|
222801
|
4.3 |
MEDIUM
Network
|
moodle
|
moodle
|
A vulnerability was found in Moodle affecting 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where users with the capability to create courses were assigned as a teacher i…
|
-
|
CVE-2019-14828
|
2024-11-21 13:27 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222802
|
7.5 |
HIGH
Network
|
redhat
|
3scale_api_management
|
A flaw was found in 3scale’s APIcast gateway that enabled the TLS 1.0 protocol. An attacker could target traffic using this weaker protocol and break its encryption, gaining access to unauthorized in…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2019-14852
|
2024-11-21 13:27 |
2021-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222803
|
6.5 |
MEDIUM
Network
|
nbdkit_project
|
nbdkit
|
A denial of service vulnerability was discovered in nbdkit. A client issuing a certain sequence of commands could possibly trigger an assertion failure, causing nbdkit to exit. This issue only affect…
|
-
|
CVE-2019-14851
|
2024-11-21 13:27 |
2021-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222804
|
3.7 |
LOW
Network
|
nbdkit_project
redhat
|
nbdkit
enterprise_linux_server
virtualization
enterprise_linux
|
A denial of service vulnerability was discovered in nbdkit 1.12.7, 1.14.1 and 1.15.1. An attacker could connect to the nbdkit service and cause it to perform a large amount of work in initializing ba…
|
-
|
CVE-2019-14850
|
2024-11-21 13:27 |
2021-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222805
|
7.8 |
HIGH
Local
|
verifone
|
mx900_firmware
|
Verifone MX900 series Pinpad Payment Terminals with OS 30251000 allow multiple arbitrary command injections, as demonstrated by the file manager.
|
CWE-77
Command Injection
|
CVE-2019-14719
|
2024-11-21 13:27 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222806
|
6.7 |
MEDIUM
Local
|
verifone
|
mx900_firmware
|
Verifone MX900 series Pinpad Payment Terminals with OS 30251000 have Insecure Permissions, with resultant svc_netcontrol arbitrary command injection and privilege escalation.
|
CWE-276
Incorrect Default Permissions
|
CVE-2019-14718
|
2024-11-21 13:27 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222807
|
7.8 |
HIGH
Local
|
verifone
|
verix_os
|
Verifone Verix OS on VerixV Pinpad Payment Terminals with QT000530 have a Buffer Overflow via the Run system call.
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-14717
|
2024-11-21 13:27 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222808
|
6.6 |
MEDIUM
Physics
|
verifone
|
verix_os
|
Verifone VerixV Pinpad Payment Terminals with QT000530 have an undocumented physical access mode (aka VerixV shell.out).
|
NVD-CWE-noinfo
|
CVE-2019-14716
|
2024-11-21 13:27 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222809
|
6.8 |
MEDIUM
Physics
|
verifone
|
p400_firmware
p200_firmware
vx_820_firmware
vx_805_firmware
|
Verifone Pinpad Payment Terminals allow undocumented physical access to the system via an SBI bootloader memory write operation.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14715
|
2024-11-21 13:27 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222810
|
5.5 |
MEDIUM
Local
|
verifone
|
mx900_firmware
|
Verifone MX900 series Pinpad Payment Terminals with OS 30251000 allow installation of unsigned packages.
|
NVD-CWE-noinfo
|
CVE-2019-14713
|
2024-11-21 13:27 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
