CVE List - 2019 / December
Showing 1201 - 1300 of 1578 CVEs for December 2019 (Page 13 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-15915 | 2019-12-20 | An issue was discovered on Xiaomi DGNWG03LM, ZNCZ03LM, MCCGQ01LM, RTCGQ01LM... |
| CVE-2019-15910 | 2019-12-20 | An issue was discovered on ASUS HG100, MW100, WS-101, TS-101,... |
| CVE-2019-15911 | 2019-12-20 | An issue was discovered on ASUS HG100, MW100, WS-101, TS-101,... |
| CVE-2019-15912 | 2019-12-20 | An issue was discovered on ASUS HG100, MW100, WS-101, TS-101,... |
| CVE-2019-15913 | 2019-12-20 | An issue was discovered on Xiaomi DGNWG03LM, ZNCZ03LM, MCCGQ01LM, WSDCGQ01LM,... |
| CVE-2019-15914 | 2019-12-20 | An issue was discovered on Xiaomi DGNWG03LM, ZNCZ03LM, MCCGQ01LM, WSDCGQ01LM,... |
| CVE-2018-1934 | 2019-12-20 | IBM Cognos Business Intelligence 10.2.2 is vulnerable to cross-site request... |
| CVE-2019-4231 | 2019-12-20 | IBM Cognos Analytics 11.0 and 11.1 is vulnerable to cross-site... |
| CVE-2019-4555 | 2019-12-20 | IBM Cognos Analytics 11.0 and 11.0 is vulnerable to cross-site... |
| CVE-2019-4736 | 2019-12-20 | IBM Financial Transaction Manager 3.0 is vulnerable to cross-site request... |
| CVE-2019-4742 | 2019-12-20 | IBM Financial Transaction Manager 3.0 could allow a remote attacker... |
| CVE-2019-4743 | 2019-12-20 | IBM Financial Transaction Manager 3.0 does not set the secure... |
| CVE-2019-4744 | 2019-12-20 | IBM Financial Transaction Manager 3.0 is vulnerable to cross-site scripting.... |
| CVE-2019-19747 | 2019-12-20 | NeuVector 3.1 when configured to allow authentication via Active Directory,... |
| CVE-2019-19918 | 2019-12-20 | Lout 3.40 has a heap-based buffer overflow in the srcnext()... |
| CVE-2019-19917 | 2019-12-20 | Lout 3.40 has a buffer overflow in the StringQuotedWord() function... |
| CVE-2019-15584 | 2019-12-20 | A denial of service exists in gitlab <v12.3.2, <v12.2.6, and... |
| CVE-2019-19231 | 2019-12-20 | An insecure file access vulnerability exists in CA Client Automation... |
| CVE-2019-19919 | 2019-12-20 | Versions of handlebars prior to 4.3.0 are vulnerable to Prototype... |
| CVE-2019-16786 | 2019-12-20 | HTTP Request Smuggling: Invalid Transfer-Encoding in Waitress |
| CVE-2019-16785 | 2019-12-20 | HTTP Request Smuggling: LF vs CRLF handling in Waitress |
| CVE-2019-19920 | 2019-12-22 | sa-exim 4.2.1 allows attackers to execute arbitrary code if they... |
| CVE-2019-19922 | 2019-12-22 | kernel/sched/fair.c in the Linux kernel before 5.3.9, when cpu.cfs_quota_us is... |
| CVE-2019-18388 | 2019-12-23 | A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0... |
| CVE-2019-18389 | 2019-12-23 | A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c... |
| CVE-2019-18390 | 2019-12-23 | An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in... |
| CVE-2019-18391 | 2019-12-23 | A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c... |
| CVE-2019-19926 | 2019-12-23 | multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during... |
| CVE-2019-19929 | 2019-12-23 | An Untrusted Search Path vulnerability in Malwarebytes AdwCleaner before 8.0.1... |
| CVE-2019-19931 | 2019-12-23 | In libIEC61850 1.4.0, MmsValue_decodeMmsData in mms/iso_mms/server/mms_access_result.c has a heap-based buffer... |
| CVE-2019-19930 | 2019-12-23 | In libIEC61850 1.4.0, MmsValue_newOctetString in mms/iso_mms/common/mms_value.c has an integer signedness... |
| CVE-2019-11044 | 2019-12-23 | link() silently truncates after a null byte on Windows |
| CVE-2019-11045 | 2019-12-23 | DirectoryIterator class silently truncates after a null byte |
