|
222761
|
8.8 |
HIGH
Network
|
paloaltonetworks
|
pan-os
|
Command injection in PAN-0S 9.0.2 and earlier may allow an authenticated attacker to gain access to a remote shell in PAN-OS, and potentially run with the escalated user’s permissions.
|
CWE-78
OS Command
|
CVE-2019-1576
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222762
|
8.8 |
HIGH
Network
|
paloaltonetworks
|
pan-os
|
Information disclosure in PAN-OS 7.1.23 and earlier, PAN-OS 8.0.18 and earlier, PAN-OS 8.1.8-h4 and earlier, and PAN-OS 9.0.2 and earlier may allow for an authenticated user with read-only privileges…
|
CWE-200
Information Exposure
|
CVE-2019-1575
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222763
|
5.4 |
MEDIUM
Network
|
microsoft
|
exchange_server
|
A cross-site-scripting (XSS) vulnerability exists when Microsoft Exchange Server does not properly sanitize a specially crafted web request to an affected Exchange server, aka 'Microsoft Exchange Ser…
|
CWE-79
Cross-site Scripting
|
CVE-2019-1137
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222764
|
8.1 |
HIGH
Network
|
microsoft
|
exchange_server
|
An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'.
|
NVD-CWE-noinfo
|
CVE-2019-1136
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222765
|
7.8 |
HIGH
Local
|
microsoft
|
windows_server_2008
windows_7
|
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'.
|
NVD-CWE-noinfo
|
CVE-2019-1132
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222766
|
7.8 |
HIGH
Local
|
microsoft
|
windows_server_2012
windows_10
windows_server_2016
windows_rt_8.1
windows_8.1
windows_server_2019
|
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique …
|
CWE-59
Link Following
|
CVE-2019-1130
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222767
|
7.8 |
HIGH
Local
|
microsoft
|
windows_10
windows_server_2016
windows_server_2019
|
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique …
|
CWE-59
Link Following
|
CVE-2019-1129
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222768
|
8.8 |
HIGH
Network
|
microsoft
|
windows_10
windows_server_2016
windows_server_2019
|
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CV…
|
NVD-CWE-noinfo
|
CVE-2019-1128
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222769
|
8.8 |
HIGH
Network
|
microsoft
|
windows_10
windows_server_2016
windows_server_2019
|
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CV…
|
NVD-CWE-noinfo
|
CVE-2019-1127
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222770
|
8.8 |
HIGH
Network
|
microsoft
|
windows_10
windows_server_2016
windows_server_2019
|
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CV…
|
NVD-CWE-noinfo
|
CVE-2019-1124
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
