CVE List - 2019 / November
Showing 301 - 400 of 1679 CVEs for November 2019 (Page 4 of 17)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2014-3180 | 2019-11-06 | In kernel/compat.c in the Linux kernel before 3.17, as used in Google Chrome OS and other products, there is a possible out-of-bounds read. restart_syscall uses uninitialized data when restarting compat_sys_nanosleep.... |
| CVE-2019-5084 | 2019-11-06 | An exploitable heap out-of-bounds write vulnerability exists in the TIF-parsing functionality of LEADTOOLS 20. A specially crafted TIF image can cause an offset beyond the bounds of a heap allocation... |
| CVE-2019-5099 | 2019-11-06 | An exploitable integer underflow vulnerability exists in the CMP-parsing functionality of LEADTOOLS 20. A specially crafted CMP image file can cause an integer underflow, potentially resulting in code execution. An... |
| CVE-2019-5125 | 2019-11-06 | An exploitable heap overflow vulnerability exists in the JPEG2000 parsing functionality of LEADTOOLS 20. A specially crafted J2K image file can cause an out of bounds write of a heap... |
| CVE-2019-5100 | 2019-11-06 | An exploitable integer overflow vulnerability exists in the BMP header parsing functionality of LEADTOOLS 20. A specially crafted BMP image file can cause an integer overflow, potentially resulting in code... |
| CVE-2009-5045 | 2019-11-06 | Dump Servlet information leak in jetty before 6.1.22. |
| CVE-2009-5046 | 2019-11-06 | JSP Dump and Session Dump Servlet XSS in jetty before 6.1.22. |
| CVE-2019-12406 | 2019-11-06 | Apache CXF before 3.3.4 and 3.2.11 does not restrict the number of message attachments present in a given message. This leaves open the possibility of a denial of service type... |
| CVE-2011-2808 | 2019-11-06 | A stale layout root is set as an input element in WebKit in Google Chrome before Blink M13 when a child of a keygen with autofocus is accessed. |
| CVE-2019-12419 | 2019-11-06 | Apache CXF before 3.3.4 and 3.2.11 provides all of the components that are required to build a fully fledged OpenId Connect service. There is a vulnerability in the access token... |
| CVE-2014-9014 | 2019-11-06 | Directory traversal vulnerability in the ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin before 2.4.1 for WordPress allows remote authenticated users to download arbitrary files via a .. (dot... |
| CVE-2014-9013 | 2019-11-06 | The ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin 2.4.0 for WordPress allows remote authenticated users to create arbitrary users and gain admin privileges via a request to wpmp_pp_ajax_call... |
| CVE-2019-18411 | 2019-11-06 | Zoho ManageEngine ADSelfService Plus 5.x through 5803 has CSRF on the users' profile information page. Users who are attacked with this vulnerability will be forced to modify their enrolled information,... |
| CVE-2019-16400 | 2019-11-06 | Samsung Galaxy S8 plus (Android version: 8.0.0, Build Number: R16NW.G955USQU5CRG3, Baseband Vendor: Qualcomm Snapdragon 835, Baseband: G955USQU5CRG3), Samsung Galaxy S3 (Android version: 4.3, Build Number: JSS15J.I9300XXUGND5, Baseband Vendor: Samsung Exynos... |
| CVE-2019-16401 | 2019-11-06 | Samsung Galaxy S8 plus (Android version: 8.0.0, Build Number: R16NW.G955USQU5CRG3, Baseband Vendor: Qualcomm Snapdragon 835, Baseband: G955USQU5CRG3), Samsung Galaxy S3 (Android version: 4.3, Build Number: JSS15J.I9300XXUGND5, Baseband Vendor: Samsung Exynos... |
| CVE-2019-15003 | 2019-11-07 | The Customer Context Filter in Atlassian Jira Service Desk Server and Jira Service Desk Data Center before 3.9.17, from 3.10.0 before 3.16.10, from 4.0.0 before 4.2.6, from 4.3.0 before 4.3.5,... |
| CVE-2019-15004 | 2019-11-07 | The Customer Context Filter in Atlassian Jira Service Desk Server and Jira Service Desk Data Center before 3.9.17, from 3.10.0 before 3.16.10, from 4.0.0 before 4.2.6, from 4.3.0 before 4.3.5,... |
