|
220811
|
7.5 |
HIGH
Network
|
leadtools
|
leadtools
|
An exploitable information disclosure vulnerability exists in the DICOM packet-parsing functionality of LEADTOOLS libltdic.so, version 20.0.2019.3.15. A specially crafted packet can cause an out-of-b…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-5090
|
2024-11-21 13:44 |
2019-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220812
|
9.8 |
CRITICAL
Network
|
leadtools
|
leadtools
|
An exploitable code execution vulnerability exists in the DICOM packet-parsing functionality of LEADTOOLS libltdic.so, version 20.0.2019.3.15. A specially crafted packet can cause an integer overflow…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2019-5085
|
2024-11-21 13:44 |
2019-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220813
|
8.8 |
HIGH
Network
|
ibm
|
spectrum_scale
|
IBM Spectrum Scale 4.2 and 5.0 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerab…
|
CWE-78
OS Command
|
CVE-2019-4715
|
2024-11-21 13:44 |
2019-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220814
|
8.6 |
HIGH
Network
|
vmware
amd
|
workstation
radeon_rx_550_firmware
radeon_550_firmware
|
An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13001.29010. A specially crafted pixel shader can cause out-of-bounds memory read. An attacker can pro…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-5098
|
2024-11-21 13:44 |
2019-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220815
|
7.8 |
HIGH
Local
|
shadowsocks
opensuse
|
shadowsocks-libev
leap
backports_sle
|
An exploitable code execution vulnerability exists in the ss-manager binary of Shadowsocks-libev 3.3.2. Specially crafted network packets sent to ss-manager can cause an arbitrary binary to run, resu…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-5164
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220816
|
7.5 |
HIGH
Network
|
shadowsocks
opensuse
|
shadowsocks-libev
leap
backports
|
An exploitable denial-of-service vulnerability exists in the UDPRelay functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream Cipher and a local_address, arbitrary UDP packets can cause a F…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-5163
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220817
|
8.8 |
HIGH
Network
|
accusoft
|
imagegear
|
An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll BMP parser of the ImageGear 19.3.0 library. A specially crafted BMP file can cause an out-of-bounds write, resulting in a …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5133
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220818
|
8.8 |
HIGH
Network
|
accusoft
|
imagegear
|
An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll GEM Raster parser of the Accusoft ImageGear 19.3.0 library. A specially crafted GEM file can cause an out-of-bounds write,…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5132
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220819
|
8.8 |
HIGH
Network
|
formalms
|
formalms
|
Exploitable SQL injection vulnerability exists in the authenticated portion of Forma LMS 2.2.1. The /appLms/ajax.server.php URL and parameter filter_status was confirmed to suffer from SQL injections…
|
CWE-89
SQL Injection
|
CVE-2019-5112
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220820
|
8.8 |
HIGH
Network
|
formalms
|
formalms
|
Exploitable SQL injection vulnerability exists in the authenticated portion of Forma LMS 2.2.1. The /appLms/ajax.server.php URL and parameter filter_cat was confirmed to suffer from SQL injections an…
|
CWE-89
SQL Injection
|
CVE-2019-5111
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
