CVE List - 2019 / April
Showing 1 - 100 of 1531 CVEs for April 2019 (Page 1 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-9193 | 2019-04-01 | In PostgreSQL 9.3 through 11.2, the "COPY TO/FROM PROGRAM" function... |
| CVE-2019-1002100 | 2019-04-01 | In all Kubernetes versions prior to v1.11.8, v1.12.6, and v1.13.4,... |
| CVE-2019-1002101 | 2019-04-01 | kubectl cp path traversal |
| CVE-2019-3876 | 2019-04-01 | A flaw was found in the /oauth/token/request custom endpoint of... |
| CVE-2019-3836 | 2019-04-01 | It was discovered in gnutls before version 3.6.7 upstream that... |
| CVE-2018-8913 | 2019-04-01 | Missing custom error page vulnerability in Synology Web Station before... |
| CVE-2017-16774 | 2019-04-01 | Cross-site scripting (XSS) vulnerability in SYNO.Core.PersonalNotification.Event in Synology DiskStation Manager... |
| CVE-2017-16775 | 2019-04-01 | Improper restriction of rendered UI layers or frames vulnerability in... |
| CVE-2018-13283 | 2019-04-01 | Lack of administrator control over security vulnerability in client.cgi in... |
| CVE-2018-13284 | 2019-04-01 | Command injection vulnerability in ftpd in Synology Diskstation Manager (DSM)... |
| CVE-2018-13286 | 2019-04-01 | Incorrect default permissions vulnerability in synouser.conf in Synology Diskstation Manager... |
| CVE-2018-13285 | 2019-04-01 | Command injection vulnerability in ftpd in Synology Router Manager (SRM)... |
| CVE-2018-13287 | 2019-04-01 | Incorrect default permissions vulnerability in synouser.conf in Synology Router Manager... |
| CVE-2018-13288 | 2019-04-01 | Information exposure vulnerability in SYNO.FolderSharing.List in Synology File Station before... |
| CVE-2018-13289 | 2019-04-01 | Information exposure vulnerability in SYNO.FolderSharing.List in Synology Router Manager (SRM)... |
| CVE-2018-13290 | 2019-04-01 | Information exposure vulnerability in SYNO.Core.ACL in Synology Router Manager (SRM)... |
| CVE-2018-13292 | 2019-04-01 | Information exposure vulnerability in /usr/syno/etc/mount.conf in Synology Router Manager (SRM)... |
| CVE-2018-13291 | 2019-04-01 | Information exposure vulnerability in /usr/syno/etc/mount.conf in Synology DiskStation Manager (DSM)... |
| CVE-2018-13293 | 2019-04-01 | Cross-site scripting (XSS) vulnerability in Control Panel SSO Settings in... |
| CVE-2018-13294 | 2019-04-01 | Information exposure vulnerability in SYNO.Personal.Profile in Synology Application Service before... |
| CVE-2018-13295 | 2019-04-01 | Information exposure vulnerability in SYNO.Personal.Application.Info in Synology Application Service before... |
| CVE-2018-13296 | 2019-04-01 | Uncontrolled resource consumption vulnerability in TLS configuration in Synology MailPlus... |
| CVE-2018-13297 | 2019-04-01 | Information exposure vulnerability in SYNO.SynologyDrive.Files in Synology Drive before 1.1.2-10562... |
| CVE-2018-13298 | 2019-04-01 | Channel accessible by non-endpoint vulnerability in privacy page in Synology... |
| CVE-2018-13299 | 2019-04-01 | Relative path traversal vulnerability in Attachment Uploader in Synology Calendar... |
| CVE-2019-5888 | 2019-04-01 | Multiple XSS vulnerabilities were discovered in OverIT Geocall 6.3 before... |
| CVE-2019-5889 | 2019-04-01 | An log-management directory traversal issue was discovered in OverIT Geocall... |
| CVE-2019-5890 | 2019-04-01 | An issue was discovered in OverIT Geocall 6.3 before build... |
| CVE-2019-5891 | 2019-04-01 | An issue was discovered in OverIT Geocall 6.3 before build... |
| CVE-2019-10684 | 2019-04-01 | Application/Admin/Controller/ConfigController.class.php in 74cms v5.0.1 allows remote attackers to execute arbitrary... |
