|
213171
|
8.1 |
HIGH
Network
|
hashicorp
|
consul
|
HashiCorp Consul (and Consul Enterprise) 1.4.x before 1.4.3 allows a client to bypass intended access restrictions and obtain the privileges of one other arbitrary token within secondary datacenters,…
|
NVD-CWE-noinfo
|
CVE-2019-8336
|
2024-11-21 13:49 |
2019-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213172
|
6.5 |
MEDIUM
Network
|
uvnc
siemens
|
ultravnc
sinumerik_pcu_base_win7_software\/ipc
sinumerik_pcu_base_win10_software\/ipc
sinumerik_access_mymachine\/p2p
|
UltraVNC revision 1205 has stack-based buffer overflow vulnerability in VNC client code inside ShowConnInfo routine, which leads to a denial of service (DoS) condition. This attack appear to be explo…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8263
|
2024-11-21 13:49 |
2019-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213173
|
9.8 |
CRITICAL
Network
|
uvnc
siemens
|
ultravnc
sinumerik_pcu_base_win7_software\/ipc
sinumerik_pcu_base_win10_software\/ipc
sinumerik_access_mymachine\/p2p
|
UltraVNC revision 1203 has multiple heap buffer overflow vulnerabilities in VNC client code inside Ultra decoder, which results in code execution. This attack appears to be exploitable via network co…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8262
|
2024-11-21 13:49 |
2019-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213174
|
9.8 |
CRITICAL
Network
|
uvnc
|
ultravnc
|
UltraVNC revision 1199 has a out-of-bounds read vulnerability in VNC code inside client CoRRE decoder, caused by multiplication overflow. This attack appears to be exploitable via network connectivit…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-8261
|
2024-11-21 13:49 |
2019-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213175
|
9.8 |
CRITICAL
Network
|
uvnc
|
ultravnc
|
UltraVNC revision 1199 has a out-of-bounds read vulnerability in VNC client RRE decoder code, caused by multiplication overflow. This attack appears to be exploitable via network connectivity. This v…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-8260
|
2024-11-21 13:49 |
2019-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213176
|
7.5 |
HIGH
Network
|
uvnc
siemens
|
ultravnc
sinumerik_pcu_base_win7_software\/ipc
sinumerik_pcu_base_win10_software\/ipc
sinumerik_access_mymachine\/p2p
|
UltraVNC revision 1198 contains multiple memory leaks (CWE-655) in VNC client code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vu…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-8259
|
2024-11-21 13:49 |
2019-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213177
|
9.8 |
CRITICAL
Network
|
uvnc
siemens
|
ultravnc
sinumerik_pcu_base_win7_software\/ipc
sinumerik_pcu_base_win10_software\/ipc
sinumerik_access_mymachine\/p2p
|
UltraVNC revision 1198 has a heap buffer overflow vulnerability in VNC client code which results code execution. This attack appears to be exploitable via network connectivity. This vulnerability has…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8258
|
2024-11-21 13:49 |
2019-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213178
|
5.4 |
MEDIUM
Network
|
vanillaforums
|
vanilla_forums
|
Multiple stored XSS in Vanilla Forums before 2.5 allow remote attackers to inject arbitrary JavaScript code into any message on forum.
|
CWE-79
Cross-site Scripting
|
CVE-2019-8279
|
2024-11-21 13:49 |
2019-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213179
|
6.1 |
MEDIUM
Network
|
invisioncommunity
|
invision_power_board
|
Stored XSS in Invision Power Board versions 3.3.1 - 3.4.8 leads to Remote Code Execution.
|
CWE-79
Cross-site Scripting
|
CVE-2019-8278
|
2024-11-21 13:49 |
2019-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213180
|
6.1 |
MEDIUM
Network
|
maccms
|
maccms
|
Maccms 8.0 allows XSS via the inc/config/cache.php t_key parameter because template/paody/html/vod_type.html mishandles the keywords parameter, and a/tpl/module/db.php only filters the t_name paramet…
|
CWE-79
Cross-site Scripting
|
CVE-2019-8410
|
2024-11-21 13:49 |
2019-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
