| Page(s) : 1 ... 982 983 984 985 986 987 988 989 990 991 [992] 993 994 995 996 997 998 999 1000 1001 1002 ... | Result(s) : 43587 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2019-10-14 | CVE-2017-14948 | cve | Certain D-Link products are affected by: Buffer Overflow. This affects DIR-880L 1.08B04 and DIR-895 L/R 1.13b03. The impact is: execute arbitrary code (remote). The component is... |
| 9.8 | 2019-10-14 | CVE-2019-12941 | cve | AutoPi Wi-Fi/NB and 4G/LTE devices before 2019-10-15 allows an attacker to perform a brute-force attack or dictionary attack to gain access to the WiFi network, which provides r... |
| 9.8 | 2019-10-13 | CVE-2019-17539 | cve | In FFmpeg before 4.2, avcodec_open2 in libavcodec/utils.c allows a NULL pointer dereference and possibly unspecified other impact when there is no valid close function pointer. |
| 9.8 | 2019-10-13 | CVE-2019-17542 | cve | FFmpeg before 4.2 has a heap-based buffer overflow in vqa_decode_chunk because of an out-of-array access in vqa_decode_init in libavcodec/vqavideo.c. |
| 9.1 | 2019-10-13 | CVE-2019-17544 | cve | libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character. |
| 9.8 | 2019-10-13 | CVE-2019-17545 | cve | GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogr_expat.cpp when the 10MB threshold is exceeded. |
| 9.8 | 2019-10-12 | CVE-2019-17531 | cve | A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. When Default Typing is enabled (either globally or for a specific property) for an ... |
| 9.8 | 2019-10-11 | CVE-2018-21027 | cve | Boa through 0.94.14rc21 allows remote attackers to trigger an out-of-memory (OOM) condition because malloc is mishandled. |
| 9.8 | 2019-10-11 | CVE-2019-17506 | cve | There are some web interfaces without authentication requirements on D-Link DIR-868L B1-2.03 and DIR-817LW A1-1.04 routers. An attacker can get the router's username and pa... |
| 9.8 | 2019-10-11 | CVE-2019-17508 | cve | On D-Link DIR-859 A3-1.06 and DIR-850 A1.13 devices, /etc/services/DEVICE.TIME.php allows command injection via the $SERVER variable. |
| 9.8 | 2019-10-11 | CVE-2019-17509 | cve | D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary OS commands as root by leveraging admin access and sending a /HNAP1/ request for SetMaste... |
| 9.8 | 2019-10-11 | CVE-2019-17510 | cve | D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary OS commands as root by leveraging admin access and sending a /HNAP1/ request for SetWizar... |
| 9.8 | 2019-10-11 | CVE-2019-17059 | cve | A shell injection vulnerability on the Sophos Cyberoam firewall appliance with CyberoamOS before 10.6.6 MR-6 allows remote attackers to execute arbitrary commands via the Web Ad... |
| 9.9 | 2019-10-10 | CVE-2019-1365 | cve | An elevation of privilege vulnerability exists when Microsoft IIS Server fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploit... |
| 9.8 | 2019-10-10 | CVE-2015-9467 | cve | The broken-link-manager plugin before 0.5.0 for WordPress has wpslDelURL or wpslEditURL SQL injection via the url parameter. |
| 9.8 | 2019-10-10 | CVE-2015-9471 | cve | The dzs-zoomsounds plugin through 2.0 for WordPress has admin/upload.php arbitrary file upload. |
| 9.8 | 2019-10-10 | CVE-2019-17320 | cve | NetSarang XFTP Client 6.0149 and earlier version contains a buffer overflow vulnerability caused by improper boundary checks when copying file name from an attacker controlled F... |
| 9.8 | 2019-10-10 | CVE-2019-11526 | cve | An issue was discovered in Softing uaGate SI 1.60.01. A maintenance script, that is executable via sudo, is vulnerable to file path injection. This enables the Attacker to write... |
| 9.8 | 2019-10-10 | CVE-2015-9479 | cve | The ACF-Frontend-Display plugin through 2015-07-03 for WordPress has arbitrary file upload via an action=upload request to js/blueimp-jQuery-File-Upload-d45deb1/server/php/index... |
| 10 | 2019-10-10 | CVE-2019-1372 | cve | An remote code execution vulnerability exists when Azure App Service/ Antares on Azure Stack fails to check the length of a buffer prior to copying memory to it.An attacker who ... |
| Page(s) : 1 ... 982 983 984 985 986 987 988 989 990 991 [992] 993 994 995 996 997 998 999 1000 1001 1002 ... | Result(s) : 43587 |
