CVE List - 2019 / December
Showing 1 - 100 of 1578 CVEs for December 2019 (Page 1 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-19469 | 2019-12-01 | In Zmanda Management Console 3.3.9, ZMC_Admin_Advanced?form=adminTasks&action=Apply&command= allows CSRF, as demonstrated... |
| CVE-2019-18609 | 2019-12-01 | An issue was discovered in amqp_handle_input in amqp_connection.c in rabbitmq-c... |
| CVE-2019-19480 | 2019-12-01 | An issue was discovered in OpenSC through 0.19.0 and 0.20.x... |
| CVE-2019-19481 | 2019-12-01 | An issue was discovered in OpenSC through 0.19.0 and 0.20.x... |
| CVE-2019-19479 | 2019-12-01 | An issue was discovered in OpenSC through 0.19.0 and 0.20.x... |
| CVE-2019-19492 | 2019-12-02 | FreeSWITCH 1.6.10 through 1.10.1 has a default password in event_socket.conf.xml. |
| CVE-2019-19491 | 2019-12-02 | TestLink 1.9.19 has XSS via the lib/testcases/archiveData.php edit parameter, the... |
| CVE-2019-19490 | 2019-12-02 | LiteManager 4.5.0 has weak permissions (Everyone: Full Control) in the... |
| CVE-2019-19489 | 2019-12-02 | SMPlayer 19.5.0 has a buffer overflow via a long .m3u... |
| CVE-2019-15631 | 2019-12-02 | Remote Code Execution vulnerability in MuleSoft Mule CE/EE 3.x and... |
| CVE-2019-19493 | 2019-12-02 | Kentico before 12.0.50 allows file uploads in which the Content-Type... |
| CVE-2019-19362 | 2019-12-02 | An issue was discovered in the Chat functionality of the... |
| CVE-2019-19496 | 2019-12-02 | Alfresco Enterprise before 5.2.5 allows stored XSS via an uploaded... |
| CVE-2019-19118 | 2019-12-02 | Django 2.1 before 2.1.15 and 2.2 before 2.2.8 allows unintended... |
| CVE-2019-19245 | 2019-12-02 | NAPC Xinet Elegant 6 Asset Library 6.1.655 allows Pre-Authentication SQL... |
| CVE-2019-19502 | 2019-12-02 | Code injection in pluginconfig.php in Image Uploader and Browser for... |
| CVE-2019-15628 | 2019-12-02 | Trend Micro Security (Consumer) 2020 (v16.0.1221 and below) is affected... |
| CVE-2019-12393 | 2019-12-02 | Anviz access control devices are vulnerable to replay attacks which... |
| CVE-2019-12391 | 2019-12-02 | The Anviz Management System for access control has insufficient logging... |
| CVE-2019-19507 | 2019-12-02 | In jpv (aka Json Pattern Validator) before 2.1.1, compareCommon() can... |
| CVE-2019-12392 | 2019-12-02 | Anviz access control devices allow remote attackers to issue commands... |
| CVE-2019-12394 | 2019-12-02 | Anviz access control devices allow unverified password change which allows... |
| CVE-2019-12390 | 2019-12-02 | Anviz access control devices expose private Information (pin code and... |
| CVE-2019-12389 | 2019-12-02 | Anviz access control devices expose credentials (names and passwords) by... |
| CVE-2019-12388 | 2019-12-02 | Anviz access control devices perform cleartext transmission of sensitive information... |
| CVE-2019-19014 | 2019-12-02 | An issue was discovered in TitanHQ WebTitan before 5.18. It... |
| CVE-2019-19015 | 2019-12-02 | An issue was discovered in TitanHQ WebTitan before 5.18. The... |
| CVE-2019-19016 | 2019-12-02 | An issue was discovered in TitanHQ WebTitan before 5.18. Some... |
| CVE-2019-12518 | 2019-12-02 | Anviz CrossChex access control management software 4.3.8.0 and 4.3.12 is... |
| CVE-2019-19017 | 2019-12-02 | An issue was discovered in TitanHQ WebTitan before 5.18. The... |
