|
219991
|
7.5 |
HIGH
Network
|
advantech
|
webaccess
|
Advantech WebAccess/SCADA, Versions 8.3.5 and prior. An improper access control vulnerability may allow an attacker to cause a denial-of-service condition.
|
NVD-CWE-Other
|
CVE-2019-6554
|
2024-11-21 13:46 |
2019-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219992
|
9.8 |
CRITICAL
Network
|
advantech
|
webaccess
|
Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple command injection vulnerabilities, caused by a lack of proper validation of user-supplied data, may allow remote code execution.
|
CWE-78
OS Command
|
CVE-2019-6552
|
2024-11-21 13:46 |
2019-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219993
|
9.8 |
CRITICAL
Network
|
advantech
|
webaccess
|
Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple stack-based buffer overflow vulnerabilities, caused by a lack of proper validation of the length of user-supplied data, may allow remote …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-6550
|
2024-11-21 13:46 |
2019-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219994
|
9.8 |
CRITICAL
Network
|
rockwellautomation
|
rslinx
|
A vulnerability was found in Rockwell Automation RSLinx Classic versions 4.10.00 and prior. An input validation issue in a .dll file of RSLinx Classic where the data in a Forward Open service request…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-6553
|
2024-11-21 13:46 |
2019-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219995
|
9.8 |
CRITICAL
Network
|
salesagility
|
suitecrm
|
SuiteCRM before 7.8.28, 7.9.x and 7.10.x before 7.10.15, and 7.11.x before 7.11.3 allows SQL Injection.
|
CWE-89
SQL Injection
|
CVE-2019-6506
|
2024-11-21 13:46 |
2019-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219996
|
8.1 |
HIGH
Network
|
kunbus
|
pr100088_modbus_gateway_firmware
|
An attacker could retrieve passwords from a HTTP GET request from the Kunbus PR100088 Modbus gateway versions prior to Release R02 (or Software Version 1.1.13166) if the attacker is in an MITM positi…
|
NVD-CWE-Other
|
CVE-2019-6531
|
2024-11-21 13:46 |
2019-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219997
|
7.5 |
HIGH
Network
|
abine
|
blur
|
Abine Blur 7.8.2431 allows remote attackers to conduct "Second-Factor Auth Bypass" attacks by using the "Perform a right-click operation to access a forgotten dev menu to insert user passwords that o…
|
CWE-287
Improper Authentication
|
CVE-2019-6481
|
2024-11-21 13:46 |
2019-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219998
|
6.8 |
MEDIUM
Network
|
f5
|
big-ip_application_security_manager
|
On BIG-IP ASM 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3, 13.0.0-13.1.1.3, and 14.0.0-14.0.0.2, there is a stored cross-site scripting vulnerability in an ASM violation viewed in the Configuration u…
|
CWE-352
Origin Validation Error
|
CVE-2019-6607
|
2024-11-21 13:46 |
2019-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219999
|
5.9 |
MEDIUM
Network
|
f5
|
big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_application_acceleration_manager
big-ip_edge_gateway
big-ip_fraud_protection_service
big-ip_global_traffic_manager<…
|
On BIG-IP 11.5.1-11.6.3, 12.1.0-12.1.3, 13.0.0-13.1.1.1, and 14.0.0-14.0.0.2, under certain conditions, the snmpd daemon may leak memory on a multi-blade BIG-IP vCMP guest when processing authorized …
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-6608
|
2024-11-21 13:46 |
2019-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220000
|
4.3 |
MEDIUM
Network
|
f5
|
big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_application_acceleration_manager
big-ip_edge_gateway
big-ip_fraud_protection_service
big-ip_global_traffic_manager<…
|
On BIG-IP 11.5.1-11.6.3.4, 12.1.0-12.1.3.7, 13.0.0-13.1.1.3, and 14.0.0-14.0.0.2, when processing certain SNMP requests with a request-id of 0, the snmpd process may leak a small amount of memory.
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-6606
|
2024-11-21 13:46 |
2019-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
