|
212541
|
3.5 |
LOW
Network
|
vertiv
|
avocent_umg-4000_firmware
|
The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to stored XSS. A remote attacker authenticated with an administrator account could store a maliciously named file withi…
|
CWE-79
Cross-site Scripting
|
CVE-2019-9508
|
2024-11-21 13:51 |
2020-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212542
|
7.2 |
HIGH
Network
|
vertiv
|
avocent_umg-4000_firmware
|
The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to command injection because the application incorrectly neutralizes code syntax before executing. Since all commands w…
|
CWE-77
Command Injection
|
CVE-2019-9507
|
2024-11-21 13:51 |
2020-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212543
|
7.5 |
HIGH
Network
|
google
|
android
|
In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction i…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-9474
|
2024-11-21 13:51 |
2020-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212544
|
7.5 |
HIGH
Network
|
google
|
android
|
In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction i…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-9473
|
2024-11-21 13:51 |
2020-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212545
|
8.8 |
HIGH
Adjacent
|
synology
broadcom
|
router_manager
bcm4339_firmware
|
The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. If the vendor information element data length is larger than 164 bytes, a heap buffer overflow is triggered in wlc_wpa_plumb_gtk. …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-9502
|
2024-11-21 13:51 |
2020-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212546
|
8.8 |
HIGH
Adjacent
|
synology
broadcom
|
router_manager
bcm4339_firmware
|
The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. By supplying a vendor information element with a data length larger than 32 bytes, a heap buffer overflow is triggered in wlc_wpa_…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-9501
|
2024-11-21 13:51 |
2020-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212547
|
8.3 |
HIGH
Adjacent
|
broadcom
redhat
|
brcmfmac_driver
enterprise_linux
|
The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. If the brcmfmac driver receives a firmware event frame from a re…
|
CWE-20
Improper Input Validation
|
CVE-2019-9503
|
2024-11-21 13:51 |
2020-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212548
|
8.3 |
HIGH
Adjacent
|
broadcom
linux
|
brcmfmac_driver
linux_kernel
|
The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malic…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-9500
|
2024-11-21 13:51 |
2020-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212549
|
7.8 |
HIGH
Local
|
microsoft
|
windows_10
windows_server_2019
|
A vulnerability in Microsoft Windows 10 1803 and Windows Server 2019 and later systems can allow authenticated RDP-connected clients to gain access to user sessions without needing to interact with t…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2019-9510
|
2024-11-21 13:51 |
2020-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212550
|
9.8 |
CRITICAL
Network
|
mycarcontrols
|
mycar_controls
|
The MyCar Controls of AutoMobility Distribution Inc., mobile application contains hard-coded admin credentials. A remote unauthenticated attacker may be able to send commands to and retrieve data fro…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2019-9493
|
2024-11-21 13:51 |
2020-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
