|
219521
|
7.5 |
HIGH
Network
|
mikrotik
|
routeros
|
RouterOS versions 6.45.6 Stable, 6.44.5 Long-term, and below allow remote unauthenticated attackers to trigger DNS queries via port 8291. The queries are sent from the router to a server of the attac…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-3978
|
2024-11-21 13:42 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219522
|
7.5 |
HIGH
Network
|
mikrotik
|
routeros
|
RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below insufficiently validate where upgrade packages are download from when using the autoupgrade feature. Therefore, a remote attacker can tric…
|
CWE-494
Download of Code Without Integrity Check
|
CVE-2019-3977
|
2024-11-21 13:42 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219523
|
8.8 |
HIGH
Network
|
mikrotik
|
routeros
|
RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below are vulnerable to an arbitrary directory creation vulnerability via the upgrade package's name field. If an authenticated user installs a …
|
CWE-22
Path Traversal
|
CVE-2019-3976
|
2024-11-21 13:42 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219524
|
7.8 |
HIGH
Local
|
mcafee
|
total_protection
|
A File Masquerade vulnerability in McAfee Total Protection (MTP) version 16.0.R21 and earlier in Windows client allowed an attacker to read the plaintext list of AV-Scan exclusion files from the Wind…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2019-3636
|
2024-11-21 13:42 |
2019-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219525
|
6.0 |
MEDIUM
Local
|
oracle
|
vm_virtualbox
|
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.34 and prior to 6.0.14. Easily exploitable vulnerab…
|
NVD-CWE-noinfo
|
CVE-2019-3031
|
2024-11-21 13:42 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219526
|
8.8 |
HIGH
Local
|
oracle
|
vm_virtualbox
|
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.34 and prior to 6.0.14. Easily exploitable vulnerab…
|
NVD-CWE-noinfo
|
CVE-2019-3028
|
2024-11-21 13:42 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219527
|
5.3 |
MEDIUM
Network
|
oracle
|
application_object_library
|
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite (component: Login Help). Supported versions that are affected are 12.2.5-12.2.9. Easily exploitable vulnerabi…
|
NVD-CWE-noinfo
|
CVE-2019-3027
|
2024-11-21 13:42 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219528
|
6.5 |
MEDIUM
Local
|
oracle
|
vm_virtualbox
|
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.34 and prior to 6.0.14. Easily exploitable vulnerab…
|
NVD-CWE-noinfo
|
CVE-2019-3026
|
2024-11-21 13:42 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219529
|
9.0 |
CRITICAL
Network
|
oracle
|
hospitality_res_3700
|
Vulnerability in the Oracle Hospitality RES 3700 component of Oracle Food and Beverage Applications. The supported version that is affected is 5.7. Difficult to exploit vulnerability allows unauthent…
|
NVD-CWE-noinfo
|
CVE-2019-3025
|
2024-11-21 13:42 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219530
|
4.7 |
MEDIUM
Network
|
oracle
|
installed_base
|
Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite (component: Engineering Change Order). Supported versions that are affected are 12.2.3-12.2.9. Easily exploitable vulnera…
|
NVD-CWE-noinfo
|
CVE-2019-3024
|
2024-11-21 13:42 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