| CVE-2019-19018 | 2019-12-02 | An issue was discovered in TitanHQ WebTitan before 5.18. It... |
| CVE-2019-19019 | 2019-12-02 | An issue was discovered in TitanHQ WebTitan before 5.18. It... |
| CVE-2019-19020 | 2019-12-02 | An issue was discovered in TitanHQ WebTitan before 5.18. In... |
| CVE-2019-19021 | 2019-12-02 | An issue was discovered in TitanHQ WebTitan before 5.18. It... |
| CVE-2019-12503 | 2019-12-02 | Due to unencrypted and unauthenticated data communication, the wireless barcode... |
| CVE-2014-9356 | 2019-12-02 | Path traversal vulnerability in Docker before 1.3.3 allows remote attackers... |
| CVE-2013-4410 | 2019-12-02 | ReviewBoard: has an access-control problem in REST API |
| CVE-2012-4428 | 2019-12-02 | openslp: SLPIntersectStringList()' Function has a DoS vulnerability |
| CVE-2012-4480 | 2019-12-02 | mom creates world-writable pid files in /var/run |
| CVE-2012-4525 | 2019-12-02 | piwigo has XSS in password.php |
| CVE-2012-4526 | 2019-12-02 | piwigo has XSS in password.php (incomplete fix for CVE-2012-4525) |
| CVE-2012-4576 | 2019-12-02 | FreeBSD: Input Validation Flaw allows local users to gain elevated... |
| CVE-2012-5562 | 2019-12-02 | rhn-proxy: may transmit credentials over clear-text when accessing RHN Satellite |
| CVE-2019-15689 | 2019-12-02 | Kaspersky Secure Connection, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky... |
| CVE-2019-19316 | 2019-12-02 | When using the Azure backend with a shared access signature... |
| CVE-2019-19516 | 2019-12-02 | Intelbras WRN 150 1.0.18 devices allow CSRF via GO=system_password.asp to... |
| CVE-2013-4235 | 2019-12-03 | shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing... |
| CVE-2019-3666 | 2019-12-03 | API Abuse Vulnerability |
| CVE-2019-3665 | 2019-12-03 | Code Injection vulnerability |
| CVE-2013-2101 | 2019-12-03 | Katello has multiple XSS issues in various entities |
| CVE-2013-2103 | 2019-12-03 | OpenShift cartridge allows remote URL retrieval |
| CVE-2013-2106 | 2019-12-03 | webauth before 4.6.1 has authentication credential disclosure |
| CVE-2013-2228 | 2019-12-03 | SaltStack RSA Key Generation allows remote users to decrypt communications |
| CVE-2013-4411 | 2019-12-03 | Review Board: URL processing gives unauthorized users access to review... |
| CVE-2013-4486 | 2019-12-03 | Zanata 3.0.0 through 3.1.2 has RCE due to EL interpolation... |
| CVE-2019-4098 | 2019-12-03 | IBM Cloud Pak System 2.3 and 2.3.0.1 is vulnerable to... |
| CVE-2019-4130 | 2019-12-03 | IBM Cloud Pak System 2.3 and 2.3.0.1 could allow a... |
| CVE-2019-4226 | 2019-12-03 | IBM Cloud Pak System 2.3 and 2.3.0.1 is vulnerable to... |
| CVE-2019-4465 | 2019-12-03 | IBM Cloud Pak System 2.3 and 2.3.0.1 allows web pages... |
| CVE-2019-4467 | 2019-12-03 | IBM Cloud Pak System 2.3 and 2.3.0.1 is vulnerable to... |
| CVE-2019-4468 | 2019-12-03 | IBM Cloud Pak System 2.3 and 2.3.0.1 is vulnerable to... |
| CVE-2019-19537 | 2019-12-03 | In the Linux kernel before 5.2.10, there is a race... |
| CVE-2019-19536 | 2019-12-03 | In the Linux kernel before 5.2.9, there is an info-leak... |
| CVE-2019-19535 | 2019-12-03 | In the Linux kernel before 5.2.9, there is an info-leak... |
| CVE-2019-19534 | 2019-12-03 | In the Linux kernel before 5.3.11, there is an info-leak... |
| CVE-2019-19533 | 2019-12-03 | In the Linux kernel before 5.3.4, there is an info-leak... |