| CVE-2018-5757 | 2019-04-01 | An issue was discovered on AudioCodes 450HD IP Phone devices... |
| CVE-2019-10686 | 2019-04-01 | An SSRF vulnerability was found in an API from Ctrip... |
| CVE-2019-9132 | 2019-04-01 | Remote code execution vulnerability exists in KaKaoTalk PC messenger when... |
| CVE-2019-5523 | 2019-04-01 | VMware vCloud Director for Service Providers 9.5.x prior to 9.5.0.3... |
| CVE-2018-4050 | 2019-04-01 | An exploitable local privilege escalation vulnerability exists in the privileged... |
| CVE-2019-8956 | 2019-04-01 | In the Linux Kernel before versions 4.20.8 and 4.19.21 a... |
| CVE-2019-6715 | 2019-04-01 | pub/sns.php in the W3 Total Cache plugin before 0.9.4 for... |
| CVE-2019-3489 | 2019-04-01 | An unauthenticated file upload vulnerability has been identified in the... |
| CVE-2018-19113 | 2019-04-01 | The Pronestor PNHM (aka Health Monitoring or HealthMonitor) add-in before... |
| CVE-2018-3979 | 2019-04-01 | A remote denial-of-service vulnerability exists in the way the Nouveau... |
| CVE-2019-5514 | 2019-04-01 | VMware VMware Fusion (11.x before 11.0.3) contains a security vulnerability... |
| CVE-2019-5519 | 2019-04-01 | VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before... |
| CVE-2019-5518 | 2019-04-01 | VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before... |
| CVE-2018-17989 | 2019-04-01 | A stored XSS vulnerability exists in the web interface on... |
| CVE-2018-17563 | 2019-04-01 | A Malformed Input String to /cgi-bin/api-get_line_status on Grandstream GXP16xx VoIP... |
| CVE-2018-17564 | 2019-04-01 | A Malformed Input String to /cgi-bin/delete_CA on Grandstream GXP16xx VoIP... |
| CVE-2018-17565 | 2019-04-01 | Shell Metacharacter Injection in the SSH configuration interface on Grandstream... |
| CVE-2018-17990 | 2019-04-01 | An issue was discovered on D-Link DSL-3782 devices with firmware... |
| CVE-2017-8023 | 2019-04-01 | EMC Networker Remote Code Execution Vulnerability |
| CVE-2019-3792 | 2019-04-01 | Concourse 5.0.0 SQL Injection vulnerability |
| CVE-2018-1618 | 2019-04-02 | IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 could allow... |
| CVE-2018-1622 | 2019-04-02 | IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 is vulnerable... |
| CVE-2018-1623 | 2019-04-02 | IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 allows web... |
| CVE-2018-1625 | 2019-04-02 | IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 generates an... |
| CVE-2018-1626 | 2019-04-02 | IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 does not... |
| CVE-2018-1640 | 2019-04-02 | IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 could allow... |
| CVE-2018-1680 | 2019-04-02 | IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 does not... |
| CVE-2018-1874 | 2019-04-02 | IBM API Connect 5.0.0.0 through 5.0.8.5 could display highly sensitive... |
| CVE-2018-1906 | 2019-04-02 | IBM InfoSphere Information Server 11.3, 11.5, and 11.7could allow an... |
| CVE-2018-1917 | 2019-04-02 | IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could allow... |
| CVE-2019-4043 | 2019-04-02 | IBM Sterling B2B Integrator Standard Edition 5.2.0 snf 6.0.0.0 is... |
| CVE-2019-4080 | 2019-04-02 | IBM WebSphere Application Server Admin Console 7.5, 8.0, 8.5, and... |
| CVE-2019-4093 | 2019-04-02 | IBM Tivoli Storage Manager (IBM Spectrum Protect 8.1.7) could allow... |
| CVE-2019-9759 | 2019-04-02 | An issue was discovered in TONGDA Office Anywhere 10.18.190121. There... |
| CVE-2019-1010260 | 2019-04-02 | Using ktlint to download and execute custom rulesets can result... |
