|
211701
|
5.5 |
MEDIUM
Local
|
micode
|
xiaomi_perseus-p-oss
|
The msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the count argument in sde_evtlog_…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2019-9111
|
2024-11-21 13:51 |
2019-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211702
|
6.1 |
MEDIUM
Network
|
wuzhicms
|
wuzhi_cms
|
XSS exists in WUZHI CMS 4.1.0 via index.php?m=content&f=postinfo&v=listing&set_iframe=[XSS] to coreframe/app/content/postinfo.php.
|
CWE-79
Cross-site Scripting
|
CVE-2019-9110
|
2024-11-21 13:51 |
2019-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211703
|
6.1 |
MEDIUM
Network
|
wuzhicms
|
wuzhi_cms
|
XSS exists in WUZHI CMS 4.1.0 via index.php?m=message&f=message&v=add&username=[XSS] to coreframe/app/message/message.php.
|
CWE-79
Cross-site Scripting
|
CVE-2019-9109
|
2024-11-21 13:51 |
2019-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211704
|
7.5 |
HIGH
Network
|
flexera
|
flexnet_publisher
|
A Denial of Service (DoS) vulnerability was discovered in FlexNet Publisher's lmadmin 11.16.5, when doing a crafted POST request on lmadmin using the web-based tool.
|
NVD-CWE-noinfo
|
CVE-2019-8963
|
2024-11-21 13:50 |
2023-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211705
|
8.8 |
HIGH
Network
|
webkitgtk
wpewebkit
redhat
|
webkitgtk
wpe_webkit
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_for_scientific_computing
enterprise_linux_server
enterprise_linux_for_power_little_endian…
|
A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitrary code execution. Improved memory handling addresses the multiple m…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2019-8720
|
2024-11-21 13:50 |
2023-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211706
|
5.3 |
MEDIUM
Network
|
pilz
|
pmc
|
In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), an attacker can identify valid usernames.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2019-9011
|
2024-11-21 13:50 |
2022-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211707
|
9.8 |
CRITICAL
Network
|
apple
|
iphone_os
mac_os_x
watchos
tvos
|
This issue was addressed with improved entitlements. This issue is fixed in watchOS 6, tvOS 13, macOS Catalina 10.15, iOS 13. An application may be able to gain elevated privileges.
|
NVD-CWE-noinfo
|
CVE-2019-8703
|
2024-11-21 13:50 |
2021-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211708
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
tvos
iphone_os
|
This issue was addressed with a new entitlement. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra, iOS 12.4, tvOS 12.4. A local user …
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2019-8702
|
2024-11-21 13:50 |
2021-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211709
|
9.8 |
CRITICAL
Network
|
apple
|
mac_os_x
|
CVE-2019-8643: Arun Sharma of VMWare This issue is fixed in macOS Mojave 10.14. Description: A logic issue was addressed with improved state management..
|
NVD-CWE-noinfo
|
CVE-2019-8643
|
2024-11-21 13:50 |
2021-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211710
|
8.8 |
HIGH
Adjacent
|
bluez
debian
|
bluez
debian_linux
|
A heap-based buffer overflow was discovered in bluetoothd in BlueZ through 5.48. There isn't any check on whether there is enough space in the destination buffer. The function simply appends all data…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8922
|
2024-11-21 13:50 |
2021-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
