CVE List - 2019 / November
Showing 1401 - 1500 of 1679 CVEs for November 2019 (Page 15 of 17)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-5857 | 2019-11-25 | Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87... |
| CVE-2019-5858 | 2019-11-25 | Incorrect security UI in MacOS services integration in Google Chrome... |
| CVE-2019-5859 | 2019-11-25 | Insufficient filtering in URI schemes in Google Chrome on Windows... |
| CVE-2019-5860 | 2019-11-25 | Use after free in PDFium in Google Chrome prior to... |
| CVE-2019-5861 | 2019-11-25 | Insufficient data validation in Blink in Google Chrome prior to... |
| CVE-2019-5862 | 2019-11-25 | Insufficient data validation in AppCache in Google Chrome prior to... |
| CVE-2019-5864 | 2019-11-25 | Insufficient data validation in CORS in Google Chrome prior to... |
| CVE-2019-5865 | 2019-11-25 | Insufficient policy enforcement in navigations in Google Chrome prior to... |
| CVE-2019-5866 | 2019-11-25 | Out of bounds memory access in JavaScript in Google Chrome... |
| CVE-2019-5867 | 2019-11-25 | Out of bounds read in JavaScript in Google Chrome prior... |
| CVE-2019-5868 | 2019-11-25 | Use after free in PDFium in Google Chrome prior to... |
| CVE-2019-5869 | 2019-11-25 | Use after free in Blink in Google Chrome prior to... |
| CVE-2019-5870 | 2019-11-25 | Use after free in media in Google Chrome prior to... |
| CVE-2019-5871 | 2019-11-25 | Heap buffer overflow in Skia in Google Chrome prior to... |
| CVE-2019-5872 | 2019-11-25 | Use after free in Mojo in Google Chrome prior to... |
| CVE-2019-5873 | 2019-11-25 | Insufficient policy validation in navigation in Google Chrome on iOS... |
| CVE-2019-5874 | 2019-11-25 | Insufficient filtering in URI schemes in Google Chrome on Windows... |
| CVE-2019-5875 | 2019-11-25 | Insufficient data validation in downloads in Google Chrome prior to... |
| CVE-2019-5876 | 2019-11-25 | Use after free in media in Google Chrome on Android... |
| CVE-2019-5877 | 2019-11-25 | Out of bounds memory access in JavaScript in Google Chrome... |
| CVE-2019-5878 | 2019-11-25 | Use after free in V8 in Google Chrome prior to... |
| CVE-2019-5879 | 2019-11-25 | Insufficient policy enforcement in extensions in Google Chrome prior to... |
| CVE-2019-5880 | 2019-11-25 | Insufficient policy enforcement in Blink in Google Chrome prior to... |
| CVE-2019-5881 | 2019-11-25 | Out of bounds read in SwiftShader in Google Chrome prior... |
| CVE-2012-5644 | 2019-11-25 | libuser has information disclosure when moving user's home directory |
| CVE-2019-17403 | 2019-11-25 | Nokia IMPACT < 18A: An unrestricted File Upload vulnerability was... |
| CVE-2019-17404 | 2019-11-25 | Nokia IMPACT < 18A: allows full path disclosure |
| CVE-2019-17405 | 2019-11-25 | Nokia IMPACT < 18A: has Reflected self XSS |
| CVE-2019-17406 | 2019-11-25 | Nokia IMPACT < 18A has path traversal that may lead... |
| CVE-2019-10217 | 2019-11-25 | A flaw was found in ansible 2.8.0 before 2.8.4. Fields... |
| CVE-2019-19242 | 2019-11-25 | SQLite 3.30.1 mishandles pExpr->y.pTab, as demonstrated by the TK_COLUMN case... |
| CVE-2015-1396 | 2019-11-25 | A Directory Traversal vulnerability exists in the GNU patch before... |
| CVE-2019-15684 | 2019-11-25 | Kaspersky Protection extension for web browser Google Chrome prior to... |
| CVE-2019-19246 | 2019-11-25 | Oniguruma through 6.9.3, as used in PHP 7.3.x and other... |
| CVE-2019-18374 | 2019-11-25 | Symantec Critical System Protection (CSP), versions 8.0, 8.0 HF1 &... |
