|
222911
|
5.4 |
MEDIUM
Network
|
siemens
|
xhq
|
A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow Cross-Site Scripting (XSS) attacks if an attacker is able to modify content of particular web pages, cau…
|
-
|
CVE-2019-19284
|
2024-11-21 13:34 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222912
|
5.3 |
MEDIUM
Network
|
siemens
|
xhq
|
A vulnerability has been identified in XHQ (All Versions < 6.1). The application's web server could expose non-sensitive information about the server's architecture. This could allow an attacker to a…
|
-
|
CVE-2019-19283
|
2024-11-21 13:34 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222913
|
2.4 |
LOW
Physics
|
harman
|
hermes
|
A misconfiguration in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with direct physical access to device hardware to obtain cellular modem information.
|
NVD-CWE-noinfo
|
CVE-2019-19563
|
2024-11-21 13:34 |
2020-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222914
|
4.6 |
MEDIUM
Physics
|
harman
|
hermes
|
An authentication bypass in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with physical access to device hardware to obtain system information.
|
CWE-287
Improper Authentication
|
CVE-2019-19562
|
2024-11-21 13:34 |
2020-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222915
|
2.4 |
LOW
Physics
|
harman
|
hermes
|
A misconfiguration in the debug interface in Mercedes-Benz HERMES 1.5 allows an attacker with direct physical access to device hardware to obtain cellular modem information.
|
CWE-922
Insecure Storage of Sensitive Information
|
CVE-2019-19561
|
2024-11-21 13:34 |
2020-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222916
|
4.6 |
MEDIUM
Physics
|
harman
|
hermes
|
An authentication bypass in the debug interface in Mercedes-Benz HERMES 1.5 allows an attacker with physical access to device hardware to obtain system information.
|
CWE-287
Improper Authentication
|
CVE-2019-19560
|
2024-11-21 13:34 |
2020-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222917
|
2.4 |
LOW
Physics
|
harman
|
hermes
|
A misconfiguration in the debug interface in Mercedes-Benz HERMES 1 allows an attacker with direct physical access to device hardware to obtain cellular modem information.
|
CWE-922
Insecure Storage of Sensitive Information
|
CVE-2019-19557
|
2024-11-21 13:34 |
2020-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222918
|
4.6 |
MEDIUM
Physics
|
harman
|
hermes
|
An authentication bypass in the debug interface in Mercedes-Benz HERMES 1 allows an attacker with physical access to device hardware to obtain system information.
|
NVD-CWE-noinfo
|
CVE-2019-19556
|
2024-11-21 13:34 |
2020-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222919
|
9.8 |
CRITICAL
Network
|
un4seen
|
bassmidi
|
The BASSMIDI plugin 2.4.12.1 for Un4seen BASS Audio Library on Windows is prone to an out of bounds write vulnerability. An attacker may exploit this to execute code on the target machine. A failure …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-19513
|
2024-11-21 13:34 |
2020-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222920
|
7.8 |
HIGH
Local
|
nahimic
|
apo_software_component
|
An escalation of privilege vulnerability in Nahimic APO Software Component Driver 1.4.2, 1.5.0, 1.5.1, 1.6.1 and 1.6.2 allows an attacker to execute code with SYSTEM privileges.
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2019-19115
|
2024-11-21 13:34 |
2020-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
