|
219051
|
6.5 |
MEDIUM
Network
|
mcafee
|
advanced_threat_defense
|
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attackers to gain access to hashed credentials via carefully constructed POST req…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2019-3649
|
2024-11-21 13:42 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219052
|
6.5 |
MEDIUM
Adjacent
|
zte
|
zxhn_h108n_firmware
|
All versions up to V2.5.0_EG1T5_TED of ZTE ZXHN H108N product are impacted by an information leak vulnerability. An attacker could exploit the vulnerability to obtain sensitive information and perfor…
|
NVD-CWE-noinfo
|
CVE-2019-3420
|
2024-11-21 13:42 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219053
|
4.5 |
MEDIUM
Network
|
mcafee
|
threat_intelligence_exchange_server
|
Abuse of Authorization vulnerability in APIs exposed by TIE server in McAfee Threat Intelligence Exchange Server (TIE Server) 3.0.0 allows remote authenticated users to modify stored reputation data …
|
NVD-CWE-noinfo
|
CVE-2019-3641
|
2024-11-21 13:42 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219054
|
6.7 |
MEDIUM
Local
|
mcafee
|
anti-virus_plus
internet_security
total_protection
|
A Privilege Escalation vulnerability in the Microsoft Windows client in McAfee Total Protection 16.0.R22 and earlier allows administrators to execute arbitrary code via carefully placing malicious fi…
|
CWE-426
Untrusted Search Path
|
CVE-2019-3648
|
2024-11-21 13:42 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219055
|
8.8 |
HIGH
Network
|
zte
|
zxupn-9000e_firmware
|
The 9000EV5.0R1B12 version, and all earlier versions of ZTE product ZXUPN-9000E are impacted by the input validation vulnerability. An attacker could exploit this vulnerability for unauthorized opera…
|
CWE-20
Improper Input Validation
|
CVE-2019-3426
|
2024-11-21 13:42 |
2019-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219056
|
8.8 |
HIGH
Network
|
zte
|
zxupn-9000e_firmware
|
The 9000EV5.0R1B12 version, and all earlier versions of ZTE product ZXUPN-9000E are impacted by vulnerability of permission and access control. An attacker could exploit this vulnerability to directl…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2019-3425
|
2024-11-21 13:42 |
2019-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219057
|
5.5 |
MEDIUM
Local
|
redhat
|
openstack-mistral
|
An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit t…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2019-3866
|
2024-11-21 13:42 |
2019-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219058
|
8.8 |
HIGH
Network
|
xmlseclibs_project
debian
simplesamlphp
|
xmlseclibs
debian_linux
simplesamlphp
|
Rob Richards XmlSecLibs, all versions prior to v3.0.3, as used for example by SimpleSAMLphp, performed incorrect validation of cryptographic signatures in XML messages, allowing an authenticated atta…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2019-3465
|
2024-11-21 13:42 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219059
|
6.2 |
MEDIUM
Local
|
zte
|
mf910s_firmware
|
The Sec Consult Security Lab reported an information disclosure vulnerability in MF910S product to ZTE PSIRT in October 2019. Through the analysis of related product team, the information disclosure …
|
CWE-200
Information Exposure
|
CVE-2019-3422
|
2024-11-21 13:42 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219060
|
4.3 |
MEDIUM
Network
|
dell
|
idrac8_firmware
idrac9_firmware
idrac7_firmware
|
Dell EMC iDRAC7 versions prior to 2.65.65.65, iDRAC8 versions prior to 2.70.70.70 and iDRAC9 versions prior to 3.36.36.36 contain an improper authorization vulnerability. A remote authenticated malic…
|
NVD-CWE-Other
|
CVE-2019-3764
|
2024-11-21 13:42 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