| CVE-2019-19250 | 2019-11-25 | OpenTrade before 2019-11-23 allows SQL injection, related to server/modules/api/v1.js and... |
| CVE-2019-19249 | 2019-11-25 | Controllers/InvitationsController.cs in QueryTree before 3.0.99-beta mishandles invitations. |
| CVE-2018-2025 | 2019-11-25 | IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for... |
| CVE-2019-4406 | 2019-11-25 | IBM Spectrum Protect Backup-Archive Client 7.1 and 8.1 may be... |
| CVE-2011-4924 | 2019-11-25 | Cross-site scripting (XSS) vulnerability in Zope 2.8.x before 2.8.12, 2.9.x... |
| CVE-2019-16764 | 2019-11-25 | PowAssent is susceptible to denial of service attacks |
| CVE-2019-19252 | 2019-11-25 | vcs_write in drivers/tty/vt/vc_screen.c in the Linux kernel through 5.3.13 does... |
| CVE-2012-6639 | 2019-11-25 | An privilege elevation vulnerability exists in Cloud-init before 0.7.0 when... |
| CVE-2019-16765 | 2019-11-25 | If an attacker can get a user to open a... |
| CVE-2019-19244 | 2019-11-25 | sqlite3Select in select.c in SQLite 3.30.1 allows a crash if... |
| CVE-2019-5826 | 2019-11-25 | Use after free in IndexedDB in Google Chrome prior to... |
| CVE-2019-5825 | 2019-11-25 | Out of bounds write in JavaScript in Google Chrome prior... |
| CVE-2019-15629 | 2019-11-25 | Trend Micro Password Manager versions 3.x, 5.0, and 5.1 for... |
| CVE-2011-3351 | 2019-11-25 | openvas-scanner before 2011-09-11 creates a temporary file insecurely when generating... |
| CVE-2019-17632 | 2019-11-25 | In Eclipse Jetty versions 9.4.21.v20190926, 9.4.22.v20191022, and 9.4.23.v20191118, the generation... |
| CVE-2011-3355 | 2019-11-25 | evolution-data-server3 3.0.3 through 3.2.1 used insecure (non-SSL) connection when attempting... |
| CVE-2019-10771 | 2019-11-25 | Characters in the GET url path are not properly escaped... |
| CVE-2011-3373 | 2019-11-25 | Drupal Views Builk Operations (VBO) module 6.x-1.0 through 6.x-1.10 does... |
| CVE-2011-3374 | 2019-11-25 | It was found that apt-key in apt, all versions, do... |
| CVE-2019-18250 | 2019-11-25 | In all versions of ABB Power Generation Information Manager (PGIM)... |
| CVE-2019-15595 | 2019-11-25 | A privilege escalation exists in UniFi Video Controller =<3.10.6 that... |
| CVE-2011-3583 | 2019-11-25 | It was found that Typo3 Core versions 4.5.0 - 4.5.5... |
| CVE-2019-18241 | 2019-11-25 | In Philips IntelliBridge EC40 and EC80, IntelliBridge EC40 Hub all... |
| CVE-2019-18251 | 2019-11-25 | In Omron CX-Supervisor, Versions 3.5 (12) and prior, Omron CX-Supervisor... |
| CVE-2011-3584 | 2019-11-25 | The TYPO3 Core wec_discussion extension before 2.1.1 is vulnerable to... |
| CVE-2011-3596 | 2019-11-25 | Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted... |
| CVE-2019-11290 | 2019-11-25 | Cloud Foundry UAA logs query parameters in tomcat access file |
| CVE-2019-16201 | 2019-11-26 | WEBrick::HTTPAuth::DigestAuth in Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x... |
| CVE-2019-16254 | 2019-11-26 | Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4... |
| CVE-2019-16255 | 2019-11-26 | Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4... |
| CVE-2011-3600 | 2019-11-26 | The /webtools/control/xmlrpc endpoint in OFBiz XML-RPC event handler is exposed... |
| CVE-2011-3606 | 2019-11-26 | A DOM based cross-site scripting flaw was found in the... |
| CVE-2011-3609 | 2019-11-26 | A CSRF issue was found in JBoss Application Server 7... |