| CVE-2019-11046 | 2019-12-23 | Buffer underflow in bc_shift_addsub |
| CVE-2019-11047 | 2019-12-23 | Heap-buffer-overflow READ in exif |
| CVE-2019-11049 | 2019-12-23 | mail() may release string with refcount==1 twice |
| CVE-2019-11050 | 2019-12-23 | Use-after-free in exif parsing under memory sanitizer |
| CVE-2019-19337 | 2019-12-23 | A flaw was found in Red Hat Ceph Storage version... |
| CVE-2019-17563 | 2019-12-23 | When using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.0.29,... |
| CVE-2019-6676 | 2019-12-23 | On versions 15.0.0-15.0.1, 14.0.0-14.1.2.2, and 13.1.0-13.1.3.1, TMM may restart on... |
| CVE-2019-6677 | 2019-12-23 | On BIG-IP versions 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, and 12.1.0-12.1.5, under... |
| CVE-2019-6682 | 2019-12-23 | On versions 15.0.0-15.0.1.1, 14.0.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, the BIG-IP... |
| CVE-2019-6678 | 2019-12-23 | On BIG-IP versions 15.0.0-15.0.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, the TMM... |
| CVE-2019-6683 | 2019-12-23 | On versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, BIG-IP... |
| CVE-2019-6679 | 2019-12-23 | On BIG-IP versions 15.0.0-15.0.1, 14.1.0.2-14.1.2.2, 14.0.0.5-14.0.1, 13.1.1.5-13.1.3.1, 12.1.4.1-12.1.5, 11.6.4-11.6.5, and... |
| CVE-2019-6681 | 2019-12-23 | On BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, and 12.1.0-12.1.5, a... |
| CVE-2019-12418 | 2019-12-23 | When Apache Tomcat 9.0.0.M1 to 9.0.28, 8.5.0 to 8.5.47, 7.0.0... |
| CVE-2019-6686 | 2019-12-23 | On BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, the Traffic Management... |
| CVE-2019-5267 | 2019-12-23 | Huawei OceanStor SNS3096 V100R002C01 have an information disclosure vulnerability. Attackers... |
| CVE-2019-6680 | 2019-12-23 | On BIG-IP versions 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5,... |
| CVE-2019-6684 | 2019-12-23 | On versions 15.0.0-15.0.1.1, 14.0.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, under certain... |
| CVE-2019-6685 | 2019-12-23 | On BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1,... |
| CVE-2019-19150 | 2019-12-23 | On versions 15.0.0-15.0.1.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, the... |
| CVE-2019-6687 | 2019-12-23 | On versions 15.0.0-15.0.1.1, the BIG-IP ASM Cloud Security Services profile... |
| CVE-2019-5266 | 2019-12-23 | Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an insufficient... |
| CVE-2019-5276 | 2019-12-23 | Huawei smart phones with earlier versions than ELLE-AL00B 9.1.0.222(C00E220R2P1) have... |
| CVE-2019-5265 | 2019-12-23 | Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an improper... |
| CVE-2019-6688 | 2019-12-23 | On BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5... |
| CVE-2019-19151 | 2019-12-23 | On BIG-IP versions 15.0.0-15.1.0, 14.0.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, BIG-IQ... |
| CVE-2019-3467 | 2019-12-23 | Debian-edu-config all versions < 2.11.10, a set of configuration files... |
| CVE-2019-3429 | 2019-12-23 | All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP... |
| CVE-2019-3430 | 2019-12-23 | All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP... |
| CVE-2019-3431 | 2019-12-23 | All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP... |
| CVE-2019-8463 | 2019-12-23 | A denial of service vulnerability was reported in Check Point... |
| CVE-2019-18234 | 2019-12-23 | Equinox Control Expert all versions, is vulnerable to an SQL... |
| CVE-2019-19944 | 2019-12-23 | In libIEC61850 1.4.0, BerDecoder_decodeUint32 in mms/asn1/ber_decode.c has an out-of-bounds read,... |
