|
222621
|
5.5 |
MEDIUM
Local
|
canon
|
print
|
The ContentProvider in the Canon PRINT jp.co.canon.bsd.ad.pixmaprint 2.5.5 application for Android does not properly restrict canon.ij.printer.capability.data data access. This allows an attacker's m…
|
NVD-CWE-noinfo
|
CVE-2019-14339
|
2024-11-21 13:26 |
2019-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222622
|
5.3 |
MEDIUM
Network
|
knowage-suite
|
knowage
|
In Knowage through 6.1.1, an unauthenticated user can enumerated valid usernames via the ChangePwdServlet page.
|
NVD-CWE-noinfo
|
CVE-2019-14278
|
2024-11-21 13:26 |
2019-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222623
|
6.1 |
MEDIUM
Network
|
instagram-php-api_project
userproplugin
|
instagram-php-api
user_pro
|
cosenary Instagram-PHP-API (aka Instagram PHP API V2), as used in the UserPro plugin through 4.9.32 for WordPress, has XSS via the example/success.php error_description parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2019-14470
|
2024-11-21 13:26 |
2019-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222624
|
6.5 |
MEDIUM
Adjacent
|
tiktok
|
tiktok
|
The TikTok (formerly Musical.ly) application 12.2.0 for Android and iOS performs unencrypted transmission of images, videos, and likes. This allows an attacker to extract private sensitive informatio…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2019-14319
|
2024-11-21 13:26 |
2019-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222625
|
7.5 |
HIGH
Network
|
abus
|
secvest_wireless_alarm_system_fuaa50000_firmware
|
An issue was discovered on ABUS Secvest FUAA50000 3.01.01 devices. Due to an insufficient implementation of jamming detection, an attacker is able to suppress correctly received RF messages sent betw…
|
CWE-310
Cryptographic Issues
|
CVE-2019-14261
|
2024-11-21 13:26 |
2019-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222626
|
5.5 |
MEDIUM
Local
|
videolan
debian
|
vlc_media_player
debian_linux
|
In VideoLAN VLC media player 3.0.7.1, there is a NULL pointer dereference at the function SeekPercent of demux/asf/asf.c that will lead to a denial of service attack.
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-14534
|
2024-11-21 13:26 |
2019-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222627
|
7.8 |
HIGH
Local
|
videolan
debian
|
vlc_media_player
debian_linux
|
The Control function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 has a use-after-free.
|
CWE-416
Use After Free
|
CVE-2019-14533
|
2024-11-21 13:26 |
2019-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222628
|
7.8 |
HIGH
Local
|
videolan
debian
|
vlc_media_player
debian_linux
|
A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file.
|
CWE-369
Divide By Zero
|
CVE-2019-14535
|
2024-11-21 13:26 |
2019-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222629
|
7.8 |
HIGH
Local
|
videolan
debian
|
vlc_media_player
debian_linux
|
A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file.
|
CWE-369
Divide By Zero
|
CVE-2019-14498
|
2024-11-21 13:26 |
2019-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222630
|
7.8 |
HIGH
Local
|
videolan
debian
|
vlc_media_player
debian_linux
|
A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg fi…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-14438
|
2024-11-21 13:26 |
2019-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
