CVE List - 2019 / November
Showing 1 - 100 of 1679 CVEs for November 2019 (Page 1 of 17)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-16908 | 2019-11-01 | An issue was discovered in the Infosysta "In-App & Desktop... |
| CVE-2019-16909 | 2019-11-01 | An issue was discovered in the Infosysta "In-App & Desktop... |
| CVE-2019-18636 | 2019-11-01 | A cross-site scripting (XSS) vulnerability in Jitbit .NET Forum (aka... |
| CVE-2013-2600 | 2019-11-01 | MiniUPnPd has information disclosure use of snprintf() |
| CVE-2013-2738 | 2019-11-01 | minidlna has SQL Injection that may allow retrieval of arbitrary... |
| CVE-2013-2739 | 2019-11-01 | MiniDLNA has heap-based buffer overflow |
| CVE-2013-3718 | 2019-11-01 | evince is missing a check on number of pages which... |
| CVE-2013-4751 | 2019-11-01 | php-symfony2-Validator has loss of information during serialization |
| CVE-2005-3056 | 2019-11-01 | TWiki allows arbitrary shell command execution via the Include function |
| CVE-2011-3923 | 2019-11-01 | Apache Struts before 2.3.1.2 allows remote attackers to bypass security... |
| CVE-2012-2979 | 2019-11-01 | FreeBSD NSD before 3.2.13 allows remote attackers to crash a... |
| CVE-2019-15588 | 2019-11-01 | There is an OS Command Injection in Nexus Repository Manager... |
| CVE-2019-6657 | 2019-11-01 | On BIG-IP 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, a reflected cross-site scripting... |
| CVE-2019-6658 | 2019-11-01 | On BIG-IP AFM 15.0.0-15.0.1, 14.0.0-14.1.2, 13.1.0-13.1.3.1, and 12.1.0-12.1.5, a vulnerability... |
| CVE-2019-12752 | 2019-11-01 | The Symantec SONAR component, prior to 12.0.2, may be susceptible... |
| CVE-2013-1666 | 2019-11-01 | Foswiki before 1.1.8 contains a code injection vulnerability in the... |
| CVE-2013-2227 | 2019-11-01 | GLPI 0.83.7 has Local File Inclusion in common.tabs.php. |
| CVE-2010-3660 | 2019-11-01 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and... |
| CVE-2013-4367 | 2019-11-01 | ovirt-engine 3.2 running on Linux kernel 3.1 and newer creates... |
| CVE-2010-3661 | 2019-11-01 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and... |
| CVE-2005-2350 | 2019-11-01 | Cross-site scripting (XSS) vulnerability in websieve v0.62 allows remote attackers... |
| CVE-2013-0165 | 2019-11-01 | cartridges/openshift-origin-cartridge-mongodb-2.2/info/bin/dump.sh in OpenShift does not properly create files in /tmp. |
| CVE-2019-18653 | 2019-11-01 | A Cross Site Scripting (XSS) issue exists in Avast AntiVirus... |
| CVE-2013-0178 | 2019-11-01 | Insecure temporary file vulnerability in Redis before 2.6 related to... |
| CVE-2013-0180 | 2019-11-01 | Insecure temporary file vulnerability in Redis 2.6 related to /tmp/redis.ds. |
| CVE-2019-18654 | 2019-11-01 | A Cross Site Scripting (XSS) issue exists in AVG AntiVirus... |
| CVE-2013-2255 | 2019-11-01 | HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly... |
| CVE-2013-0186 | 2019-11-01 | Multiple cross-site scripting (XSS) vulnerabilities in ManageIQ EVM allows remote... |
| CVE-2005-2351 | 2019-11-01 | Mutt before 1.5.20 patch 7 allows an attacker to cause... |
| CVE-2013-4168 | 2019-11-01 | Cross-site scripting (XSS) vulnerability in SmokePing 2.6.9 in the start... |
| CVE-2005-2352 | 2019-11-01 | I race condition in Temp files was found in gs-gpl... |
| CVE-2019-6470 | 2019-11-01 | dhcpd: use-after-free error leads crash in IPv6 mode when using mismatched BIND libraries |
