|
223701
|
8.8 |
HIGH
Network
|
eclipse
|
che
|
For Eclipse Che versions 6.16 to 7.3.0, with both authentication and TLS disabled, visiting a malicious web site could trigger the start of an arbitrary Che workspace. Che with no authentication and …
|
CWE-352
Origin Validation Error
|
CVE-2019-17633
|
2024-11-21 13:32 |
2019-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223702
|
7.8 |
HIGH
Local
|
pronestor
|
planner
|
An issue was discovered in the Outlook add-in in Pronestor Planner before 8.1.77. There is local privilege escalation in the Health Monitor service because PronestorHealthMonitor.exe access control i…
|
NVD-CWE-noinfo
|
CVE-2019-17390
|
2024-11-21 13:32 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223703
|
5.4 |
MEDIUM
Network
|
ge
|
s2020_firmware
s2020g_firmware
|
An issue was found in GE S2020/S2020G Fast Switch 61850, S2020/S2020G Fast Switch 61850 Versions 07A03 and prior. An attacker can inject arbitrary Javascript in a specially crafted HTTP request that …
|
CWE-79
Cross-site Scripting
|
CVE-2019-18267
|
2024-11-21 13:32 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223704
|
9.8 |
CRITICAL
Network
|
advantech
|
diaganywhere
|
In Advantech DiagAnywhere Server, Versions 3.07.11 and prior, multiple stack-based buffer overflow vulnerabilities exist in the file transfer service listening on the TCP port. Successful exploitatio…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-18257
|
2024-11-21 13:32 |
2019-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223705
|
5.4 |
MEDIUM
Network
|
tibco
|
spotfire_server
spotfire_analytics_platform_for_aws
|
The Spotfire library component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace and TIBCO Spotfire Server contains a vulnerability that theoretically allows an attacker …
|
CWE-79
Cross-site Scripting
|
CVE-2019-17337
|
2024-11-21 13:32 |
2019-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223706
|
6.5 |
MEDIUM
Network
|
tibco
|
spotfire_server
spotfire_analytics_platform_for_aws
|
The Data access layer component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace and TIBCO Spotfire Server contains multiple vulnerabilities that theoretically allow an …
|
NVD-CWE-noinfo
|
CVE-2019-17336
|
2024-11-21 13:32 |
2019-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223707
|
6.5 |
MEDIUM
Network
|
tibco
|
spotfire_server
spotfire_analytics_platform_for_aws
|
The Data access layer component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace and TIBCO Spotfire Server contains multiple vulnerabilities that theoretically allow an …
|
NVD-CWE-noinfo
|
CVE-2019-17335
|
2024-11-21 13:32 |
2019-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223708
|
8.0 |
HIGH
Network
|
tibco
|
spotfire_analyst
spotfire_desktop
spotfire_analytics_platform_for_aws
spotfire_desktop_language_packs
spotfire_deployment_kit
|
The Visualizations component of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Deployment Kit, TIBCO Spotfire Desktop, and TIBCO S…
|
CWE-276
Incorrect Default Permissions
|
CVE-2019-17334
|
2024-11-21 13:32 |
2019-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223709
|
8.8 |
HIGH
Network
|
trendmicro
|
deep_security_as_a_service
|
A privilege escalation vulnerability in the Trend Micro Deep Security as a Service Quick Setup cloud formation template could allow an authenticated entity with certain unrestricted AWS execution pri…
|
CWE-459
Incomplete Cleanup
|
CVE-2019-18191
|
2024-11-21 13:32 |
2019-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223710
|
9.8 |
CRITICAL
Network
|
omron
|
plc_cs_firmware
plc_cj_firmware
|
Omron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability.
|
NVD-CWE-Other
|
CVE-2019-18269
|
2024-11-21 13:32 |
2019-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
