|
221911
|
5.5 |
MEDIUM
Local
|
microsoft
|
windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019
|
An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles symlinks, aka 'Windows User Profile Service Elevation of Privilege Vulnerability'.
|
CWE-269
Improper Privilege Management
|
CVE-2019-1454
|
2024-11-21 13:36 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221912
|
7.8 |
HIGH
Local
|
microsoft
|
visual_studio_code
|
An elevation of privilege vulnerability exists in Visual Studio Code when it exposes a debug listener to users of a local computer, aka 'Visual Studio Code Elevation of Privilege Vulnerability'.
|
NVD-CWE-noinfo
|
CVE-2019-1414
|
2024-11-21 13:36 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221913
|
8.8 |
HIGH
Network
|
microsoft
|
visual_studio_2017
visual_studio_2019
|
A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-201…
|
CWE-20
Improper Input Validation
|
CVE-2019-1354
|
2024-11-21 13:36 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221914
|
8.8 |
HIGH
Network
|
microsoft
|
visual_studio_2017
visual_studio_2019
|
A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-201…
|
CWE-20
Improper Input Validation
|
CVE-2019-1352
|
2024-11-21 13:36 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221915
|
7.5 |
HIGH
Network
|
microsoft
opensuse
|
visual_studio_2017
visual_studio_2019
leap
|
A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'.
|
CWE-706
Use of Incorrectly-Resolved Name or Reference
|
CVE-2019-1351
|
2024-11-21 13:36 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221916
|
8.8 |
HIGH
Network
|
microsoft
|
visual_studio_2017
visual_studio_2019
|
A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-201…
|
CWE-20
Improper Input Validation
|
CVE-2019-1350
|
2024-11-21 13:36 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221917
|
8.8 |
HIGH
Network
|
microsoft
|
visual_studio_2017
visual_studio_2019
|
A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-201…
|
CWE-20
Improper Input Validation
|
CVE-2019-1349
|
2024-11-21 13:36 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221918
|
8.8 |
HIGH
Network
|
git-scm
|
git
|
An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. Recursive clones are currently affected by a vulnerability that…
|
NVD-CWE-noinfo
|
CVE-2019-1387
|
2024-11-21 13:36 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221919
|
5.4 |
MEDIUM
Network
|
microsoft
|
skype_for_business
|
A spoofing vulnerability exists when a Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business Server Spoofing Vulnerability'.
|
CWE-74
Injection
|
CVE-2019-1490
|
2024-11-21 13:36 |
2019-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221920
|
7.5 |
HIGH
Network
|
microsoft
|
windows_xp
|
An information disclosure vulnerability exists when the Windows Remote Desktop Protocol (RDP) fails to properly handle objects in memory, aka 'Remote Desktop Protocol Information Disclosure Vulnerabi…
|
CWE-200
Information Exposure
|
CVE-2019-1489
|
2024-11-21 13:36 |
2019-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
