|
213961
|
7.8 |
HIGH
Local
|
sonicwall
|
sonicos
sonicos_sslvpn_nacagent
|
Installation of the SonicOS SSLVPN NACagent 3.5 on the Windows operating system, an autorun value is created does not put the path in quotes, so if a malicious binary by an attacker within the parent…
|
CWE-428
Unquoted Search Path or Element
|
CVE-2019-7487
|
2024-11-21 13:48 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213962
|
8.8 |
HIGH
Network
|
sonicwall
|
sma_100_firmware
|
Code injection in SonicWall SMA100 allows an authenticated user to execute arbitrary code in viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.4 and earlier.
|
CWE-94
Code Injection
|
CVE-2019-7486
|
2024-11-21 13:48 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213963
|
8.8 |
HIGH
Network
|
sonicwall
|
sma_100_firmware
|
Buffer overflow in SonicWall SMA100 allows an authenticated user to execute arbitrary code in DEARegister CGI script. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-7485
|
2024-11-21 13:48 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213964
|
6.5 |
MEDIUM
Network
|
sonicwall
|
sma_100_firmware
|
Authenticated SQL Injection in SonicWall SMA100 allow user to gain read-only access to unauthorized resources using viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.3 and earli…
|
CWE-89
SQL Injection
|
CVE-2019-7484
|
2024-11-21 13:48 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213965
|
7.5 |
HIGH
Network
|
sonicwall
|
sma_100_firmware
|
In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect CGI allows the user to test for the presence of a file on the server.
|
CWE-22
Path Traversal
|
CVE-2019-7483
|
2024-11-21 13:48 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213966
|
9.8 |
CRITICAL
Network
|
sonicwall
|
sma_100_firmware
|
Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-7482
|
2024-11-21 13:48 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213967
|
5.4 |
MEDIUM
Network
|
elastic
|
kibana
|
Kibana versions before 6.8.6 and 7.5.1 contain a cross site scripting (XSS) flaw in the coordinate and region map visualizations. An attacker with the ability to create coordinate map visualizations …
|
CWE-79
Cross-site Scripting
|
CVE-2019-7621
|
2024-11-21 13:48 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213968
|
7.5 |
HIGH
Network
|
sonicwall
|
sma_100_firmware
|
Vulnerability in SonicWall SMA100 allow unauthenticated user to gain read-only access to unauthorized resources. This vulnerablity impacted SMA100 version 9.0.0.3 and earlier.
|
CWE-89
SQL Injection
|
CVE-2019-7481
|
2024-11-21 13:48 |
2019-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213969
|
7.8 |
HIGH
Local
|
autodesk
|
fbx_software_development_kit
|
Buffer overflow vulnerability in Autodesk FBX Software Development Kit version 2019.5. A user may be tricked into opening a malicious FBX file which may exploit a buffer overflow vulnerability causin…
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-7366
|
2024-11-21 13:48 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213970
|
7.8 |
HIGH
Local
|
autodesk
|
autodesk_desktop
|
DLL preloading vulnerability in Autodesk Desktop Application versions 7.0.16.29 and earlier. An attacker may trick a user into downloading a malicious DLL file into the working directory, which may t…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2019-7365
|
2024-11-21 13:48 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
