CVE List - 2019 / December
Showing 201 - 300 of 1578 CVEs for December 2019 (Page 3 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-19551 | 2019-12-06 | In userman 13.0.76.43 through 15.0.20 in Sangoma FreePBX, XSS exists... |
| CVE-2019-11554 | 2019-12-06 | The Audible application through 2.34.0 for Android has Missing SSL... |
| CVE-2019-19627 | 2019-12-06 | SROS 2 0.8.1 (after CVE-2019-19625 is mitigated) leaks ROS 2... |
| CVE-2019-19625 | 2019-12-06 | SROS 2 0.8.1 (which provides the tools that generate and... |
| CVE-2019-19333 | 2019-12-06 | In all versions of libyang before 1.0-r5, a stack-based buffer... |
| CVE-2019-19334 | 2019-12-06 | In all versions of libyang before 1.0-r5, a stack-based buffer... |
| CVE-2012-1615 | 2019-12-06 | A Privilege Escalation vulnerability exits in Fedoraproject Sectool due to... |
| CVE-2019-5544 | 2019-12-06 | OpenSLP as used in ESXi and the Horizon DaaS appliances... |
| CVE-2019-19620 | 2019-12-06 | In SecureWorks Red Cloak Windows Agent before 2.0.7.9, a local... |
| CVE-2012-2092 | 2019-12-06 | A Security Bypass vulnerability exists in Ubuntu Cobbler before 2,2,2... |
| CVE-2019-12733 | 2019-12-06 | SiteVision 4 allows Remote Code Execution. |
| CVE-2019-12734 | 2019-12-06 | SiteVision 4 has Incorrect Access Control. |
| CVE-2018-7282 | 2019-12-06 | The username parameter of the TITool PrintMonitor solution during the... |
| CVE-2019-16670 | 2019-12-06 | An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415,... |
| CVE-2019-16671 | 2019-12-06 | An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415,... |
| CVE-2019-16672 | 2019-12-06 | An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415,... |
| CVE-2019-16673 | 2019-12-06 | An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415,... |
| CVE-2019-16674 | 2019-12-06 | An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415,... |
| CVE-2012-2130 | 2019-12-06 | A Security Bypass vulnerability exists in PolarSSL 0.99pre4 through 1.1.1... |
| CVE-2019-1551 | 2019-12-06 | rsaz_512_sqr overflow bug on x86_64 |
| CVE-2012-2148 | 2019-12-06 | An issue exists in the property replacements feature in any... |
| CVE-2019-18671 | 2019-12-06 | Insufficient checks in the USB packet handling of the ShapeShift... |
| CVE-2019-18672 | 2019-12-06 | Insufficient checks in the finite state machine of the ShapeShift... |
| CVE-2019-16771 | 2019-12-06 | Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') in Armeria |
| CVE-2019-11293 | 2019-12-06 | UAA logs all query parameters with debug logging level |
| CVE-2019-18575 | 2019-12-06 | Dell Command Configure versions prior to 4.2.1 contain an uncontrolled... |
| CVE-2019-2217 | 2019-12-06 | In setCpuVulkanInUse of GpuStats.cpp, there is possible memory corruption due... |
| CVE-2019-2218 | 2019-12-06 | In createSessionInternal of PackageInstallerService.java, there is a possible improper permission... |
| CVE-2019-2220 | 2019-12-06 | In checkOperation of AppOpsService.java, there is a possible bypass of... |
| CVE-2019-2232 | 2019-12-06 | In handleRun of TextLine.java, there is a possible application crash... |
| CVE-2019-9464 | 2019-12-06 | In various functions of RecentLocationApps.java, DevicePolicyManagerService.java, and RecognitionService.java, there is... |
| CVE-2019-2219 | 2019-12-06 | In several functions of NotificationManagerService.java and related files, there is... |
| CVE-2019-2221 | 2019-12-06 | In hasActivityInVisibleTask of WindowProcessController.java there’s a possible bypass of user... |
