CVE List - 2019 / April
Showing 901 - 1000 of 1531 CVEs for April 2019 (Page 10 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-1805 | 2019-04-18 | Cisco Wireless LAN Controller Secure Shell Unauthorized Access Vulnerability |
| CVE-2019-1802 | 2019-04-18 | Cisco Firepower Management Center Persistent Cross-Site Scripting Vulnerability |
| CVE-2019-1830 | 2019-04-18 | Cisco Wireless LAN Controller Locally Significant Certificate Denial of Service Vulnerability |
| CVE-2019-1829 | 2019-04-18 | Cisco Aironet Series Access Points Command Injection Vulnerability |
| CVE-2019-1826 | 2019-04-18 | Cisco Aironet Series Access Points Quality of Service Denial of Service Vulnerability |
| CVE-2019-1835 | 2019-04-18 | Cisco Aironet Series Access Points Directory Traversal Vulnerability |
| CVE-2019-1834 | 2019-04-18 | Cisco Aironet Series Access Points Denial of Service Vulnerability |
| CVE-2019-1831 | 2019-04-18 | Cisco Email Security Appliance Content Filter Bypass Vulnerability |
| CVE-2019-1840 | 2019-04-18 | Cisco Prime Network Registrar Denial of Service Vulnerability |
| CVE-2019-1837 | 2019-04-18 | Cisco Unified Communications Manager Denial of Service Vulnerability |
| CVE-2019-1841 | 2019-04-18 | Cisco DNA Center Unintended Proxy Via SWIM Import Interface Vulnerability |
| CVE-2016-10746 | 2019-04-18 | libvirt-domain.c in libvirt before 1.3.1 supports virDomainGetTime API calls by... |
| CVE-2018-17168 | 2019-04-18 | PrinterOn Enterprise 4.1.4 contains multiple Cross Site Request Forgery (CSRF)... |
| CVE-2019-11319 | 2019-04-18 | An issue was discovered in Motorola CX2 1.01 and M2... |
| CVE-2019-11320 | 2019-04-18 | In Motorola CX2 1.01 and M2 1.01, users can access... |
| CVE-2019-11321 | 2019-04-18 | An issue was discovered in Motorola CX2 1.01 and M2... |
| CVE-2019-11322 | 2019-04-18 | An issue was discovered in Motorola CX2 1.01 and M2... |
| CVE-2019-8999 | 2019-04-18 | An XML External Entity vulnerability in the UEM Core of... |
| CVE-2019-10300 | 2019-04-18 | A cross-site request forgery vulnerability in Jenkins GitLab Plugin 1.5.11... |
| CVE-2019-10301 | 2019-04-18 | A missing permission check in Jenkins GitLab Plugin 1.5.11 and... |
| CVE-2019-10302 | 2019-04-18 | Jenkins jira-ext Plugin 0.8 and earlier stored credentials unencrypted in... |
| CVE-2019-10303 | 2019-04-18 | Jenkins Azure PublisherSettings Credentials Plugin 1.2 and earlier stored credentials... |
| CVE-2019-10304 | 2019-04-18 | A cross-site request forgery vulnerability in Jenkins XebiaLabs XL Deploy... |
| CVE-2019-10305 | 2019-04-18 | A missing permission check in Jenkins XebiaLabs XL Deploy Plugin... |
| CVE-2019-10306 | 2019-04-18 | A sandbox bypass vulnerability in Jenkins ontrack Plugin 3.4 and... |
| CVE-2019-11034 | 2019-04-18 | Heap over-read in PHP EXIF extension |
| CVE-2019-11035 | 2019-04-18 | Heap over-read in PHP EXIF extension |
| CVE-2019-11223 | 2019-04-18 | An Unrestricted File Upload Vulnerability in the SupportCandy plugin through... |
| CVE-2019-3398 | 2019-04-18 | Confluence Server and Data Center had a path traversal vulnerability... |
| CVE-2018-17287 | 2019-04-18 | In Kofax Front Office Server Administration Console 4.1.1.11.0.5212, some fields,... |
| CVE-2018-17288 | 2019-04-18 | Kofax Front Office Server version 4.1.1.11.0.5212 (both Thin Client and... |
| CVE-2018-17289 | 2019-04-18 | An XML external entity (XXE) vulnerability in Kofax Front Office... |
| CVE-2019-11017 | 2019-04-18 | On D-Link DI-524 V2.06RU devices, multiple Stored and Reflected XSS... |
| CVE-2019-9005 | 2019-04-18 | The Cprime Power Scripts app before 4.0.14 for Atlassian Jira... |