| CVE-2019-19532 | 2019-12-03 | In the Linux kernel before 5.3.9, there are multiple out-of-bounds... |
| CVE-2019-19531 | 2019-12-03 | In the Linux kernel before 5.2.9, there is a use-after-free... |
| CVE-2019-19530 | 2019-12-03 | In the Linux kernel before 5.2.10, there is a use-after-free... |
| CVE-2019-19529 | 2019-12-03 | In the Linux kernel before 5.3.11, there is a use-after-free... |
| CVE-2019-19528 | 2019-12-03 | In the Linux kernel before 5.3.7, there is a use-after-free... |
| CVE-2019-19527 | 2019-12-03 | In the Linux kernel before 5.2.10, there is a use-after-free... |
| CVE-2019-19526 | 2019-12-03 | In the Linux kernel before 5.3.9, there is a use-after-free... |
| CVE-2019-19525 | 2019-12-03 | In the Linux kernel before 5.3.6, there is a use-after-free... |
| CVE-2019-19524 | 2019-12-03 | In the Linux kernel before 5.3.12, there is a use-after-free... |
| CVE-2019-19523 | 2019-12-03 | In the Linux kernel before 5.3.7, there is a use-after-free... |
| CVE-2019-3990 | 2019-12-03 | A User Enumeration flaw exists in Harbor. The issue is... |
| CVE-2019-7365 | 2019-12-03 | DLL preloading vulnerability in Autodesk Desktop Application versions 7.0.16.29 and... |
| CVE-2019-7366 | 2019-12-03 | Buffer overflow vulnerability in Autodesk FBX Software Development Kit version... |
| CVE-2019-19460 | 2019-12-03 | An issue was discovered in SALTO ProAccess SPACE 5.4.3.0. The... |
| CVE-2019-19459 | 2019-12-03 | An issue was discovered in SALTO ProAccess SPACE 5.4.3.0. An... |
| CVE-2019-19458 | 2019-12-03 | SALTO ProAccess SPACE 5.4.3.0 allows Directory Traversal in the Data... |
| CVE-2019-19457 | 2019-12-03 | SALTO ProAccess SPACE 5.4.3.0 allows XSS. |
| CVE-2019-19383 | 2019-12-03 | freeFTPd 1.0.8 has a Post-Authentication Buffer Overflow via a crafted... |
| CVE-2019-19382 | 2019-12-03 | Max Secure Anti Virus Plus 19.0.4.020 has Insecure Permissions on... |
| CVE-2019-18993 | 2019-12-03 | OpenWrt 18.06.4 allows XSS via the "New port forward" Name... |
| CVE-2019-18992 | 2019-12-03 | OpenWrt 18.06.4 allows XSS via these Name fields to the... |
| CVE-2019-16885 | 2019-12-03 | In OkayCMS through 2.3.4, an unauthenticated attacker can achieve remote... |
| CVE-2019-13456 | 2019-12-03 | In FreeRADIUS 3.0 through 3.0.19, on average 1 in every... |
| CVE-2019-9689 | 2019-12-03 | process_certificate in tls1.c in Cameron Hamilton-Rich axTLS through 2.1.5 has... |
| CVE-2019-10013 | 2019-12-03 | The asn1_signature function in asn1.c in Cameron Hamilton-Rich axTLS through... |
| CVE-2019-19543 | 2019-12-03 | In the Linux kernel before 5.1.6, there is a use-after-free... |
| CVE-2019-18574 | 2019-12-03 | RSA Authentication Manager software versions prior to 8.4 P8 contain... |
| CVE-2019-3749 | 2019-12-03 | Dell Command Update versions prior to 3.1 contain an Arbitrary... |
| CVE-2019-3750 | 2019-12-03 | Dell Command Update versions prior to 3.1 contain an Arbitrary... |
| CVE-2016-1000104 | 2019-12-03 | A security Bypass vulnerability exists in the FcgidPassHeader Proxy in... |
| CVE-2019-5083 | 2019-12-03 | An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll TIFdecodethunderscan... |
| CVE-2019-5076 | 2019-12-03 | An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll PNG... |
| CVE-2019-5132 | 2019-12-03 | An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll GEM... |
| CVE-2019-5133 | 2019-12-03 | An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll BMP... |