| CVE-2019-18804 | 2019-11-07 | DjVuLibre 3.5.27 has a NULL pointer dereference in the function DJVU::filter_fv at IW44EncodeCodec.cpp. |
| CVE-2019-18805 | 2019-11-07 | An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen,... |
| CVE-2019-12331 | 2019-11-07 | PHPOffice PhpSpreadsheet before 1.8.0 has an XXE issue. The XmlScanner decodes the sheet1.xml from an .xlsx to utf-8 if something else than UTF-8 is declared in the header. This was... |
| CVE-2019-6337 | 2019-11-07 | For the printers listed a maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device. |
| CVE-2019-16873 | 2019-11-07 | Portainer before 1.22.1 has XSS (issue 1 of 2). |
| CVE-2019-16874 | 2019-11-07 | Portainer before 1.22.1 has Incorrect Access Control (issue 2 of 4). |
| CVE-2019-17222 | 2019-11-07 | An issue was discovered on Intelbras WRN 150 1.0.17 devices. There is stored XSS in the Service Name tab of the WAN configuration screen, leading to a denial of service... |
| CVE-2019-16872 | 2019-11-07 | Portainer before 1.22.1 has Incorrect Access Control (issue 1 of 4). |
| CVE-2019-16876 | 2019-11-07 | Portainer before 1.22.1 allows Directory Traversal. |
| CVE-2019-16878 | 2019-11-07 | Portainer before 1.22.1 has XSS (issue 2 of 2). |
| CVE-2019-16877 | 2019-11-07 | Portainer before 1.22.1 has Incorrect Access Control (issue 4 of 4). |
| CVE-2019-17605 | 2019-11-07 | A mass assignment vulnerability in eyecomms eyeCMS through 2019-10-15 allows any candidate to take over another candidate's account (by also exploiting CVE-2019-17604) via a modified candidate id and an additional... |
| CVE-2019-17604 | 2019-11-07 | An Insecure Direct Object Reference (IDOR) vulnerability in eyecomms eyeCMS through 2019-10-15 allows any candidate to change other candidates' personal information (first name, last name, email, CV, phone number, and... |
| CVE-2019-18814 | 2019-11-07 | An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aa_label_parse() fails in aa_audit_rule_init() in security/apparmor/audit.c. |
| CVE-2019-18813 | 2019-11-07 | A memory leak in the dwc3_pci_probe() function in drivers/usb/dwc3/dwc3-pci.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering platform_device_add_properties() failures, aka... |
| CVE-2019-18812 | 2019-11-07 | A memory leak in the sof_dfsentry_write() function in sound/soc/sof/debug.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-c0a333d842ef. |
| CVE-2019-18811 | 2019-11-07 | A memory leak in the sof_set_get_large_ctrl_data() function in sound/soc/sof/ipc.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering sof_get_ctrl_copy_params() failures, aka... |
| CVE-2019-18810 | 2019-11-07 | A memory leak in the komeda_wb_connector_add() function in drivers/gpu/drm/arm/display/komeda/komeda_wb_connector.c in the Linux kernel before 5.3.8 allows attackers to cause a denial of service (memory consumption) by triggering drm_writeback_connector_init() failures, aka... |
| CVE-2019-18809 | 2019-11-07 | A memory leak in the af9005_identify_state() function in drivers/media/usb/dvb-usb/af9005.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-2289adbfa559. |
| CVE-2019-18808 | 2019-11-07 | A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429247. |
| CVE-2019-18807 | 2019-11-07 | Two memory leaks in the sja1105_static_config_upload() function in drivers/net/dsa/sja1105/sja1105_spi.c in the Linux kernel before 5.3.5 allow attackers to cause a denial of service (memory consumption) by triggering static_config_buf_prepare_for_upload() or sja1105_inhibit_tx()... |
| CVE-2019-18806 | 2019-11-07 | A memory leak in the ql_alloc_large_buffers() function in drivers/net/ethernet/qlogic/qla3xxx.c in the Linux kernel before 5.3.5 allows local users to cause a denial of service (memory consumption) by triggering pci_dma_mapping_error() failures,... |
