CVE List - 2019 / April
Showing 701 - 800 of 1531 CVEs for April 2019 (Page 8 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-0008 | 2019-04-10 | QFX5000 Series, EX4300, EX4600: A stack buffer overflow vulnerability in Packet Forwarding Engine manager (FXPC) process |
| CVE-2019-0019 | 2019-04-10 | BGP packets can trigger rpd crash when BGP tracing is enabled. |
| CVE-2019-0028 | 2019-04-10 | Junos OS: RPD process crashes due to specific BGP peer restarts condition. |
| CVE-2019-0031 | 2019-04-10 | Junos OS: jdhcpd daemon memory consumption Denial of Service when receiving specific IPv6 DHCP packets. |
| CVE-2019-0032 | 2019-04-10 | Junos Space Service Now and Service Insight: Organization username and password stored in plaintext in log files. |
| CVE-2019-0033 | 2019-04-10 | SRX Series: A remote attacker may cause a high CPU Denial of Service to the device when proxy ARP is configured. |
| CVE-2019-0035 | 2019-04-10 | Junos OS: 'set system ports console insecure' allows root password recovery on OAM volumes |
| CVE-2019-0036 | 2019-04-10 | Junos OS: Firewall filter terms named "internal-1" and "internal-2" being ignored |
| CVE-2019-0037 | 2019-04-10 | Junos OS: jdhcpd crash upon receipt of crafted DHCPv6 solicit message |
| CVE-2019-0038 | 2019-04-10 | SRX Series: Crafted packets destined to fxp0 management interface on SRX340/SRX345 devices can lead to DoS |
| CVE-2019-0039 | 2019-04-10 | Junos OS: Login credentials are vulnerable to brute force attacks through the REST API |
| CVE-2019-0040 | 2019-04-10 | Junos OS: Specially crafted packets sent to port 111 on any interface triggers responses from the management interface |
| CVE-2019-0041 | 2019-04-10 | Junos OS: EX4300-MP Series: IP transit traffic can reach the control plane via loopback interface. |
| CVE-2019-0042 | 2019-04-10 | Incorrect messages from Juniper Identity Management Service (JIMS) can trigger Denial of Service or firewall bypass conditions for SRX series devices |
| CVE-2019-0043 | 2019-04-10 | Junos OS: RPD process crashes upon receipt of a specific SNMP packet |
| CVE-2019-0044 | 2019-04-10 | Junos OS: SRX5000 series: Kernel crash (vmcore) upon receipt of a specific packet on fxp0 interface |
| CVE-2019-11070 | 2019-04-10 | WebKitGTK and WPE WebKit prior to version 2.24.1 failed to... |
| CVE-2019-0279 | 2019-04-10 | ABAP BASIS function modules INST_CREATE_R3_RFC_DEST, INST_CREATE_TCPIP_RFCDEST, and INST_CREATE_TCPIP_RFC_DEST in SAP... |
| CVE-2019-0282 | 2019-04-10 | Several web pages in SAP NetWeaver Process Integration (Runtime Workbench),... |
| CVE-2019-0283 | 2019-04-10 | SAP NetWeaver Process Integration (Adapter Engine), fixed in versions 7.10... |
| CVE-2019-0284 | 2019-04-10 | SLD Registration in SAP HANA (fixed in versions 1.0, 2.0)... |
| CVE-2019-0285 | 2019-04-10 | The .NET SDK WebForm Viewer in SAP Crystal Reports for... |
| CVE-2019-11071 | 2019-04-10 | SPIP 3.1 before 3.1.10 and 3.2 before 3.2.4 allows authenticated... |
| CVE-2018-19453 | 2019-04-10 | Kentico CMS before 11.0.45 allows unrestricted upload of a file... |
| CVE-2019-11072 | 2019-04-10 | lighttpd before 1.4.54 has a signed integer overflow, which might... |
| CVE-2018-14683 | 2019-04-10 | PRTG before 19.1.49.1966 has Cross Site Scripting (XSS) in the... |
| CVE-2019-11077 | 2019-04-11 | FastAdmin V1.0.0.20190111_beta has a CSRF vulnerability to add a new... |
| CVE-2019-11078 | 2019-04-11 | MKCMS V5.0 has a CSRF vulnerability to add a new... |
| CVE-2019-3914 | 2019-04-11 | Remote command injection vulnerability in Verizon Fios Quantum Gateway (G1100)... |
