|
221601
|
8.8 |
HIGH
Network
|
theaccessgroup
|
corehr_core_portal
|
A vulnerability was found in CoreHR Core Portal up to 27.0.7. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site request forgery. It is possi…
|
CWE-352
Origin Validation Error
|
CVE-2019-25064
|
2024-11-21 13:39 |
2022-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221602
|
7.8 |
HIGH
Local
|
sricam
|
deviceviewer
|
A vulnerability was found in Sricam IP CCTV Camera. It has been classified as critical. Affected is an unknown function of the component Device Viewer. The manipulation leads to memory corruption. Lo…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-25063
|
2024-11-21 13:39 |
2022-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221603
|
7.8 |
HIGH
Local
|
sricam
|
deviceviewer
|
A vulnerability was found in Sricam IP CCTV Camera and classified as critical. This issue affects some unknown processing of the component Device Viewer. The manipulation leads to memory corruption. …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-25062
|
2024-11-21 13:39 |
2022-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221604
|
7.5 |
HIGH
Network
|
random_password_generator_project
|
random_password_generator
|
The random_password_generator (aka RandomPasswordGenerator) gem through 1.0.0 for Ruby uses Kernel#rand to generate passwords, which, due to its cyclic nature, can facilitate password prediction.
|
CWE-335
Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)
|
CVE-2019-25061
|
2024-11-21 13:39 |
2022-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221605
|
5.3 |
MEDIUM
Network
|
wpgraphql
|
wpgraphql
|
The WPGraphQL WordPress plugin before 0.3.5 doesn't properly restrict access to information about other users' roles on the affected site. Because of this, a remote attacker could forge a GraphQL que…
|
-
|
CVE-2019-25060
|
2024-11-21 13:39 |
2022-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221606
|
7.8 |
HIGH
Local
|
artifex
debian
|
ghostscript
debian_linux
|
Artifex Ghostscript through 9.26 mishandles .completefont. NOTE: this issue exists because of an incomplete fix for CVE-2019-3839.
|
NVD-CWE-noinfo
|
CVE-2019-25059
|
2024-11-21 13:39 |
2022-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221607
|
7.8 |
HIGH
Local
|
usbguard_project
fedoraproject
debian
|
usbguard
fedora
debian_linux
|
An issue was discovered in USBGuard before 1.1.0. On systems with the usbguard-dbus daemon running, an unprivileged user could make USBGuard allow all USB devices to be connected in the future.
|
CWE-863
Incorrect Authorization
|
CVE-2019-25058
|
2024-11-21 13:39 |
2022-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221608
|
7.5 |
HIGH
Network
|
r3
|
corda
|
In Corda before 4.1, the meaning of serialized data can be modified via an attacker-controlled CustomSerializer.
|
NVD-CWE-noinfo
|
CVE-2019-25057
|
2024-11-21 13:39 |
2022-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221609
|
5.3 |
MEDIUM
Network
|
bromite
|
bromite
|
In Bromite through 78.0.3904.130, there are adblock rules in the release APK; therefore, probing which resources are blocked and which aren't can identify the application version and defeat the User-…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2019-25056
|
2024-11-21 13:39 |
2022-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221610
|
7.5 |
HIGH
Network
|
libpulse-binding_project
|
libpulse-binding
|
An issue was discovered in the libpulse-binding crate before 2.6.0 for Rust. It mishandles a panic that crosses a Foreign Function Interface (FFI) boundary.
|
NVD-CWE-noinfo
|
CVE-2019-25055
|
2024-11-21 13:39 |
2021-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