| CVE-2019-11084 | 2019-04-18 | GAuth 0.9.9 beta has stored XSS that shows a popup... |
| CVE-2018-20200 | 2019-04-18 | CertificatePinner.java in OkHttp 3.x through 3.12.0 allows man-in-the-middle attackers to... |
| CVE-2019-10893 | 2019-04-18 | CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.793 (Free/Open Source Version)... |
| CVE-2019-3718 | 2019-04-18 | Dell SupportAssist Client versions prior to 3.2.0.90 contain an improper... |
| CVE-2019-3719 | 2019-04-18 | Dell SupportAssist Client versions prior to 3.2.0.90 contain a remote... |
| CVE-2019-11015 | 2019-04-18 | A vulnerability was found in the MIUI OS version 10.1.3.0... |
| CVE-2019-9160 | 2019-04-18 | WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and... |
| CVE-2019-11331 | 2019-04-18 | Network Time Protocol (NTP), as specified in RFC 5905, uses... |
| CVE-2019-9161 | 2019-04-18 | WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and... |
| CVE-2019-11332 | 2019-04-18 | MKCMS 5.0 allows remote attackers to take over arbitrary user... |
| CVE-2019-11338 | 2019-04-18 | libavcodec/hevcdec.c in FFmpeg 3.4 and 4.1.2 mishandles detection of duplicate... |
| CVE-2019-11339 | 2019-04-18 | The studio profile decoder in libavcodec/mpeg4videodec.c in FFmpeg 4.0 before... |
| CVE-2019-11358 | 2019-04-19 | jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and... |
| CVE-2019-11340 | 2019-04-19 | util/emailutils.py in Matrix Sydent before 1.0.2 mishandles registration restrictions that... |
| CVE-2019-10245 | 2019-04-19 | In Eclipse OpenJ9 prior to the 0.14.0 release, the Java... |
| CVE-2018-1729 | 2019-04-19 | IBM QRadar SIEM 7.3 discloses sensitive information to unauthorized users.... |
| CVE-2019-4055 | 2019-04-19 | IBM MQ 8.0.0.0 through 8.0.0.10, 9.0.0.0 through 9.0.0.5, and 9.1.0.0... |
| CVE-2019-10886 | 2019-04-19 | An incorrect access control exists in the Sony Photo Sharing... |
| CVE-2019-5008 | 2019-04-19 | hw/sparc64/sun4u.c in QEMU 3.1.50 is vulnerable to a NULL pointer... |
| CVE-2019-11344 | 2019-04-19 | data/inc/files.php in Pluck 4.7.8 allows remote attackers to execute arbitrary... |
| CVE-2019-9841 | 2019-04-19 | Vesta Control Panel 0.9.8-23 allows XSS via a crafted URL. |
| CVE-2019-2026 | 2019-04-19 | In updateAssistMenuItems of Editor.java, there is a possible escape from... |
| CVE-2019-2027 | 2019-04-19 | In floor0_inverse1 of floor0.c, there is a possible out of... |
| CVE-2019-2028 | 2019-04-19 | In numerous hand-crafted functions in libmpeg2, NEON registers are not... |
| CVE-2019-2030 | 2019-04-19 | In removeInterfaceAddress of NetworkController.cpp, there is a possible use after... |
| CVE-2019-2031 | 2019-04-19 | In rw_t3t_act_handle_check_ndef_rsp of rw_t3t.cc, there is a possible out-of-bound write... |
| CVE-2019-2033 | 2019-04-19 | In create_hdr of dnssd_clientstub.c, there is a possible use after... |
| CVE-2019-2034 | 2019-04-19 | In rw_i93_sm_read_ndef of rw_i93.cc, there is a possible out-of-bounds write... |
| CVE-2019-2035 | 2019-04-19 | In rw_i93_sm_update_ndef of rw_i93.cc, there is a possible out-of-bound write... |
| CVE-2019-2038 | 2019-04-19 | In rw_i93_process_sys_info of rw_i93.cc, there is a possible out-of-bound read... |
| CVE-2019-2039 | 2019-04-19 | In rw_i93_sm_detect_ndef of rw_i93.cc, there is a possible out-of-bound read... |
| CVE-2019-2040 | 2019-04-19 | In rw_i93_process_ext_sys_info of rw_i93.cc, there is a possible out-of-bound read... |
| CVE-2019-2029 | 2019-04-19 | In btm_proc_smp_cback of tm_ble.cc, there is a possible memory corruption... |