| CVE-2019-18816 | 2019-11-07 | po-admin/route.php?mod=post&act=edit in PopojiCMS 2.0.1 allows post[1][content]= stored XSS. |
| CVE-2019-18815 | 2019-11-07 | PopojiCMS 2.0.1 allows refer= Open Redirection. |
| CVE-2011-2807 | 2019-11-07 | Incorrect handling of timer information in Timer.cpp in WebKit in Google Chrome before Blink M13. |
| CVE-2011-2353 | 2019-11-07 | Use after free vulnerability in documentloader in WebKit in Google Chrome before Blink M13 in DocumentWriter::replaceDocument function. |
| CVE-2010-2243 | 2019-11-07 | A vulnerability exists in kernel/time/clocksource.c in the Linux kernel before 2.6.34 where on non-GENERIC_TIME systems (GENERIC_TIME=n), accessing /sys/devices/system/clocksource/clocksource0/current_clocksource results in an OOPS. |
| CVE-2011-2337 | 2019-11-07 | A wrong type is used for a return value from strlen in WebKit in Google Chrome before Blink M12 on 64-bit platforms. |
| CVE-2012-0049 | 2019-11-07 | OpenTTD before 1.1.5 contains a Denial of Service (slow read attack) that prevents users from joining the server. |
| CVE-2012-0051 | 2019-11-07 | Tahoe-LAFS 1.9.0 fails to ensure integrity which allows remote attackers to corrupt mutable files or directories upon retrieval. |
| CVE-2011-2336 | 2019-11-07 | An issue exists in WebKit in Google Chrome before Blink M12. when clearing lists in AnimationControllerPrivate that signal when a hardware animation starts. |
| CVE-2010-2250 | 2019-11-07 | Drupal 5.x and 6.x before 6.16 uses a user-supplied value in output during site installation which could allow an attacker to craft a URL and perform a cross-site scripting attack. |
| CVE-2010-2472 | 2019-11-07 | Locale module and dependent contributed modules in Drupal 6.x before 6.16 and 5.x before version 5.22 do not sanitize the display of language codes, native and English language names properly... |
| CVE-2019-3764 | 2019-11-07 | Dell EMC iDRAC7 versions prior to 2.65.65.65, iDRAC8 versions prior to 2.70.70.70 and iDRAC9 versions prior to 3.36.36.36 contain an improper authorization vulnerability. A remote authenticated malicious iDRAC user with... |
| CVE-2010-2473 | 2019-11-07 | Drupal 6.x before 6.16 and 5.x before version 5.22 does not properly block users under certain circumstances. A user with an open session that was blocked could maintain their session... |
| CVE-2019-11996 | 2019-11-07 | Potential security vulnerabilities have been identified with HPE Nimble Storage systems in multi array group configurations. The vulnerabilities could be exploited by an attacker to gain elevated privileges on the... |
| CVE-2019-3465 | 2019-11-07 | Rob Richards XmlSecLibs, all versions prior to v3.0.3, as used for example by SimpleSAMLphp, performed incorrect validation of cryptographic signatures in XML messages, allowing an authenticated attacker to impersonate others... |
| CVE-2019-3422 | 2019-11-07 | The Sec Consult Security Lab reported an information disclosure vulnerability in MF910S product to ZTE PSIRT in October 2019. Through the analysis of related product team, the information disclosure vulnerability... |
| CVE-2010-2447 | 2019-11-07 | gitolite before 1.4.1 does not filter src/ or hooks/ from path names. |
| CVE-2010-2449 | 2019-11-07 | Gource through 0.26 logs to a predictable file name (/tmp/gource-$UID.tmp), enabling attackers to overwrite an arbitrary file via a symlink attack. |
| CVE-2010-2450 | 2019-11-07 | The keygen.sh script in Shibboleth SP 2.0 (located in /usr/local/etc/shibboleth by default) uses OpenSSL to create a DES private key which is placed in sp-key.pm. It relies on the root... |
| CVE-2010-2476 | 2019-11-07 | syscp 1.4.2.1 allows attackers to add arbitrary paths via the documentroot of a domain by appending a colon to it and setting the open basedir path to use that domain... |
