|
223051
|
7.5 |
HIGH
Network
|
microsoft
|
internet_explorer
|
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-1133
|
2024-11-21 13:36 |
2019-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223052
|
4.2 |
MEDIUM
Network
|
microsoft
|
edge
|
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-1131
|
2024-11-21 13:36 |
2019-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223053
|
3.3 |
LOW
Local
|
openssl
|
openssl
|
OpenSSL has internal defaults for a directory tree where it can find a configuration file as well as certificates used for verification in TLS. This directory is most commonly referred to as OPENSSLD…
|
CWE-295
Improper Certificate Validation
|
CVE-2019-1552
|
2024-11-21 13:36 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223054
|
5.4 |
MEDIUM
Network
|
microsoft
|
outlook
|
A spoofing vulnerability exists in the way Microsoft Outlook for Android software parses specifically crafted email messages, aka 'Outlook for Android Spoofing Vulnerability'.
|
CWE-79
Cross-site Scripting
|
CVE-2019-1105
|
2024-11-21 13:36 |
2019-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223055
|
8.1 |
HIGH
Network
|
paloaltonetworks
|
pan-os
|
Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11-h1 and earlier, and PAN-OS 8.1.2 and earlier with GlobalProtect Portal or GlobalProtect Gateway Interface enabled may allow an unauth…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2019-1579
|
2024-11-21 13:36 |
2019-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223056
|
4.1 |
MEDIUM
Local
|
microsoft
|
powershell_core
|
A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement, aka 'Windows Defender Application Control Secur…
|
NVD-CWE-noinfo
|
CVE-2019-1167
|
2024-11-21 13:36 |
2019-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223057
|
8.8 |
HIGH
Network
|
paloaltonetworks
|
pan-os
|
Command injection in PAN-0S 9.0.2 and earlier may allow an authenticated attacker to gain access to a remote shell in PAN-OS, and potentially run with the escalated user’s permissions.
|
CWE-78
OS Command
|
CVE-2019-1576
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223058
|
8.8 |
HIGH
Network
|
paloaltonetworks
|
pan-os
|
Information disclosure in PAN-OS 7.1.23 and earlier, PAN-OS 8.0.18 and earlier, PAN-OS 8.1.8-h4 and earlier, and PAN-OS 9.0.2 and earlier may allow for an authenticated user with read-only privileges…
|
CWE-200
Information Exposure
|
CVE-2019-1575
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223059
|
5.4 |
MEDIUM
Network
|
microsoft
|
exchange_server
|
A cross-site-scripting (XSS) vulnerability exists when Microsoft Exchange Server does not properly sanitize a specially crafted web request to an affected Exchange server, aka 'Microsoft Exchange Ser…
|
CWE-79
Cross-site Scripting
|
CVE-2019-1137
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223060
|
8.1 |
HIGH
Network
|
microsoft
|
exchange_server
|
An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'.
|
NVD-CWE-noinfo
|
CVE-2019-1136
|
2024-11-21 13:36 |
2019-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
