CVE List - 2019 / August
Showing 1301 - 1400 of 2001 CVEs for August 2019 (Page 14 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-8100 | 2019-08-20 | Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds write vulnerability. Successful... |
| CVE-2019-8101 | 2019-08-20 | Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an integer overflow vulnerability. Successful... |
| CVE-2019-8102 | 2019-08-20 | Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful... |
| CVE-2019-8103 | 2019-08-20 | Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful... |
| CVE-2019-8104 | 2019-08-20 | Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful... |
| CVE-2019-8105 | 2019-08-20 | Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful... |
| CVE-2019-8106 | 2019-08-20 | Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an out-of-bounds read vulnerability. Successful... |
| CVE-2019-5038 | 2019-08-20 | An exploitable command execution vulnerability exists in the print-tlv command of Weave tool. A specially crafted weave TLV can trigger a stack-based buffer overflow, resulting in code execution. An attacker... |
| CVE-2019-5039 | 2019-08-20 | An exploitable command execution vulnerability exists in the ASN1 certificate writing functionality of Openweave-core version 4.0.2. A specially crafted weave certificate can trigger a heap-based buffer overflow, resulting in code... |
| CVE-2019-5037 | 2019-08-20 | An exploitable denial-of-service vulnerability exists in the Weave certificate loading functionality of Nest Cam IQ Indoor camera, version 4620002. A specially crafted weave packet can cause an integer overflow and... |
| CVE-2019-5040 | 2019-08-20 | An exploitable information disclosure vulnerability exists in the Weave MessageLayer parsing of Openweave-core version 4.0.2 and Nest Cam IQ Indoor version 4620002. A specially crafted weave packet can cause an... |
| CVE-2019-10960 | 2019-08-20 | Zebra Industrial Printers All Versions, Zebra printers are shipped with unrestricted end-user access to front panel options. If the option to use a passcode to limit the functionality of the... |
| CVE-2019-5034 | 2019-08-20 | An exploitable information disclosure vulnerability exists in the Weave Legacy Pairing functionality of Nest Cam IQ Indoor version 4620002. A set of specially crafted weave packets can cause an out... |
| CVE-2019-5035 | 2019-08-20 | An exploitable information disclosure vulnerability exists in the Weave PASE pairing functionality of the Nest Cam IQ Indoor, version 4620002. A set of specially crafted weave packets can brute force... |
| CVE-2019-5036 | 2019-08-20 | An exploitable denial-of-service vulnerability exists in the Weave error reporting functionality of the Nest Cam IQ Indoor, version 4620002. A specially crafted weave packets can cause an arbitrary Weave Exchange... |
| CVE-2019-12746 | 2019-08-21 | An issue was discovered in Open Ticket Request System (OTRS) Community Edition 5.0.x through 5.0.36 and 6.0.x through 6.0.19. A user logged into OTRS as an agent might unknowingly disclose... |
| CVE-2019-13458 | 2019-08-21 | An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.8, and Community Edition 5.0.x through 5.0.36 and 6.0.x through 6.0.19. An attacker who is logged into OTRS... |
| CVE-2019-15292 | 2019-08-21 | An issue was discovered in the Linux kernel before 5.0.9. There is a use-after-free in atalk_proc_exit, related to net/appletalk/atalk_proc.c, net/appletalk/ddp.c, and net/appletalk/sysctl_net_atalk.c. |
| CVE-2019-15293 | 2019-08-21 | An issue was discovered in ACDSee Photo Studio Standard 22.1 Build 1159. There is a User Mode Write AV starting at IDE_ACDStd!IEP_ShowPlugInDialog+0x000000000023d060. |
| CVE-2019-15296 | 2019-08-21 | An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. The faad_resetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be... |
| CVE-2016-10896 | 2019-08-21 | The seo-redirection plugin before 4.3 for WordPress has stored XSS. |
| CVE-2017-18536 | 2019-08-21 | The stop-user-enumeration plugin before 1.3.8 for WordPress has XSS. |
| CVE-2016-10897 | 2019-08-21 | The sermon-browser plugin before 0.45.16 for WordPress has multiple XSS issues. |
| CVE-2017-18534 | 2019-08-21 | The share-on-diaspora plugin before 0.7.2 for WordPress has reflected XSS in share URL parameters. |
| CVE-2015-9321 | 2019-08-21 | The shortcode-factory plugin before 1.1.1 for WordPress has XSS via add_query_arg. |