| CVE-2019-18659 | 2019-11-02 | The Wireless Emergency Alerts (WEA) protocol allows remote attackers to... |
| CVE-2019-18661 | 2019-11-02 | Fastweb FASTGate 1.0.1b devices allow partial authentication bypass by changing... |
| CVE-2019-18662 | 2019-11-02 | An issue was discovered in YouPHPTube through 7.7. User input... |
| CVE-2019-18665 | 2019-11-02 | The Log module in SECUDOS DOMOS before 5.6 allows local... |
| CVE-2019-18664 | 2019-11-02 | The Log module in SECUDOS DOMOS before 5.6 allows XSS. |
| CVE-2019-18667 | 2019-11-02 | /usr/local/www/freeradius_view_config.php in the freeradius3 package before 0.15.7_3 for pfSense on... |
| CVE-2019-18668 | 2019-11-02 | An issue was discovered in the Currency Switcher addon before... |
| CVE-2019-18673 | 2019-11-02 | On SHIFT BitBox02 devices, a side channel for the row-based... |
| CVE-2019-14358 | 2019-11-02 | On Archos Safe-T devices, a side channel for the row-based... |
| CVE-2019-14360 | 2019-11-02 | On Hyundai Pay Kasse HK-1000 devices, a side channel for... |
| CVE-2013-4412 | 2019-11-04 | slim has NULL pointer dereference when using crypt() method from... |
| CVE-2013-4423 | 2019-11-04 | CloudForms stores user passwords in recoverable format |
| CVE-2013-4518 | 2019-11-04 | RHUI (Red Hat Update Infrastructure) 2.1.3 has world readable PKI... |
| CVE-2014-3649 | 2019-11-04 | JBoss AeroGear has reflected XSS via the password field |
| CVE-2019-18680 | 2019-11-04 | An issue was discovered in the Linux kernel 4.4.x before... |
| CVE-2019-0350 | 2019-11-04 | SAP HANA Database, versions 1.0, 2.0, allows an unauthorized attacker... |
| CVE-2013-4103 | 2019-11-04 | Cryptocat before 2.0.22 has Remote Script Injection due to improperly... |
| CVE-2018-19031 | 2019-11-04 | A command injection vulnerability exists when the authorized user passes... |
| CVE-2013-4102 | 2019-11-04 | Cryptocat before 2.0.22 strophe.js Math.random() Random Number Generator Weakness |
| CVE-2013-4101 | 2019-11-04 | Cryptocat before 2.0.22 Link Markup Decorator HTML Handling Weakness |
| CVE-2013-4100 | 2019-11-04 | Cryptocat before 2.0.22 has Remote Denial of Service via username |
| CVE-2019-18683 | 2019-11-04 | An issue was discovered in drivers/media/platform/vivid in the Linux kernel... |
| CVE-2013-4104 | 2019-11-04 | Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire... |
| CVE-2013-2261 | 2019-11-04 | Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure |
| CVE-2013-2262 | 2019-11-04 | Cryptocat strophe.js before 2.0.22 has information disclosure |
| CVE-2019-18684 | 2019-11-04 | Sudo through 1.8.29 allows local users to escalate to root... |
| CVE-2013-2260 | 2019-11-04 | Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness |
| CVE-2013-4105 | 2019-11-04 | Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure |
| CVE-2013-2259 | 2019-11-04 | Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation... |
| CVE-2013-2258 | 2019-11-04 | Cryptocat before 2.0.22 has Nickname User Impersonation |
| CVE-2013-2257 | 2019-11-04 | Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation... |
| CVE-2019-13496 | 2019-11-04 | One Identity Cloud Access Manager before 8.1.4 Hotfix 1 allows... |
| CVE-2019-13497 | 2019-11-04 | One Identity Cloud Access Manager before 8.1.4 Hotfix 1 allows... |
| CVE-2005-4890 | 2019-11-04 | There is a possible tty hijacking in shadow 4.x before... |
