|
223281
|
7.8 |
HIGH
Local
|
intel
|
software_guard_extensions_sdk
|
Insufficient initialization in Intel(R) SGX SDK Windows versions 2.4.100.51291 and earlier, and Linux versions 2.6.100.51363 and earlier, may allow an authenticated user to enable information disclos…
|
CWE-665
Improper Initialization
|
CVE-2019-14565
|
2024-11-21 13:26 |
2019-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223282
|
7.5 |
HIGH
Network
|
slack-chat_project
|
slack-chat
|
Slack-Chat through 1.5.5 leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack (channels, members, etc.).
|
CWE-200
Information Exposure
|
CVE-2019-14367
|
2024-11-21 13:26 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223283
|
7.5 |
HIGH
Network
|
slack
|
wp_slacksync
|
WP SlackSync plugin through 1.8.5 for WordPress leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack (channels, members, etc.).
|
CWE-200
Information Exposure
|
CVE-2019-14366
|
2024-11-21 13:26 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223284
|
7.5 |
HIGH
Network
|
intercom
|
intercom
|
The Intercom plugin through 1.2.1 for WordPress leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack (channels, members, etc.).
|
CWE-200
Information Exposure
|
CVE-2019-14365
|
2024-11-21 13:26 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223285
|
4.6 |
MEDIUM
Physics
|
hyundai-pay
|
hk-1000
|
On Hyundai Pay Kasse HK-1000 devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allow…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2019-14360
|
2024-11-21 13:26 |
2019-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223286
|
4.6 |
MEDIUM
Physics
|
archos
|
safe-t
|
On Archos Safe-T devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a partia…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2019-14358
|
2024-11-21 13:26 |
2019-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223287
|
5.3 |
MEDIUM
Network
|
coinkite
|
coldcard_mk1_firmware
coldcard_mk2_firmware
|
On Coldcard MK1 and MK2 devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2019-14356
|
2024-11-21 13:26 |
2019-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223288
|
9.8 |
CRITICAL
Network
|
repetier-server
|
repetier-server
|
A directory traversal vulnerability was discovered in RepetierServer.exe in Repetier-Server 0.8 through 0.91 that allows for the creation of a user controlled XML file at an unintended location. When…
|
CWE-22
Path Traversal
|
CVE-2019-14450
|
2024-11-21 13:26 |
2019-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223289
|
9.8 |
CRITICAL
Network
|
repetier-server
|
repetier-server
|
RepetierServer.exe in Repetier-Server 0.8 through 0.91 does not properly validate the XML data structure provided when uploading a new printer configuration. When this is combined with CVE-2019-14450…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2019-14451
|
2024-11-21 13:26 |
2019-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223290
|
6.5 |
MEDIUM
Network
|
xnat
|
xnat
|
WUSTL XNAT 1.7.5.3 allows XXE attacks via a POST request body.
|
CWE-611
XXE
|
CVE-2019-14276
|
2024-11-21 13:26 |
2019-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