| CVE-2019-3915 | 2019-04-11 | Authentication Bypass by Capture-replay vulnerability in Verizon Fios Quantum Gateway... |
| CVE-2019-3916 | 2019-04-11 | Information disclosure vulnerability in Verizon Fios Quantum Gateway (G1100) firmware... |
| CVE-2019-3845 | 2019-04-11 | A lack of access control was found in the message... |
| CVE-2019-3837 | 2019-04-11 | It was found that the net_dma code in tcp_recvmsg() in... |
| CVE-2019-6318 | 2019-04-11 | HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet... |
| CVE-2018-19300 | 2019-04-11 | On D-Link DAP-1530 (A1) before firmware version 1.06b01, DAP-1610 (A1)... |
| CVE-2019-3459 | 2019-04-11 | A heap address information leak while using L2CAP_GET_CONF_OPT was discovered... |
| CVE-2019-3460 | 2019-04-11 | A heap data infoleak in multiple locations including L2CAP_PARSE_CONF_RSP was... |
| CVE-2018-17305 | 2019-04-11 | UiPath Orchestrator through 2018.2.4 allows any authenticated user to change... |
| CVE-2019-5672 | 2019-04-11 | NVIDIA Jetson TX1 and TX2 contain a vulnerability in the... |
| CVE-2019-5673 | 2019-04-11 | NVIDIA Jetson TX2 contains a vulnerability in the kernel driver... |
| CVE-2019-6610 | 2019-04-11 | On BIG-IP versions 14.0.0-14.0.0.4, 13.0.0-13.1.1.1, 12.1.0-12.1.4, 11.6.0-11.6.3.4, and 11.5.1-11.5.8, the... |
| CVE-2019-5024 | 2019-04-11 | A restricted environment escape vulnerability exists in the “kiosk mode”... |
| CVE-2019-9974 | 2019-04-11 | diag_tool.cgi on DASAN H660RM GPON routers with firmware 1.03-0022 lacks... |
| CVE-2019-9975 | 2019-04-11 | DASAN H660RM devices with firmware 1.03-0022 use a hard-coded key... |
| CVE-2019-9976 | 2019-04-11 | The Boa server configuration on DASAN H660RM devices with firmware... |
| CVE-2019-5715 | 2019-04-11 | All versions of SilverStripe 3 prior to 3.6.7 and 3.7.3,... |
| CVE-2019-7219 | 2019-04-11 | Unauthenticated reflected cross-site scripting (XSS) exists in Zarafa Webapp 2.0.1.47791... |
| CVE-2019-9733 | 2019-04-11 | An issue was discovered in JFrog Artifactory 6.7.3. By default,... |
| CVE-2019-9628 | 2019-04-11 | The XMLTooling library all versions prior to V3.0.4, provided with... |
| CVE-2019-9056 | 2019-04-11 | An issue was discovered in CMS Made Simple 2.2.8. In... |
| CVE-2019-6493 | 2019-04-11 | SmartDefragDriver.sys (2.0) in IObit Smart Defrag 6 never frees an... |
| CVE-2019-7644 | 2019-04-11 | Auth0 Auth0-WCF-Service-JWT before 1.0.4 leaks the expected JWT signature in... |
| CVE-2019-6796 | 2019-04-11 | An issue was discovered in GitLab Community and Enterprise Edition... |
| CVE-2018-19202 | 2019-04-11 | A reflected XSS vulnerability in index.php in MyBB 1.8.x through... |
| CVE-2018-20487 | 2019-04-11 | An issue was discovered in the firewall3 component in Inteno... |
| CVE-2019-6525 | 2019-04-11 | AVEVA Wonderware System Platform 2017 Update 2 and prior uses... |
| CVE-2019-6534 | 2019-04-11 | The uncontrolled search path element vulnerability in Gemalto Sentinel UltraPro... |
| CVE-2019-11190 | 2019-04-11 | The Linux kernel before 4.8 allows local users to bypass... |
| CVE-2019-11191 | 2019-04-11 | The Linux kernel through 5.0.7, when CONFIG_IA32_AOUT is enabled and... |
| CVE-2019-11196 | 2019-04-12 | An authentication bypass vulnerability in all versions of ValuePLUS Integrated... |
| CVE-2019-11213 | 2019-04-12 | In Pulse Secure Pulse Desktop Client and Network Connect, an... |
| CVE-2017-14199 | 2019-04-12 | A buffer overflow has been found in the Zephyr Project's... |
| CVE-2018-6239 | 2019-04-12 | NVIDIA Jetson TX2 contains a vulnerability by means of speculative... |
| CVE-2018-6269 | 2019-04-12 | NVIDIA Jetson TX2 contains a vulnerability in the kernel driver... |