| CVE-2013-1425 | 2019-11-07 | ldap-git-backup before 1.0.4 exposes password hashes due to incorrect directory permissions. |
| CVE-2019-18820 | 2019-11-07 | Eximious Logo Designer 3.82 has Heap Corruption starting at ntdll!RtlpNtMakeTemporaryKey+0x0000000000001a78. |
| CVE-2019-18821 | 2019-11-07 | Eximious Logo Designer 3.82 has a User Mode Write AV starting at ExiCustomPathLib!ExiCustomPathLib::CGradientColorsProfile::BuildGradientColorsTable+0x0000000000000053. |
| CVE-2019-18819 | 2019-11-07 | Eximious Logo Designer 3.82 has a User Mode Write AV starting at ExiVectorRender!StrokeText_Blend+0x00000000000003a7. |
| CVE-2013-1426 | 2019-11-07 | Cross-site Scripting (XSS) in Mahara before 1.5.9 and 1.6.x before 1.6.4 allows remote attackers to inject arbitrary web script or HTML via the TinyMCE editor. |
| CVE-2018-18674 | 2019-11-07 | GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "board tail contents" parameter, aka the adm/board_form_update.php bo_content_tail parameter. |
| CVE-2019-18818 | 2019-11-07 | strapi before 3.0.0-beta.17.5 mishandles password resets within packages/strapi-admin/controllers/Auth.js and packages/strapi-plugin-users-permissions/controllers/Auth.js. |
| CVE-2007-3732 | 2019-11-07 | In Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc calls a C function without ensuring that the segments are set properly. The kernel's %fs needs to be restored before... |
| CVE-2007-3915 | 2019-11-07 | Mondo 2.24 has insecure handling of temporary files. |
| CVE-2013-1429 | 2019-11-07 | Lintian before 2.5.12 allows remote attackers to gather information about the "host" system using crafted symlinks. |
| CVE-2013-1751 | 2019-11-07 | TWiki before 5.1.4 allows remote attackers to execute arbitrary shell commands by sending a crafted '%MAKETEXT{}%' parameter value containing Perl backtick characters. |
| CVE-2007-5743 | 2019-11-07 | viewvc 1.0.3 allows improper access control to files in a repository when using the "forbidden" configuration option. |
| CVE-2013-1771 | 2019-11-07 | The web server Monkeyd produces a world-readable log (/var/log/monkeyd/master.log) on gentoo. |
| CVE-2007-6745 | 2019-11-07 | clamav 0.91.2 suffers from a floating point exception when using ScanOLE2. |
| CVE-2013-1809 | 2019-11-07 | Gambas before 3.4.0 allows remote attackers to move or manipulate directory contents or perform symlink attacks due to the creation of insecure temporary directories. |
| CVE-2013-1811 | 2019-11-07 | An access control issue in MantisBT before 1.2.13 allows users with "Reporter" permissions to change any issue to "New". |
| CVE-2008-3278 | 2019-11-07 | frysk packages through 2008-08-05 as shipped in Red Hat Enterprise Linux 5 are built with an insecure RPATH set in the ELF header of multiple binaries in /usr/bin/f* (e.g. fcore,... |
| CVE-2019-18835 | 2019-11-07 | Matrix Synapse before 1.5.0 mishandles signature checking on some federation APIs. Events sent over /send_join, /send_leave, and /invite may not be correctly signed, or may not come from the expected... |
| CVE-2008-5083 | 2019-11-07 | In JON 2.1.x before 2.1.2 SP1, users can obtain unauthorized security information about private resources managed by JBoss ON. |
| CVE-2008-7272 | 2019-11-07 | FireGPG before 0.6 handle user’s passphrase and decrypted cleartext insecurely by writing pre-encrypted cleartext and the user's passphrase to disk which may result in the compromise of secure communication or... |
| CVE-2008-7291 | 2019-11-07 | gri before 2.12.18 generates temporary files in an insecure way. |
| CVE-2019-15005 | 2019-11-08 | The Atlassian Troubleshooting and Support Tools plugin prior to version 1.17.2 allows an unprivileged user to initiate periodic log scans and send the results to a user-specified email address due... |
| CVE-2013-1820 | 2019-11-08 | tuned before 2.x allows local users to kill running processes due to insecure permissions with tuned's ktune service. |