| CVE-2013-4280 | 2019-11-04 | Insecure temporary file vulnerability in RedHat vsdm 4.9.6. |
| CVE-2019-18663 | 2019-11-04 | A SQL injection vulnerability in a /login/forgot1 POST request in... |
| CVE-2013-4251 | 2019-11-04 | The scipy.weave component in SciPy before 0.12.1 creates insecure temporary... |
| CVE-2019-18178 | 2019-11-04 | Real Time Engineers FreeRTOS+FAT 160919a has a use after free.... |
| CVE-2019-17210 | 2019-11-04 | A denial-of-service issue was discovered in the MQTT library in... |
| CVE-2017-5333 | 2019-11-04 | Integer overflow in the extract_group_icon_cursor_resource function in b/wrestool/extract.c in icoutils... |
| CVE-2017-5331 | 2019-11-04 | Integer overflow in the check_offset function in b/wrestool/fileread.c in icoutils... |
| CVE-2017-5332 | 2019-11-04 | The extract_group_icon_cursor_resource in wrestool/extract.c in icoutils before 0.31.1 can access... |
| CVE-2015-8980 | 2019-11-04 | The plural form formula in ngettext family of calls in... |
| CVE-2013-4409 | 2019-11-04 | An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21... |
| CVE-2010-3662 | 2019-11-04 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and... |
| CVE-2013-4374 | 2019-11-04 | An insecurity temporary file vulnerability exists in RHQ Mongo DB... |
| CVE-2010-3663 | 2019-11-04 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and... |
| CVE-2010-3664 | 2019-11-04 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and... |
| CVE-2010-3665 | 2019-11-04 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and... |
| CVE-2010-3666 | 2019-11-04 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and... |
| CVE-2010-3667 | 2019-11-04 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and... |
| CVE-2010-3668 | 2019-11-04 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and... |
| CVE-2010-3669 | 2019-11-04 | TYPO3 before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1... |
| CVE-2019-3685 | 2019-11-05 | Missing TLS certificate validation for HTTPS connections in osc |
| CVE-2019-10223 | 2019-11-05 | A security issue was discovered in the kube-state-metrics versions v1.7.0... |
| CVE-2013-4107 | 2019-11-05 | Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting |
| CVE-2013-4110 | 2019-11-05 | Cryptocat has an Unspecified Chat Participant User List Disclosure |
| CVE-2016-1000002 | 2019-11-05 | gdm3 3.14.2 and possibly later has an information leak before... |
| CVE-2019-17221 | 2019-11-05 | PhantomJS through 2.1.1 has an arbitrary file read vulnerability, as... |
| CVE-2013-6364 | 2019-11-05 | Horde Groupware Webmail Edition has CSRF and XSS when saving... |
| CVE-2013-6365 | 2019-11-05 | Horde Groupware Web mail 5.1.2 has CSRF with requests to... |
| CVE-2013-6460 | 2019-11-05 | Nokogiri gem 1.5.x has Denial of Service via infinite loop... |
| CVE-2013-6461 | 2019-11-05 | Nokogiri gem 1.5.x and 1.6.x has DoS while parsing XML... |
| CVE-2019-17598 | 2019-11-05 | An issue was discovered in Lightbend Play Framework 2.5.x through... |
| CVE-2019-17212 | 2019-11-05 | Buffer overflows were discovered in the CoAP library in Arm... |
| CVE-2019-17211 | 2019-11-05 | An integer overflow was discovered in the CoAP library in... |
| CVE-2019-17062 | 2019-11-05 | An issue was discovered in OXID eShop 6.x before 6.0.6... |
| CVE-2019-18631 | 2019-11-05 | The Windows component of Centrify Authentication and Privilege Elevation Services... |