| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 144415 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| N/A | 2019-04-18 | CVE-2018-17287 | cve | In Kofax Front Office Server Administration Console 4.1.1.11.0.5212, some fields, such as passwords, are obfuscated in the front-end, but the cleartext value can be exfiltrated ... |
| N/A | 2019-04-18 | CVE-2018-16878 | cve | A flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS |
| N/A | 2019-04-18 | CVE-2018-16877 | cve | A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combin... |
| 4 | 2019-04-18 | USN-3950-1 | Ubuntu | ZNC vulnerability |
| 5 | 2019-04-18 | CVE-2019-8999 | cve | An XML External Entity vulnerability in the UEM Core of BlackBerry UEM version(s) earlier than 12.10.1a could allow an attacker to potentially gain read access to files on any s... |
| 7.5 | 2019-04-18 | CVE-2019-11322 | cve | An issue was discovered in Motorola CX2 1.01 and M2 1.01. There is a command injection in the function startRmtAssist in hnap, which leads to remote code execution via shell met... |
| 5 | 2019-04-18 | CVE-2019-11321 | cve | An issue was discovered in Motorola CX2 1.01 and M2 1.01. The router opens TCP port 8010. Users can send hnap requests to this port without authentication to obtain information ... |
| 7.5 | 2019-04-18 | CVE-2019-11320 | cve | In Motorola CX2 1.01 and M2 1.01, users can access the router's /priv_mgt.html web page to launch telnetd, as demonstrated by the 192.168.51.1 address. |
| 7.5 | 2019-04-18 | CVE-2019-11319 | cve | An issue was discovered in Motorola CX2 1.01 and M2 1.01. There is a command injection in the function downloadFirmware in hnap, which leads to remote code execution via shell m... |
| 6.4 | 2019-04-18 | CVE-2019-11035 | cve | When processing certain files, PHP EXIF extension in versions 7.1.x below 7.2.8, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_iif... |
| 6.4 | 2019-04-18 | CVE-2019-11034 | cve | When processing certain files, PHP EXIF extension in versions 7.1.x below 7.2.8, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_pro... |
| 6.5 | 2019-04-18 | CVE-2019-10306 | cve | A sandbox bypass vulnerability in Jenkins ontrack Plugin 3.4 and earlier allowed attackers with control over ontrack DSL definitions to execute arbitrary code on the Jenkins mas... |
| 4 | 2019-04-18 | CVE-2019-10305 | cve | A missing permission check in Jenkins XebiaLabs XL Deploy Plugin in the Credential#doValidateUserNamePassword form validation method allows attackers with Overall/Read permissio... |
| 4.3 | 2019-04-18 | CVE-2019-10304 | cve | A cross-site request forgery vulnerability in Jenkins XebiaLabs XL Deploy Plugin in the Credential#doValidateUserNamePassword form validation method allows attackers to initiate... |
| 4 | 2019-04-18 | CVE-2019-10303 | cve | Jenkins Azure PublisherSettings Credentials Plugin 1.2 and earlier stored credentials unencrypted in the credentials.xml file on the Jenkins master where they could be viewed by... |
| 4 | 2019-04-18 | CVE-2019-10302 | cve | Jenkins jira-ext Plugin 0.8 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to ... |
| 4 | 2019-04-18 | CVE-2019-10301 | cve | A missing permission check in Jenkins GitLab Plugin 1.5.11 and earlier in the GitLabConnectionConfig#doTestConnection form validation method allowed attackers with Overall/Read ... |
| 3.5 | 2019-04-18 | CVE-2019-10300 | cve | A cross-site request forgery vulnerability in Jenkins GitLab Plugin 1.5.11 and earlier in the GitLabConnectionConfig#doTestConnection form validation method allowed attackers to... |
| 4.3 | 2019-04-18 | CVE-2018-17168 | cve | PrinterOn Enterprise 4.1.4 contains multiple Cross Site Request Forgery (CSRF) vulnerabilities in the Administration page. For example, an administrator, by following a link, ca... |
| 5 | 2019-04-18 | CVE-2016-10746 | cve | libvirt-domain.c in libvirt before 1.3.1 supports virDomainGetTime API calls by guest agents with an RO connection, even though an RW connection was supposed to be required, a d... |
| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 144415 |
