|
224731
|
9.8 |
CRITICAL
Network
|
gigastone
|
smart_battery_a4_firmware
|
A broken access control vulnerability in Smart Battery A4, a multifunctional portable charger, firmware version ?<= r1.7.9 allows an attacker to get/reset administrator’s password without any authent…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-15068
|
2024-11-21 13:27 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224732
|
9.8 |
CRITICAL
Network
|
gigastone
|
smart_battery_a2-25de_firmware
|
An authentication bypass vulnerability discovered in Smart Battery A2-25DE, a multifunctional portable charger, firmware version ?<= SECFS-2013-10-16-13:42:58-629c30ee-60c68be6. An attacker can bypas…
|
NVD-CWE-noinfo
|
CVE-2019-15067
|
2024-11-21 13:27 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224733
|
7.5 |
HIGH
Network
|
sick
|
fx0-gpnt00000_firmware
fx0-gent00000_firmware
|
SICK FX0-GPNT00000 and FX0-GENT00000 devices through 3.4.0 have a Buffer Overflow
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-14753
|
2024-11-21 13:27 |
2019-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224734
|
7.8 |
HIGH
Local
|
linux
redhat
debian
fedoraproject
netapp
canonical
opensuse
|
linux_kernel
enterprise_linux_server_aus
enterprise_linux
enterprise_linux_for_real_time
enterprise_linux_for_real_time_for_nfv
enterprise_linux_server_tus
virtualization
enterpr…
|
There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) o…
|
-
|
CVE-2019-14816
|
2024-11-21 13:27 |
2019-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224735
|
7.8 |
HIGH
Local
|
linux
redhat
debian
canonical
opensuse
netapp
|
linux_kernel
enterprise_linux
messaging_realtime_grid
enterprise_linux_eus
enterprise_linux_for_real_time_for_nfv
enterprise_linux_server_aus
enterprise_linux_for_real_time_tus
e…
|
There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system cr…
|
-
|
CVE-2019-14814
|
2024-11-21 13:27 |
2019-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224736
|
6.5 |
MEDIUM
Network
|
prise
|
adas
|
An issue was discovered in PRiSE adAS 1.7.0. A file's format is not properly checked, leading to an unrestricted file upload.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2019-14916
|
2024-11-21 13:27 |
2019-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224737
|
6.1 |
MEDIUM
Network
|
prise
|
adas
|
An issue was discovered in PRiSE adAS 1.7.0. Certificate data are not properly escaped. This leads to XSS when submitting a rogue certificate.
|
CWE-79
Cross-site Scripting
|
CVE-2019-14915
|
2024-11-21 13:27 |
2019-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224738
|
9.1 |
CRITICAL
Network
|
prise
|
adas
|
An issue was discovered in PRiSE adAS 1.7.0. The path is not properly escaped in the medatadata_del method, leading to an arbitrary file read and deletion via Directory Traversal.
|
CWE-22
Path Traversal
|
CVE-2019-14914
|
2024-11-21 13:27 |
2019-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224739
|
5.4 |
MEDIUM
Network
|
prise
|
adas
|
An issue was discovered in PRiSE adAS 1.7.0. Log data are not properly escaped, leading to persistent XSS in the administration panel.
|
CWE-79
Cross-site Scripting
|
CVE-2019-14913
|
2024-11-21 13:27 |
2019-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224740
|
6.1 |
MEDIUM
Network
|
prise
|
adas
|
An issue was discovered in PRiSE adAS 1.7.0. The OPENSSO module does not properly check the goto parameter, leading to an open redirect that leaks the session cookie.
|
CWE-601
Open Redirect
|
CVE-2019-14912
|
2024-11-21 13:27 |
2019-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
