|
220891
|
8.6 |
HIGH
Network
|
f5
|
big-ip_access_policy_manager
|
On BIG-IP versions 14.0.0-14.0.0.4, 13.0.0-13.1.1.1, 12.1.0-12.1.4, 11.6.0-11.6.3.4, and 11.5.1-11.5.8, the system is vulnerable to a denial of service attack when performing URL classification.
|
NVD-CWE-noinfo
|
CVE-2019-6610
|
2024-11-21 13:46 |
2019-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220892
|
9.8 |
CRITICAL
Network
|
hp
|
color_laserjet_cm4540_mfp_firmware
color_laserjet_enterprise_cp5525_firmware
color_laserjet_enterprise_m553_firmware
color_laserjet_enterprise_m552_firmware
color_laserjet_managed_m553_fi…
|
HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potenti…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2019-6318
|
2024-11-21 13:46 |
2019-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220893
|
6.6 |
MEDIUM
Local
|
omron
|
common_components
cx-programmer
|
When processing project files, the application (Omron CX-Programmer v9.70 and prior and Common Components January 2019 and prior) fails to check if it is referencing freed memory. An attacker could u…
|
CWE-416
Use After Free
|
CVE-2019-6556
|
2024-11-21 13:46 |
2019-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220894
|
9.8 |
CRITICAL
Network
|
forcepoint
|
email_security
|
A configuration issue has been discovered in Forcepoint Email Security 8.4.x and 8.5.x: the product is left in a vulnerable state if the hybrid registration process is not completed.
|
NVD-CWE-noinfo
|
CVE-2019-6140
|
2024-11-21 13:46 |
2019-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220895
|
3.3 |
LOW
Local
|
lenovo
|
510-15ikl_firmware
510s-08ikl_firmware
ideacentre_300-20ish_firmware
ideacentre_300s-11ish_firmware
ideacentre_510-15icb_firmware
ideacentre_510a-15icb_firmware
ideacentre_510s-08is…
|
In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this provides sufficient protection, an additional layer of protection is provided by SPI Protected Range Re…
|
CWE-667
Improper Locking
|
CVE-2019-6156
|
2024-11-21 13:46 |
2019-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220896
|
7.8 |
HIGH
Local
|
lenovo
|
bootable_usb
|
A DLL search path vulnerability was reported in Lenovo Bootable Generator, prior to version Mar-2019, that could allow a malicious user with local access to execute code on the system.
|
CWE-426
Untrusted Search Path
|
CVE-2019-6154
|
2024-11-21 13:46 |
2019-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220897
|
8.1 |
HIGH
Network
|
suse
|
rancher
|
In Rancher 2.0.0 through 2.1.5, project members have continued access to create, update, read, and delete namespaces in a project after they have been removed from it.
|
CWE-269
Improper Privilege Management
|
CVE-2019-6287
|
2024-11-21 13:46 |
2019-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220898
|
7.5 |
HIGH
Network
|
advantech
|
webaccess
|
Advantech WebAccess/SCADA, Versions 8.3.5 and prior. An improper access control vulnerability may allow an attacker to cause a denial-of-service condition.
|
NVD-CWE-Other
|
CVE-2019-6554
|
2024-11-21 13:46 |
2019-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220899
|
9.8 |
CRITICAL
Network
|
advantech
|
webaccess
|
Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple command injection vulnerabilities, caused by a lack of proper validation of user-supplied data, may allow remote code execution.
|
CWE-78
OS Command
|
CVE-2019-6552
|
2024-11-21 13:46 |
2019-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220900
|
9.8 |
CRITICAL
Network
|
advantech
|
webaccess
|
Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple stack-based buffer overflow vulnerabilities, caused by a lack of proper validation of the length of user-supplied data, may allow remote …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-6550
|
2024-11-21 13:46 |
2019-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