| CVE-2019-5524 | 2019-04-02 | VMware Workstation (14.x before 14.1.6) and Fusion (10.x before 10.1.6)... |
| CVE-2019-5515 | 2019-04-02 | VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6) and Fusion... |
| CVE-2018-3974 | 2019-04-02 | An exploitable local privilege elevation vulnerability exists in the file... |
| CVE-2018-4052 | 2019-04-02 | An exploitable local information leak vulnerability exists in the privileged... |
| CVE-2018-4051 | 2019-04-02 | An exploitable local privilege escalation vulnerability exists in the privileged... |
| CVE-2018-4053 | 2019-04-02 | An exploitable local denial-of-service vulnerability exists in the privileged helper... |
| CVE-2018-4049 | 2019-04-02 | An exploitable local privilege elevation vulnerability exists in the file... |
| CVE-2018-15180 | 2019-04-02 | qTest Portal in QASymphony qTest Manager 9.0.0 has an Open... |
| CVE-2019-7474 | 2019-04-02 | A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only... |
| CVE-2019-7475 | 2019-04-02 | A vulnerability in SonicWall SonicOS and SonicOSv with management enabled... |
| CVE-2019-7477 | 2019-04-02 | A vulnerability in SonicWall SonicOS and SonicOSv TLS CBC Cipher... |
| CVE-2019-9946 | 2019-04-02 | Cloud Native Computing Foundation (CNCF) CNI (Container Networking Interface) 0.7.4... |
| CVE-2019-10692 | 2019-04-02 | In the wp-google-maps plugin before 7.11.18 for WordPress, includes/class.rest-api.php in... |
| CVE-2018-19275 | 2019-04-02 | The BluStar component in Mitel InAttend before 2.5 SP3 and... |
| CVE-2019-10707 | 2019-04-02 | MKCMS V5.0 has SQL injection via the bplay.php play parameter. |
| CVE-2019-10708 | 2019-04-02 | S-CMS PHP v1.0 has SQL injection via the 4/js/scms.php?action=unlike id... |
| CVE-2018-12679 | 2019-04-02 | The Serialize.deserialize() method in CoAPthon3 1.0 and 1.0.1 mishandles certain... |
| CVE-2018-12680 | 2019-04-02 | The Serialize.deserialize() method in CoAPthon 3.1, 4.0.0, 4.0.1, and 4.0.2... |
| CVE-2019-6531 | 2019-04-02 | An attacker could retrieve passwords from a HTTP GET request... |
| CVE-2017-6049 | 2019-04-02 | Detcon Sitewatch Gateway, all versions without cellular, an attacker can... |
| CVE-2017-6047 | 2019-04-02 | Detcon Sitewatch Gateway, all versions without cellular, Passwords are presented... |
| CVE-2019-10714 | 2019-04-02 | LocaleLowercase in MagickCore/locale.c in ImageMagick before 7.0.8-32 allows out-of-bounds access,... |
| CVE-2019-6506 | 2019-04-02 | SuiteCRM before 7.8.28, 7.9.x and 7.10.x before 7.10.15, and 7.11.x... |
| CVE-2018-18035 | 2019-04-02 | A vulnerability in flashcanvas.swf in OpenEMR before 5.0.1 Patch 6... |
| CVE-2018-4259 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling.... |
| CVE-2018-4286 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling.... |
| CVE-2018-4287 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling.... |
| CVE-2018-4288 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling.... |
| CVE-2018-4291 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling.... |
| CVE-2018-4407 | 2019-04-03 | A memory corruption issue was addressed with improved validation. This... |
| CVE-2019-10673 | 2019-04-03 | A CSRF vulnerability in a logged-in user's profile edit form... |
| CVE-2018-1731 | 2019-04-03 | IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.3 and 6.0... |
| CVE-2018-1913 | 2019-04-03 | IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.3 and 6.0... |
| CVE-2018-1936 | 2019-04-03 | IBM DB2 9.7, 10.1, 10.5, and 11.1 libdb2e.so.1 is vulnerable... |
| CVE-2019-4014 | 2019-04-03 | IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect... |