|
214371
|
6.5 |
MEDIUM
Network
|
apple
|
airport_base_station_firmware
|
A denial of service issue was addressed with improved memory handling. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. An attacker in a …
|
NVD-CWE-noinfo
|
CVE-2019-7291
|
2024-11-21 13:47 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214372
|
9.8 |
CRITICAL
Network
|
apple
|
mac_os_x
iphone_os
|
The issue was addressed with improved validation on the FaceTime server. This issue is fixed in macOS Mojave 10.14.3 Supplemental Update, iOS 12.1.4. A thorough security audit of the FaceTime service…
|
NVD-CWE-noinfo
|
CVE-2019-7288
|
2024-11-21 13:47 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214373
|
7.2 |
HIGH
Network
|
pexip
|
pexip_infinity
|
Pexip Infinity before 20.1 allows privilege escalation by restoring a system backup.
|
CWE-20
Improper Input Validation
|
CVE-2019-7178
|
2024-11-21 13:47 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214374
|
7.2 |
HIGH
Network
|
pexip
|
pexip_infinity
|
Pexip Infinity before 20.1 allows Code Injection onto nodes via an admin.
|
CWE-94
Code Injection
|
CVE-2019-7177
|
2024-11-21 13:47 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214375
|
7.5 |
HIGH
Network
|
avaya
|
ip_office
|
A vulnerability was discovered in the web interface component of IP Office that may potentially allow a remote, unauthenticated user with network access to gain sensitive information. Affected versio…
|
NVD-CWE-noinfo
|
CVE-2019-7005
|
2024-11-21 13:47 |
2020-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214376
|
9.8 |
CRITICAL
Network
|
amd
|
overdrive
|
An issue was discovered in AODDriver2.sys in AMD OverDrive. The vulnerable driver exposes a wrmsr instruction via IOCTL 0x81112ee0 and does not properly filter the Model Specific Register (MSR). Allo…
|
NVD-CWE-noinfo
|
CVE-2019-7247
|
2024-11-21 13:47 |
2020-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214377
|
6.7 |
MEDIUM
Local
|
amd
|
atillk64
|
An issue was discovered in atillk64.sys in AMD ATI Diagnostics Hardware Abstraction Sys/Overclocking Utility 5.11.9.0. The vulnerable driver exposes a wrmsr instruction and does not properly filter t…
|
NVD-CWE-noinfo
|
CVE-2019-7246
|
2024-11-21 13:47 |
2020-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214378
|
7.5 |
HIGH
Network
|
schneider-electric
|
bmx_p34x_firmware
bmx_noe_0100_firmware
bmx_noe_0110_firmware
bmx_noc_0401_firmware
tsx_p57x_firmware
tsx_ety_x103_firmware
140_cpu6x_firmware
140_noe_771x1_firmware
140_noc_7…
|
A CWE-798: Use of Hardcoded Credentials vulnerability exists in Modicon Controllers (All versions of the following CPUs and Communication Module product references listed in the Security Notification…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2019-6859
|
2024-11-21 13:47 |
2020-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214379
|
7.5 |
HIGH
Network
|
byobu
canonical
|
byobu
ubuntu_linux
|
Byobu Apport hook may disclose sensitive information since it automatically uploads the local user's .screenrc which may contain private hostnames, usernames and passwords. This issue affects: byobu
|
CWE-552
Files or Directories Accessible to External Parties
|
CVE-2019-7306
|
2024-11-21 13:47 |
2020-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214380
|
9.8 |
CRITICAL
Network
|
extplorer
|
extplorer
|
Information Exposure vulnerability in eXtplorer makes the /usr/ and /etc/extplorer/ system directories world-accessible over HTTP. Introduced in the Makefile patch file debian/patches/debian-changes-…
|
CWE-552
Files or Directories Accessible to External Parties
|
CVE-2019-7305
|
2024-11-21 13:47 |
2020-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
