-10-10 | An issue was discovered in Softing uaGate SI 1.60.01. A CGI script is vulnerable to command injection with a maliciously crafted url parameter. |
| CVE-2019-17386 | 2019-10-10 | The animate-it plugin before 2.3.6 for WordPress has CSRF in edsanimate.php. |
| CVE-2019-9529 | 2019-10-10 | The web application portal of the Cobham EXPLORER 710, firmware version 1.07, has no authentication by default |
| CVE-2019-9530 | 2019-10-10 | The web root directory of the Cobham EXPLORER 710, firmware version 1.07, has no access restrictions on downloading and reading all files |
| CVE-2019-9531 | 2019-10-10 | The web application portal of the Cobham EXPLORER 710, firmware version 1.07, allows unauthenticated access to a port that can run AT commands |
| CVE-2019-9532 | 2019-10-10 | The web application portal of the Cobham EXPLORER 710, firmware version 1.07, sends the login password in cleartext |
| CVE-2019-9533 | 2019-10-10 | The root password of the Cobham EXPLORER 710 is the same for all versions of firmware up to and including v1.08 |
| CVE-2019-9534 | 2019-10-10 | The Cobham EXPLORER 710, firmware version 1.07, does not validate its firmware image |
| CVE-2019-17494 | 2019-10-10 | laravel-bjyblog 6.1.1 has XSS via a crafted URL. |
| CVE-2019-17493 | 2019-10-10 | Jiangnan Online Judge (aka jnoj) 0.8.0 has XSS via the Problem[sample_input] parameter to web/admin/problem/create or web/polygon/problem/update. |
| CVE-2019-17491 | 2019-10-10 | Jiangnan Online Judge (aka jnoj) 0.8.0 has XSS via the Problem[description] parameter to web/admin/problem/create or web/polygon/problem/update. |
| CVE-2019-17490 | 2019-10-10 | app\modules\polygon\controllers\ProblemController in Jiangnan Online Judge (aka jnoj) 0.8.0 allows arbitrary file upload, as demonstrated by PHP code (with a .php filename but the image/png content type) to the web/polygon/problem/tests URI. |
| CVE-2019-17489 | 2019-10-10 | Jiangnan Online Judge (aka jnoj) 0.8.0 has XSS via the Problem[title] parameter to web/polygon/problem/create or web/polygon/problem/update or web/admin/problem/create. |
| CVE-2019-17488 | 2019-10-10 | b3log Symphony (aka Sym) before 3.6.0 has XSS via the HTTP User-Agent header. |
| CVE-2019-17495 | 2019-10-10 | A Cascading Style Sheets (CSS) injection vulnerability in Swagger UI before 3.23.11 allows attackers to use the Relative Path Overwrite (RPO) technique to perform CSS-based input field value exfiltration, such... |
| CVE-2019-17496 | 2019-10-10 | Craft CMS before 3.3.8 has stored XSS via a name field. This field is mishandled during site deletion. |
| CVE-2019-17497 | 2019-10-10 | Tracker PDF-XChange Editor before 8.0.330.0 has an NTLM SSO hash theft vulnerability using crafted FDF or XFDF files (a related issue to CVE-2018-4993). For example, an NTLM hash is sent... |
| CVE-2019-17499 | 2019-10-11 | The setter.xml component of the Common Gateway Interface on Compal CH7465LG 6.12.18.25-2p4 devices does not properly validate ping command arguments, which allows remote authenticated users to execute OS commands as... |
| CVE-2010-5340 | 2019-10-11 | IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/ with the parameter password is non-persistent in 10.2.0. |
| CVE-2010-5339 | 2019-10-11 | IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter _dlg[captcha][uid] is non-persistent in 10.1.3 and 10.2.0. |