| CVE-2019-15109 | 2019-08-21 | The the-events-calendar plugin before 4.8.2 for WordPress has XSS via the tribe_paged URL parameter. |
| CVE-2016-10899 | 2019-08-21 | The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability. |
| CVE-2016-10898 | 2019-08-21 | The total-security plugin before 3.4.1 for WordPress has XSS. |
| CVE-2017-18537 | 2019-08-21 | The visitors-online plugin before 1.0.0 for WordPress has multiple XSS issues. |
| CVE-2017-18538 | 2019-08-21 | The weblibrarian plugin before 3.4.8.5 for WordPress has XSS via front-end short codes. |
| CVE-2017-18539 | 2019-08-21 | The weblibrarian plugin before 3.4.8.6 for WordPress has XSS via front-end short codes. |
| CVE-2017-18540 | 2019-08-21 | The weblibrarian plugin before 3.4.8.7 for WordPress has XSS via front-end short codes. |
| CVE-2019-15110 | 2019-08-21 | The wp-front-end-profile plugin before 0.2.2 for WordPress has XSS. |
| CVE-2019-15111 | 2019-08-21 | The wp-front-end-profile plugin before 0.2.2 for WordPress has a privilege escalation issue. |
| CVE-2017-18565 | 2019-08-21 | The updater plugin before 1.35 for WordPress has multiple XSS issues. |
| CVE-2019-15112 | 2019-08-21 | The wp-slimstat plugin before 4.8.1 for WordPress has XSS. |
| CVE-2016-10900 | 2019-08-21 | The uji-countdown plugin before 2.0.7 for WordPress has XSS. |
| CVE-2016-10908 | 2019-08-21 | The booking-calendar-contact-form plugin before 1.0.24 for WordPress has XSS. |
| CVE-2016-10901 | 2019-08-21 | The wp-customer-reviews plugin before 3.0.9 for WordPress has XSS in the admin tools. |
| CVE-2016-10909 | 2019-08-21 | The booking-calendar-contact-form plugin before 1.0.24 for WordPress has SQL injection. |
| CVE-2016-10902 | 2019-08-21 | The wp-customer-reviews plugin before 3.0.9 for WordPress has CSRF in the admin tools. |
| CVE-2016-10903 | 2019-08-21 | The GoDaddy godaddy-email-marketing-sign-up-forms plugin before 1.1.3 for WordPress has CSRF. |
| CVE-2017-18553 | 2019-08-21 | The ad-buttons plugin before 2.3.2 for WordPress has XSS. |
| CVE-2017-18554 | 2019-08-21 | The analytics-tracker plugin before 1.1.1 for WordPress has XSS via a search event. |
| CVE-2017-18555 | 2019-08-21 | The booking-sms plugin before 1.1.0 for WordPress has XSS. |
| CVE-2017-18556 | 2019-08-21 | The bws-google-analytics plugin before 1.7.1 for WordPress has multiple XSS issues. |
| CVE-2017-18557 | 2019-08-21 | The bws-google-maps plugin before 1.3.6 for WordPress has multiple XSS issues. |
| CVE-2017-18558 | 2019-08-21 | The bws-testimonials plugin before 0.1.9 for WordPress has multiple XSS issues. |
| CVE-2017-18560 | 2019-08-21 | The content-audit plugin before 1.9.2 for WordPress has XSS. |
| CVE-2019-3633 | 2019-08-21 | Buffer overflow in DLP Endpoint for Windows |
| CVE-2019-3634 | 2019-08-21 | Buffer overflow in DLP Endpoint for Windows |
| CVE-2019-5033 | 2019-08-21 | An exploitable out-of-bounds read vulnerability exists in the Number record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code... |
| CVE-2019-5041 | 2019-08-21 | An exploitable Stack Based Buffer Overflow vulnerability exists in the EnumMetaInfo function of Aspose Aspose.Words library, version 18.11.0.0. A specially crafted doc file can cause a stack-based buffer overflow, resulting... |
| CVE-2019-5032 | 2019-08-21 | An exploitable out-of-bounds read vulnerability exists in the LabelSst record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code... |
| CVE-2019-11897 | 2019-08-21 | Server-side request forgery in the backup & restore functionality of ProSyst mBS SDK and Bosch IoT Gateway Software |
| CVE-2019-15295 | 2019-08-21 | An Untrusted Search Path vulnerability in the ServiceInstance.dll library versions 1.0.15.119 and lower, as used in Bitdefender Antivirus Free 2020 versions prior to 1.0.15.138, allows an attacker to load an... |
| CVE-2016-10912 | 2019-08-21 | The universal-analytics plugin before 1.3.1 for WordPress has XSS. |
| CVE-2017-18564 | 2019-08-21 | The sender plugin before 1.2.1 for WordPress has multiple XSS issues. |
| CVE-2017-18563 | 2019-08-21 | The rsvp plugin before 2.3.8 for WordPress has persistent XSS via the note field on the attendee-list screen. |
| CVE-2014-10380 | 2019-08-21 | The profile-builder plugin before 1.1.66 for WordPress has multiple XSS issues in forms. |
| CVE-2015-9328 | 2019-08-21 | The profile-builder plugin before 2.2.5 for WordPress has XSS. |