| CVE-2019-5108 | 2019-12-23 | An exploitable denial-of-service vulnerability exists in the Linux kernel prior... |
| CVE-2019-6147 | 2019-12-23 | Forcepoint NGFW Security Management Center (SMC) versions lower than 6.5.12... |
| CVE-2019-5539 | 2019-12-23 | VMware Workstation (15.x prior to 15.5.1) and Horizon View Agent... |
| CVE-2019-18236 | 2019-12-23 | Multiple buffer overflow vulnerabilities exist when the PLC Editor Version... |
| CVE-2019-8293 | 2019-12-23 | Due to a logic error in the code, upload-image-with-ajax v1.0... |
| CVE-2019-7488 | 2019-12-23 | Weak default password cause vulnerability in SonicWall Email Security appliance... |
| CVE-2019-7489 | 2019-12-23 | A vulnerability in SonicWall Email Security appliance allow an unauthenticated... |
| CVE-2019-18211 | 2019-12-23 | An issue was discovered in Orckestra C1 CMS through 6.6.... |
| CVE-2018-10387 | 2019-12-23 | Heap-based overflow vulnerability in TFTP Server SP 1.66 and earlier... |
| CVE-2018-10388 | 2019-12-23 | Format string vulnerability in the logMess function in TFTP Server... |
| CVE-2018-10389 | 2019-12-23 | Format string vulnerability in the logMess function in TFTP Server... |
| CVE-2019-12567 | 2019-12-23 | Stack-based overflow vulnerability in the logMess function in Open TFTP... |
| CVE-2019-12568 | 2019-12-23 | Stack-based overflow vulnerability in the logMess function in Open TFTP... |
| CVE-2019-19947 | 2019-12-23 | In the Linux kernel through 5.4.6, there are information leaks... |
| CVE-2019-19949 | 2019-12-24 | In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read... |
| CVE-2019-19952 | 2019-12-24 | In ImageMagick 7.0.9-7 Q16, there is a use-after-free in the... |
| CVE-2019-19953 | 2019-12-24 | In GraphicsMagick 1.4 snapshot-20191208 Q8, there is a heap-based buffer... |
| CVE-2019-19951 | 2019-12-24 | In GraphicsMagick 1.4 snapshot-20190423 Q8, there is a heap-based buffer... |
| CVE-2019-19950 | 2019-12-24 | In GraphicsMagick 1.4 snapshot-20190403 Q8, there is a use-after-free in... |
| CVE-2019-19948 | 2019-12-24 | In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer overflow... |
| CVE-2019-19695 | 2019-12-24 | A privilege escalation vulnerability in Trend Micro Antivirus for Mac... |
| CVE-2017-16778 | 2019-12-24 | An access control weakness in the DTMF tone receiver of... |
| CVE-2019-19954 | 2019-12-24 | Signal Desktop before 1.29.1 on Windows allows local users to... |
| CVE-2019-18249 | 2019-12-24 | Reliable Controls MACH-ProWebCom/Sys, all versions prior to 2.15 (Firmware versions... |
| CVE-2019-19956 | 2019-12-24 | xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory... |
| CVE-2019-19923 | 2019-12-24 | flattenSubquery in select.c in SQLite 3.30.1 mishandles certain uses of... |
| CVE-2019-19924 | 2019-12-24 | SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c,... |
| CVE-2019-19925 | 2019-12-24 | zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL pathname... |
| CVE-2019-5702 | 2019-12-24 | NVIDIA GeForce Experience, all versions prior to 3.20.2, contains a... |
| CVE-2019-10758 | 2019-12-24 | mongo-express before 0.54.0 is vulnerable to Remote Code Execution via... |
| CVE-2019-19957 | 2019-12-24 | In libIEC61850 1.4.0, getNumberOfElements in mms/iso_mms/server/mms_access_result.c has an out-of-bounds read... |
| CVE-2019-19958 | 2019-12-24 | In libIEC61850 1.4.0, StringUtils_createStringFromBuffer in common/string_utilities.c has an integer signedness... |
| CVE-2019-19963 | 2019-12-24 | An issue was discovered in wolfSSL before 4.3.0 in a... |
| CVE-2019-19962 | 2019-12-24 | wolfSSL before 4.3.0 mishandles calls to wc_SignatureGenerateHash, leading to fault... |