| CVE-2011-3617 | 2019-11-26 | Tahoe-LAFS v1.3.0 through v1.8.2 could allow unauthorized users to delete... |
| CVE-2011-3624 | 2019-11-26 | Various methods in WEBrick::HTTPRequest in Ruby 1.9.2 and 1.8.7 and... |
| CVE-2011-3630 | 2019-11-26 | Hardlink before 0.1.2 suffer from multiple stack-based buffer overflow flaws... |
| CVE-2019-15973 | 2019-11-26 | Cisco Industrial Network Director Reflected Cross-Site Scripting Vulnerability |
| CVE-2019-15967 | 2019-11-26 | Cisco TelePresence Collaboration Endpoint and RoomOS Audio Eavesdropping Vulnerability |
| CVE-2019-15960 | 2019-11-26 | Cisco Webex Network Recording Admin Page Privilege Escalation Vulnerability |
| CVE-2019-15958 | 2019-11-26 | Cisco Prime Infrastructure and Evolved Programmable Network Manager Remote Code Execution Vulnerability |
| CVE-2019-15956 | 2019-11-26 | Cisco Web Security Appliance Unauthorized Device Reset Vulnerability |
| CVE-2019-15288 | 2019-11-26 | Cisco TelePresence Collaboration Endpoint, TelePresence Codec, and RoomOS Software Privilege Escalation Vulnerability |
| CVE-2019-15286 | 2019-11-26 | Cisco Webex Network Recording Player and Cisco Webex Player Arbitrary Code Execution Vulnerabilities |
| CVE-2019-15284 | 2019-11-26 | Cisco Webex Network Recording Player and Cisco Webex Player Arbitrary Code Execution Vulnerabilities |
| CVE-2019-15276 | 2019-11-26 | Cisco Wireless LAN Controller HTTP Parsing Engine Denial of Service Vulnerability |
| CVE-2019-15271 | 2019-11-26 | Cisco Small Business RV016, RV042, RV042G, and RV082 Routers Arbitrary Command Execution Vulnerability |
| CVE-2011-3631 | 2019-11-26 | Hardlink before 0.1.2 has multiple integer overflows leading to heap-based... |
| CVE-2019-19272 | 2019-11-26 | An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6.... |
| CVE-2019-19271 | 2019-11-26 | An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6.... |
| CVE-2019-19270 | 2019-11-26 | An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b.... |
| CVE-2019-19269 | 2019-11-26 | An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b.... |
| CVE-2011-3632 | 2019-11-26 | Hardlink before 0.1.2 operates on full file system objects path... |
| CVE-2019-16002 | 2019-11-26 | Cisco SD-WAN Solution vManage Cross-Site Request Forgery Vulnerability |
| CVE-2019-16001 | 2019-11-26 | Cisco Webex Teams for Windows DLL Hijacking Vulnerability |
| CVE-2019-15998 | 2019-11-26 | Cisco IOS XR Software NETCONF Over Secure Shell ACL Bypass Vulnerability |
| CVE-2019-15997 | 2019-11-26 | Cisco DNA Spaces: Connector Command Injection Vulnerability |
| CVE-2019-15996 | 2019-11-26 | Cisco DNA Spaces: Connector Privilege Escalation Vulnerability |
| CVE-2019-15995 | 2019-11-26 | Cisco DNA Spaces: Connector SQL Injection Vulnerability |
| CVE-2019-15994 | 2019-11-26 | Cisco Stealthwatch Enterprise Cross-Site Scripting Vulnerability |
| CVE-2019-15990 | 2019-11-26 | Cisco Small Business Routers RV016, RV042, RV042G, and RV082 Information Disclosure Vulnerability |
| CVE-2019-15988 | 2019-11-26 | Cisco Email Security Appliance URL Filtering Bypass Vulnerability |
| CVE-2019-15987 | 2019-11-26 | Cisco WebEx Centers Username Enumeration Information Disclosure Vulnerability |
| CVE-2019-15986 | 2019-11-26 | Cisco Unity Express Command Injection Vulnerability |
| CVE-2019-15972 | 2019-11-26 | Cisco Unified Communications Manager SQL Injection Vulnerability |
| CVE-2019-15971 | 2019-11-26 | Cisco Email Security Appliance MP3 Content Filter Bypass Vulnerability |