| CVE-2019-2222 | 2019-12-06 | n ihevcd_parse_slice_data of ihevcd_parse_slice.c, there is a possible out of... |
| CVE-2019-2223 | 2019-12-06 | In ihevcd_ref_list of ihevcd_ref_list.c, there is a possible out of... |
| CVE-2019-2225 | 2019-12-06 | When pairing with a Bluetooth device, it may be possible... |
| CVE-2019-2226 | 2019-12-06 | In device_class_to_int of device_class.cc, there is a possible out of... |
| CVE-2019-2227 | 2019-12-06 | In DeepCopy of btif_av.cc, there is a possible out of... |
| CVE-2019-2228 | 2019-12-06 | In array_find of array.c, there is a possible out-of-bounds read... |
| CVE-2019-2229 | 2019-12-06 | In updateWidget of BaseWidgetProvider.java, there is a possible leak of... |
| CVE-2019-2230 | 2019-12-06 | In nfcManager_routeAid and nfcManager_unrouteAid of NativeNfcManager.cpp, there is possible memory... |
| CVE-2019-2231 | 2019-12-06 | In Blob::Blob of blob.cpp, there is a possible unencrypted master... |
| CVE-2019-10769 | 2019-12-06 | safer-eval is a npm package to sandbox the he evaluation... |
| CVE-2019-16772 | 2019-12-06 | regular expressions Cross-Site Scripting (XSS) vulnerability in serialize-to-js |
| CVE-2019-19447 | 2019-12-08 | In the Linux kernel 5.0.21, mounting a crafted ext4 filesystem... |
| CVE-2019-19448 | 2019-12-08 | In the Linux kernel 5.0.21 and 5.3.11, mounting a crafted... |
| CVE-2019-19449 | 2019-12-08 | In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem... |
| CVE-2019-19630 | 2019-12-08 | HTMLDOC 1.9.7 allows a stack-based buffer overflow in the hd_strlcpy()... |
| CVE-2019-19635 | 2019-12-08 | An issue was discovered in libsixel 1.8.2. There is a... |
| CVE-2019-19638 | 2019-12-08 | An issue was discovered in libsixel 1.8.2. There is a... |
| CVE-2019-19637 | 2019-12-08 | An issue was discovered in libsixel 1.8.2. There is an... |
| CVE-2019-19636 | 2019-12-08 | An issue was discovered in libsixel 1.8.2. There is an... |
| CVE-2019-19642 | 2019-12-08 | On SuperMicro X8STi-F motherboards with IPMI firmware 2.06 and BIOS... |
| CVE-2019-19647 | 2019-12-09 | radare2 through 4.0.0 lacks validation of the content variable in... |
| CVE-2019-19648 | 2019-12-09 | In the macho_parse_file functionality in macho/macho.c of YARA 3.11.0, command_size... |
| CVE-2019-19645 | 2019-12-09 | alter.c in SQLite through 3.30.1 allows attackers to trigger infinite... |
| CVE-2019-19679 | 2019-12-09 | In "Xray Test Management for Jira" prior to version 3.5.5,... |
| CVE-2019-19678 | 2019-12-09 | In "Xray Test Management for Jira" prior to version 3.5.5,... |
| CVE-2019-14251 | 2019-12-09 | An issue was discovered in T24 in TEMENOS Channels R15.01.... |
| CVE-2019-19683 | 2019-12-09 | RoxyFileman, as shipped with nopCommerce v4.2.0, is vulnerable to ../... |
| CVE-2019-19685 | 2019-12-09 | RoxyFileman, as shipped with nopCommerce v4.2.0, is vulnerable to CSRF... |
| CVE-2019-19684 | 2019-12-09 | nopCommerce v4.2.0 allows privilege escalation via file upload in Presentation/Nop.Web/Admin/Areas/Controllers/PluginController.cs... |
| CVE-2019-19682 | 2019-12-09 | nopCommerce through 4.20 allows XSS in the SaveStoreMappings of the... |
| CVE-2019-19687 | 2019-12-09 | OpenStack Keystone 15.0.0 and 16.0.0 is affected by Data Leakage... |
| CVE-2019-18380 | 2019-12-09 | Symantec Industrial Control System Protection (ICSP), versions 6.x.x, may be... |
| CVE-2019-19646 | 2019-12-09 | pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an... |
