|
219111
|
6.5 |
MEDIUM
Network
|
forcepoint
|
one_endpoint
|
This vulnerability allows a normal (non-admin) user to disable the Forcepoint One Endpoint (versions 19.04 through 19.08) and bypass DLP and Web protection.
|
CWE-863
Incorrect Authorization
|
CVE-2019-6144
|
2024-11-21 13:46 |
2019-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219112
|
7.5 |
HIGH
Network
|
isc
|
bind
|
A defect in code added to support QNAME minimization can cause named to exit with an assertion failure if a forwarder returns a referral rather than resolving the query. This affects BIND versions 9.…
|
CWE-617
Reachable Assertion
|
CVE-2019-6476
|
2024-11-21 13:46 |
2019-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219113
|
7.5 |
HIGH
Network
|
isc
|
bind
|
Mirror zones are a BIND feature allowing recursive servers to pre-cache zone data provided by other servers. A mirror zone is similar to a zone of type secondary, except that its data is subject to D…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2019-6475
|
2024-11-21 13:46 |
2019-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219114
|
6.5 |
MEDIUM
Adjacent
|
isc
|
kea
|
A missing check on incoming client requests can be exploited to cause a situation where the Kea server's lease storage contains leases which are rejected as invalid when the server tries to load leas…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2019-6474
|
2024-11-21 13:46 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219115
|
6.5 |
MEDIUM
Adjacent
|
ics
|
kea
|
An invalid hostname option can trigger an assertion failure in the Kea DHCPv4 server process (kea-dhcp4), causing the server process to exit. Versions affected: 1.4.0 to 1.5.0, 1.6.0-beta1, and 1.6.0…
|
CWE-617
Reachable Assertion
|
CVE-2019-6473
|
2024-11-21 13:46 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219116
|
6.5 |
MEDIUM
Adjacent
|
isc
|
kea
|
A packet containing a malformed DUID can cause the Kea DHCPv6 server process (kea-dhcp6) to exit due to an assertion failure. Versions affected: 1.4.0 to 1.5.0, 1.6.0-beta1, and 1.6.0-beta2.
|
CWE-617
Reachable Assertion
|
CVE-2019-6472
|
2024-11-21 13:46 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219117
|
9.8 |
CRITICAL
Network
|
hp
|
futuresmart_3
futuresmart_4
|
HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers have a solution to check application signature that may allow potential execution of arbitrary code.
|
NVD-CWE-noinfo
|
CVE-2019-6334
|
2024-11-21 13:46 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219118
|
7.5 |
HIGH
Network
|
hp
|
samsung_clp680_firmware
samsung_m2070_firmware
samsung_c480_firmware
samsung_m436dn_firmware
|
A potential security vulnerability has been identified with Samsung Laser Printers. This vulnerability could potentially be exploited to create a denial of service.
|
NVD-CWE-noinfo
|
CVE-2019-6335
|
2024-11-21 13:46 |
2019-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219119
|
6.7 |
MEDIUM
Local
|
hp
|
touchpoint_analytics
|
A potential security vulnerability has been identified with certain versions of HP Touchpoint Analytics prior to version 4.1.4.2827. This vulnerability may allow a local attacker with administrative …
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2019-6333
|
2024-11-21 13:46 |
2019-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219120
|
7.5 |
HIGH
Network
|
isc
|
bind
|
An error in the EDNS Client Subnet (ECS) feature for recursive resolvers can cause BIND to exit with an assertion failure when processing a response that has malformed RRSIGs. Versions affected: BIND…
|
CWE-617
Reachable Assertion
|
CVE-2019-6469
|
2024-11-21 13:46 |
2019-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
