|
219781
|
7.5 |
HIGH
Network
|
netapp
|
oncommand_unified_manager
|
OnCommand Unified Manager 7-Mode prior to version 5.2.4 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors.
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2019-5494
|
2024-11-21 13:45 |
2019-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219782
|
7.3 |
HIGH
Local
|
rapid7
|
metasploit
|
Rapid7 Metasploit Framework suffers from an instance of CWE-22, Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in the Zip import function of Metasploit. Exploiting thi…
|
CWE-22
Path Traversal
|
CVE-2019-5624
|
2024-11-21 13:45 |
2019-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219783
|
7.5 |
HIGH
Network
|
netapp
|
hyper_converged_infrastructure_compute_node
element_plug-in_for_vcenter_server
|
Element Plug-in for vCenter Server versions prior to 4.2.3 may disclose sensitive account information to an unauthenticated attacker. NetApp HCI Compute Node versions prior to 1.4P2 bundle affected v…
|
NVD-CWE-noinfo
|
CVE-2019-5492
|
2024-11-21 13:45 |
2019-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219784
|
5.9 |
MEDIUM
Network
|
vmware
|
fusion
workstation
esxi
|
VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001), Workstation (15.x before 15.0.3 and 14.x before 14.1.6), Fusion (11.x before 11.0.3 and 10.x before 10.1.6) updates add…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-5520
|
2024-11-21 13:45 |
2019-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219785
|
6.8 |
MEDIUM
Network
|
vmware
|
fusion
workstation
esxi
|
VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001), Workstation (15.x before 15.0.3 and 14.x before 14.1.6), Fusion (11.x before 11.0.3 and 10.x before 10.1.6) contain mul…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-5517
|
2024-11-21 13:45 |
2019-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219786
|
6.8 |
MEDIUM
Network
|
vmware
|
fusion
workstation
esxi
|
VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001), Workstation (15.x before 15.0.3 and 14.x before 14.1.6), Fusion (11.x before 11.0.3 and 10.x before 10.1.6) updates add…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-5516
|
2024-11-21 13:45 |
2019-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219787
|
9.8 |
CRITICAL
Network
|
silverstripe
|
silverstripe
|
All versions of SilverStripe 3 prior to 3.6.7 and 3.7.3, and all versions of SilverStripe 4 prior to 4.0.7, 4.1.5, 4.2.4, and 4.3.1 allows Reflected SQL Injection through Form and DataObject.
|
CWE-89
SQL Injection
|
CVE-2019-5715
|
2024-11-21 13:45 |
2019-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219788
|
6.1 |
MEDIUM
Local
|
nvidia
|
jetson_tx2
|
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver (on all versions prior to R28.3) where the ARM System Memory Management Unit (SMMU) improperly checks for a fault condition, causing tr…
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2019-5673
|
2024-11-21 13:45 |
2019-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219789
|
9.1 |
CRITICAL
Network
|
nvidia
|
jetson_tx2
jetson_tx1
|
NVIDIA Jetson TX1 and TX2 contain a vulnerability in the Linux for Tegra (L4T) operating system (on all versions prior to R28.3) where the Secure Shell (SSH) keys provided in the sample rootfs are no…
|
CWE-320
Key Management Errors
|
CVE-2019-5672
|
2024-11-21 13:45 |
2019-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219790
|
6.1 |
MEDIUM
Local
|
forticlient
|
forticlient
|
An improper access control vulnerability in FortiClientMac before 6.0.5 may allow an attacker to affect the application's performance via modifying the contents of a file used by several FortiClientM…
|
NVD-CWE-noinfo
|
CVE-2019-5585
|
2024-11-21 13:45 |
2019-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