| CVE-2019-19603 | 2019-12-09 | SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent VIEW,... |
| CVE-2015-0841 | 2019-12-09 | Off-by-one error in the readBuf function in listener.cpp in libcapsinetwork... |
| CVE-2019-18190 | 2019-12-09 | Trend Micro Security (Consumer) 2020 (v16.x) is affected by a... |
| CVE-2015-1853 | 2019-12-09 | chrony before 1.31.1 does not properly protect state variables in... |
| CVE-2015-3425 | 2019-12-09 | Cross-site scripting (XSS) vulnerability in Accentis Content Resource Management System... |
| CVE-2015-3424 | 2019-12-09 | SQL injection vulnerability in Accentis Content Resource Management System before... |
| CVE-2015-7892 | 2019-12-09 | Stack-based buffer overflow in the m2m1shot_compat_ioctl32 function in the Samsung... |
| CVE-2014-0242 | 2019-12-09 | mod_wsgi module before 3.4 for Apache, when used in embedded... |
| CVE-2019-19230 | 2019-12-09 | An unsafe deserialization vulnerability exists in CA Release Automation (Nolio)... |
| CVE-2013-0342 | 2019-12-09 | The CreateID function in packet.py in pyrad before 2.1 uses... |
| CVE-2019-4428 | 2019-12-09 | IBM Watson Assistant for IBM Cloud Pak for Data 1.0.0... |
| CVE-2019-4611 | 2019-12-09 | IBM Planning Analytics 2.0 is vulnerable to cross-site scripting. This... |
| CVE-2019-4612 | 2019-12-09 | IBM Planning Analytics 2.0 is vulnerable to malicious file upload... |
| CVE-2019-4621 | 2019-12-09 | IBM DataPower Gateway 7.6.0.0-7 throug 6.0.14 and 2018.4.1.0 through 2018.4.1.5... |
| CVE-2013-4184 | 2019-12-10 | Perl module Data::UUID from CPAN version 1.219 vulnerable to symlink... |
| CVE-2019-14870 | 2019-12-10 | All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and... |
| CVE-2019-14889 | 2019-12-10 | A flaw was found with the libssh API function ssh_scp_new()... |
| CVE-2019-19698 | 2019-12-10 | marc-q libwav through 2017-04-20 has a NULL pointer dereference in... |
| CVE-2014-3656 | 2019-12-10 | JBoss KeyCloak: XSS in login-status-iframe.html |
| CVE-2013-0293 | 2019-12-10 | oVirt Node: Lock screen accepts F2 to drop to shell... |
| CVE-2013-1793 | 2019-12-10 | openstack-utils openstack-db has insecure password creation |
| CVE-2013-2095 | 2019-12-10 | rubygem-openshift-origin-controller: API can be used to create applications via cartridge_cache.rb... |
| CVE-2013-2159 | 2019-12-10 | Monkey HTTP Daemon: broken user name authentication |
| CVE-2013-2166 | 2019-12-10 | python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache encryption bypass |
| CVE-2013-2167 | 2019-12-10 | python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache signing bypass |
| CVE-2019-19251 | 2019-12-10 | The Last.fm desktop app (Last.fm Scrobbler) through 2.1.39 on macOS... |
| CVE-2013-2183 | 2019-12-10 | Monkey HTTP Daemon has local security bypass |
| CVE-2013-4120 | 2019-12-10 | Katello has a Denial of Service vulnerability in API OAuth... |
| CVE-2013-4133 | 2019-12-10 | kde-workspace before 4.10.5 has a memory leak in plasma desktop |
| CVE-2016-1000108 | 2019-12-10 | yaws before 2.0.4 does not attempt to address RFC 3875... |
| CVE-2019-4095 | 2019-12-10 | IBM Cloud Pak System 2.3 is vulnerable to cross-site request... |
| CVE-2019-4244 | 2019-12-10 | IBM SmartCloud Analytics 1.3.1 through 1.3.5 could allow a remote... |
| CVE-2019-4521 | 2019-12-10 | Platform System Manager in IBM Cloud Pak System 2.3 is... |
| CVE-2019-4663 | 2019-12-10 | IBM WebSphere Application Server - Liberty is vulnerable to cross-site... |