| CVE-2019-2032 | 2019-04-19 | In SetScanResponseData of ble_advertiser_hci_interface.cc, there is a possible out-of-bound write... |
| CVE-2019-2041 | 2019-04-19 | In the configuration of NFC modules on certain devices, there... |
| CVE-2019-2037 | 2019-04-19 | In l2cu_send_peer_config_rej of l2c_utils.cc, there is a possible out-of-bound read... |
| CVE-2019-11350 | 2019-04-19 | CloudBees Jenkins Operations Center 2.150.2.3, when an expired trial license... |
| CVE-2019-11351 | 2019-04-19 | TeamSpeak 3 Client before 3.2.5 allows remote code execution in... |
| CVE-2019-11354 | 2019-04-19 | The client in Electronic Arts (EA) Origin 10.5.36 on Windows... |
| CVE-2018-20817 | 2019-04-19 | SV_SteamAuthClient in various Activision Infinity Ward Call of Duty games... |
| CVE-2019-11359 | 2019-04-19 | Cross-site scripting (XSS) vulnerability in display.php in I, Librarian 4.10... |
| CVE-2019-11362 | 2019-04-20 | app/controllers/frontend/PostController.php in ROCBOSS V2.2.1 has SQL injection via the Post:doReward... |
| CVE-2019-11365 | 2019-04-20 | An issue was discovered in atftpd in atftp 0.7.1. A... |
| CVE-2019-11366 | 2019-04-20 | An issue was discovered in atftpd in atftp 0.7.1. It... |
| CVE-2019-11372 | 2019-04-20 | An out-of-bounds read in MediaInfoLib::File__Tags_Helper::Synched_Test in Tag/File__Tags.cpp in MediaInfoLib in... |
| CVE-2019-11373 | 2019-04-20 | An out-of-bounds read in File__Analyze::Get_L8 in File__Analyze_Buffer.cpp in MediaInfoLib in... |
| CVE-2019-11374 | 2019-04-20 | 74CMS v5.0.1 has a CSRF vulnerability to add a new... |
| CVE-2019-11375 | 2019-04-20 | Msvod v10 has a CSRF vulnerability to change user information... |
| CVE-2019-11376 | 2019-04-20 | SOY CMS v3.0.2 allows remote attackers to execute arbitrary PHP... |
| CVE-2019-11377 | 2019-04-20 | wcms/wex/finder/action.php in WCMS v0.3.2 has a Arbitrary File Upload Vulnerability... |
| CVE-2019-11378 | 2019-04-20 | An issue was discovered in ProjectSend r1053. upload-process-form.php allows finished_files[]=../... |
| CVE-2019-11371 | 2019-04-20 | BWA (aka Burrow-Wheeler Aligner) 0.7.17 r1198 has a Buffer Overflow... |
| CVE-2019-11387 | 2019-04-21 | An issue was discovered in OWASP ModSecurity Core Rule Set... |
| CVE-2019-11388 | 2019-04-21 | An issue was discovered in OWASP ModSecurity Core Rule Set... |
| CVE-2019-11389 | 2019-04-21 | An issue was discovered in OWASP ModSecurity Core Rule Set... |
| CVE-2019-11390 | 2019-04-21 | An issue was discovered in OWASP ModSecurity Core Rule Set... |
| CVE-2019-11391 | 2019-04-21 | An issue was discovered in OWASP ModSecurity Core Rule Set... |
| CVE-2019-11393 | 2019-04-21 | An issue was discovered in /admin/users/update in M/Monit before 3.7.3.... |
| CVE-2019-11395 | 2019-04-21 | A buffer overflow in MailCarrier 2.51 allows remote attackers to... |
| CVE-2019-11401 | 2019-04-21 | A issue was discovered in SiteServer CMS 6.9.0. It allows... |
| CVE-2019-11402 | 2019-04-21 | In Gradle Enterprise before 2018.5.3, Build Cache Nodes did not... |
| CVE-2019-11403 | 2019-04-21 | In Gradle Enterprise before 2018.5.2, Build Cache Nodes would reflect... |
| CVE-2019-11404 | 2019-04-21 | arrow-kt Arrow before 0.9.0 resolved Gradle build artifacts (for compiling... |
| CVE-2019-11405 | 2019-04-21 | OpenAPI Tools OpenAPI Generator before 4.0.0-20190419.052012-560 uses http:// URLs in... |
| CVE-2019-11234 | 2019-04-21 | FreeRADIUS before 3.0.19 does not prevent use of reflection for... |
| CVE-2019-11235 | 2019-04-21 | FreeRADIUS before 3.0.19 mishandles the "each participant verifies that the... |