| CVE-2019-1574 | 2019-04-12 | Cross-site scripting (XSS) vulnerability in Palo Alto Networks Expedition Migration... |
| CVE-2019-10880 | 2019-04-12 | Within multiple XEROX products a vulnerability allows remote command execution... |
| CVE-2018-13137 | 2019-04-12 | The Events Manager plugin 5.9.4 for WordPress has XSS via... |
| CVE-2018-16254 | 2019-04-12 | There is an XSS vulnerability in WP All Import plugin... |
| CVE-2018-16255 | 2019-04-12 | There is an XSS vulnerability in WP All Import plugin... |
| CVE-2018-16256 | 2019-04-12 | There is an XSS vulnerability in WP All Import plugin... |
| CVE-2017-7772 | 2019-04-12 | Heap-based Buffer Overflow in Graphite2 library in Firefox before 54... |
| CVE-2018-16257 | 2019-04-12 | There are multiple XSS vulnerabilities in WP All Import plugin... |
| CVE-2018-16258 | 2019-04-12 | There is an XSS vulnerability in WP All Import plugin... |
| CVE-2018-16259 | 2019-04-12 | There is an XSS vulnerability in WP All Import plugin... |
| CVE-2019-11221 | 2019-04-12 | GPAC 0.7.1 has a buffer overflow issue in gf_import_message() in... |
| CVE-2019-11222 | 2019-04-12 | gf_bin128_parse in utils/os_divers.c in GPAC 0.7.1 has a buffer overflow... |
| CVE-2017-7771 | 2019-04-12 | Out-of-bounds read in Graphite2 Library in Firefox before 54 in... |
| CVE-2017-7773 | 2019-04-12 | Heap-based Buffer Overflow write in Graphite2 library in Firefox before... |
| CVE-2017-7774 | 2019-04-12 | Out-of-bounds read in Graphite2 Library in Firefox before 54 in... |
| CVE-2017-7776 | 2019-04-12 | Heap-based Buffer Overflow read in Graphite2 library in Firefox before... |
| CVE-2017-7777 | 2019-04-12 | Use of uninitialized memory in Graphite2 library in Firefox before... |
| CVE-2019-6526 | 2019-04-12 | Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version... |
| CVE-2019-3891 | 2019-04-12 | It was discovered that a world-readable log file belonging to... |
| CVE-2017-18366 | 2019-04-12 | Subrion CMS 4.1.5 has CSRF in blog/delete/. |
| CVE-2019-11228 | 2019-04-13 | repo/setting.go in Gitea before 1.7.6 and 1.8.x before 1.8-RC3 does... |
| CVE-2019-11229 | 2019-04-13 | models/repo_mirror.go in Gitea before 1.7.6 and 1.8.x before 1.8-RC3 mishandles... |
| CVE-2018-18261 | 2019-04-14 | In waimai Super Cms 20150505, there is an XSS vulnerability... |
| CVE-2019-11236 | 2019-04-15 | In the urllib3 library through 1.24.1 for Python, CRLF injection... |
| CVE-2019-0232 | 2019-04-15 | When running on Windows with enableCmdLineArguments enabled, the CGI Servlet... |
| CVE-2019-6609 | 2019-04-15 | Platform dependent weakness. This issue only impacts iSeries platforms. On... |
| CVE-2018-1925 | 2019-04-15 | IBM WebShere MQ 9.1.0.0, 9.1.0.1, 9.1.1 uses weaker than expected... |
| CVE-2019-4012 | 2019-04-15 | IBM BigFix WebUI Profile Management 6 and Software Distribution 23... |
| CVE-2019-4178 | 2019-04-15 | IBM Cognos Analytics 11 could allow a remote attacker to... |
| CVE-2019-4202 | 2019-04-15 | IBM API Connect 5.0.0.0 and 5.0.8.6 Developer Portal is vulnerable... |
| CVE-2019-4203 | 2019-04-15 | IBM API Connect 5.0.0.0 and 5.0.8.6 Developer Portal can be... |
| CVE-2019-5516 | 2019-04-15 | VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001), Workstation... |
| CVE-2019-5520 | 2019-04-15 | VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001), Workstation... |
| CVE-2019-5517 | 2019-04-15 | VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001), Workstation... |
| CVE-2018-17583 | 2019-04-15 | The WP Fastest Cache plugin 0.8.8.5 for WordPress has XSS... |
| CVE-2018-17584 | 2019-04-15 | The WP Fastest Cache plugin 0.8.8.5 for WordPress has CSRF... |