| CVE-2016-10911 | 2019-08-21 | The profile-builder plugin before 2.4.2 for WordPress has multiple XSS issues. |
| CVE-2012-6715 | 2019-08-21 | The formbuilder plugin before 0.9.1 for WordPress has XSS via a Referer header. |
| CVE-2019-11551 | 2019-08-21 | In Code42 Enterprise and Crashplan for Small Business through Client version 6.9.1, an attacker can craft a restore request to restore a file through the Code42 app to a location... |
| CVE-2016-10910 | 2019-08-21 | The formbuilder plugin before 1.06 for WordPress has multiple XSS issues. |
| CVE-2015-9327 | 2019-08-21 | The flickr-justified-gallery plugin before 3.4.0 for WordPress has XSS. |
| CVE-2019-12623 | 2019-08-21 | Cisco Enterprise Network Functions Virtualization Infrastructure Software File Enumeration Vulnerability |
| CVE-2019-12622 | 2019-08-21 | Cisco RoomOS Software Privilege Escalation Vulnerability |
| CVE-2019-12621 | 2019-08-21 | Cisco HyperFlex Static SSL Key Vulnerability |
| CVE-2019-12634 | 2019-08-21 | Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Denial of Service Vulnerability |
| CVE-2019-12627 | 2019-08-21 | Cisco Firepower Threat Defense Software Information Disclosure Vulnerability |
| CVE-2019-12626 | 2019-08-21 | Cisco Unified Contact Center Express Stored Cross-Site Scripting Vulnerability |
| CVE-2019-12624 | 2019-08-21 | Cisco IOS XE NGWC Legacy Wireless Device Manager GUI Cross-Site Request Forgery Vulnerability |
| CVE-2017-18562 | 2019-08-21 | The error-log-viewer plugin before 1.0.6 for WordPress has multiple XSS issues. |
| CVE-2017-18561 | 2019-08-21 | The embed-comment-images plugin before 0.6 for WordPress has XSS. |
| CVE-2014-10379 | 2019-08-21 | The duplicate-post plugin before 2.6 for WordPress has SQL injection. |
| CVE-2014-10378 | 2019-08-21 | The duplicate-post plugin before 2.6 for WordPress has XSS. |
| CVE-2012-6714 | 2019-08-21 | The count-per-day plugin before 3.2.3 for WordPress has XSS via search words. |
| CVE-2019-1850 | 2019-08-21 | Cisco Integrated Management Controller Command Injection Vulnerability |
| CVE-2019-1839 | 2019-08-21 | Cisco Remote PHY Device Software Command Injection Vulnerability |
| CVE-2019-1634 | 2019-08-21 | Cisco Integrated Management Controller Command Injection Vulnerability |
| CVE-2014-10377 | 2019-08-21 | The cforms2 plugin before 13.2 for WordPress has XSS in lib_ajax.php. |
| CVE-2017-18559 | 2019-08-21 | The cforms2 plugin before 14.13.3 for WordPress has multiple XSS issues. |
| CVE-2018-20977 | 2019-08-21 | The all-in-one-schemaorg-rich-snippets plugin before 1.5.0 for WordPress has XSS on the settings page. |
| CVE-2019-15127 | 2019-08-21 | REDCap before 9.3.0 allows XSS attacks against non-administrator accounts on the Data Import Tool page via a CSV data import file. |
| CVE-2017-18535 | 2019-08-21 | The smokesignal plugin before 1.2.7 for WordPress has XSS. |
| CVE-2019-1871 | 2019-08-21 | Cisco Integrated Management Controller Buffer Overflow Vulnerability |
| CVE-2019-1865 | 2019-08-21 | Cisco Integrated Management Controller Command Injection Vulnerability |
| CVE-2019-1864 | 2019-08-21 | Cisco Integrated Management Controller Command Injection Vulnerability |
| CVE-2019-1863 | 2019-08-21 | Cisco Integrated Management Controller Privilege Escalation Vulnerability |
| CVE-2018-20970 | 2019-08-21 | The pdf-print plugin before 2.0.3 for WordPress has multiple XSS issues. |
| CVE-2017-18525 | 2019-08-21 | The megamenu plugin before 2.4 for WordPress has XSS. |
| CVE-2017-18521 | 2019-08-21 | The democracy-poll plugin before 5.4 for WordPress has CSRF via wp-admin/options-general.php?page=democracy-poll&subpage=l10n. |
| CVE-2017-18516 | 2019-08-21 | The bws-linkedin plugin before 1.0.5 for WordPress has multiple XSS issues. |
| CVE-2019-1900 | 2019-08-21 | Cisco Integrated Management Controller Unauthenticated Denial of Service Vulnerability |
| CVE-2019-1896 | 2019-08-21 | Cisco Integrated Management Controller CSR Generation Command Injection Vulnerability |
| CVE-2019-1885 | 2019-08-21 | Cisco Integrated Management Controller Command Injection Vulnerability |
| CVE-2019-1883 | 2019-08-21 | Cisco Integrated Management Controller CLI Command Injection Vulnerability |
| CVE-2016-10891 | 2019-08-21 | The aryo-activity-log plugin before 2.3.3 for WordPress has XSS. |
| CVE-2016-10890 | 2019-08-21 | The aryo-activity-log plugin before 2.3.2 for WordPress has XSS. |