| CVE-2019-10222 | 2019-11-08 | A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests. An unauthenticated attacker could crash the Ceph RGW server by sending valid... |
| CVE-2019-14824 | 2019-11-08 | A flaw was found in the 'deref' plugin of 389-ds-base where it could use the 'search' permission to display attribute values. In some configurations, this could allow an authenticated attacker... |
| CVE-2019-14860 | 2019-11-08 | It was found that the Syndesis configuration for Cross-Origin Resource Sharing was set to allow all origins. An attacker could use this lack of protection to conduct phishing attacks and... |
| CVE-2019-3866 | 2019-11-08 | An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit this flaw to access sensitive user information. |
| CVE-2019-10219 | 2019-11-08 | A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in... |
| CVE-2013-1889 | 2019-11-08 | mod_ruid2 before 0.9.8 improperly handles file descriptors which allows remote attackers to bypass security using a CGI script to break out of the chroot. |
| CVE-2019-16207 | 2019-11-08 | Brocade SANnav versions before v2.0 use a hard-coded password, which could allow local authenticated attackers to access a back-end database and gain privileges. |
| CVE-2019-16208 | 2019-11-08 | Password-based encryption (PBE) algorithm, of Brocade SANnav versions before v2.0, has a weakness in generating cryptographic keys that may allow an attacker to decrypt passwords used with several services (Radius,... |
| CVE-2019-16210 | 2019-11-08 | Brocade SANnav versions before v2.0, logs plain text database connection password while triggering support save. |
| CVE-2019-16205 | 2019-11-08 | A vulnerability, in Brocade SANnav versions before v2.0, could allow remote attackers to brute-force a valid session ID. The vulnerability is due to an insufficiently random session ID for several... |
| CVE-2019-16206 | 2019-11-08 | The authentication mechanism, in Brocade SANnav versions before v2.0, logs plaintext account credentials at the ‘trace’ and the 'debug' logging level; which could allow a local authenticated attacker to access... |
| CVE-2019-16209 | 2019-11-08 | A vulnerability, in The ReportsTrustManager class of Brocade SANnav versions before v2.0, could allow an attacker to perform a man-in-the-middle attack against Secure Sockets Layer(SSL)connections. |
| CVE-2019-13557 | 2019-11-08 | In Tasy EMR, Tasy WebPortal Versions 3.02.1757 and prior, there is an information exposure vulnerability which may allow a remote attacker to access system and configuration information. |
| CVE-2019-18623 | 2019-11-08 | Escalation of privileges in EnergyCAP 7 through 7.5.6 allows an attacker to access data. If an unauthenticated user clicks on a link on the public dashboard, the resource opens in... |
| CVE-2019-17327 | 2019-11-08 | JEUS 7 Fix#0~5 and JEUS 8Fix#0~1 versions contains a directory traversal vulnerability caused by improper input parameter check when uploading installation file in administration web page. That leads remote attacker... |
| CVE-2019-17661 | 2019-11-08 | A CSV injection in the codepress-admin-columns (aka Admin Columns) plugin 3.4.6 for WordPress allows malicious users to gain remote control of other computers. By choosing formula code as his first... |
| CVE-2019-12410 | 2019-11-08 | While investigating UBSAN errors in https://github.com/apache/arrow/pull/5365 it was discovered Apache Arrow versions 0.12.0 to 0.14.1, left memory Array data uninitialized when reading RLE null data from parquet. This affected the... |
| CVE-2019-12408 | 2019-11-08 | It was discovered that the C++ implementation (which underlies the R, Python and Ruby implementations) of Apache Arrow 0.14.0 to 0.14.1 had a uninitialized memory bug when building arrays with... |