|
218961
|
7.8 |
HIGH
Local
|
nvidia
|
gpu_driver
|
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the product uses untrusted input when calculating …
|
CWE-129
Improper Validation of Array Index
|
CVE-2019-5692
|
2024-11-21 13:45 |
2019-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218962
|
7.8 |
HIGH
Local
|
nvidia
|
gpu_driver
|
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which a NULL pointer is dereferenced, which may lead to …
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-5691
|
2024-11-21 13:45 |
2019-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218963
|
7.8 |
HIGH
Local
|
nvidia
|
gpu_driver
|
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the size of an input buffer is not validated, whic…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5690
|
2024-11-21 13:45 |
2019-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218964
|
7.8 |
HIGH
Local
|
nvidia
|
geforce_experience
|
NVIDIA GeForce Experience, all versions prior to 3.20.1, contains a vulnerability in the Downloader component in which a user with local system access can craft input that may allow malicious files t…
|
NVD-CWE-noinfo
|
CVE-2019-5689
|
2024-11-21 13:45 |
2019-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218965
|
9.8 |
CRITICAL
Network
|
gatech
|
computing_for_good\'s_basic_laboratory_information_system
|
Computing For Good's Basic Laboratory Information System (also known as C4G BLIS) version 3.5 and earlier suffers from an instance of CWE-284, "Improper Access Control." As a result, an unauthenticat…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-5644
|
2024-11-21 13:45 |
2019-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218966
|
5.3 |
MEDIUM
Network
|
gatech
|
computing_for_good\'s_basic_laboratory_information_system
|
Computing For Good's Basic Laboratory Information System (also known as C4G BLIS) version 3.5 and earlier suffers from an instance of CWE-284, "Improper Access Control." As a result, an unauthenticat…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-5643
|
2024-11-21 13:45 |
2019-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218967
|
3.3 |
LOW
Local
|
rapid7
|
metasploit
|
Rapid7 Metasploit Pro version 4.16.0-2019081901 and prior suffers from an instance of CWE-732, wherein the unique server.key is written to the file system during installation with world-readable perm…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2019-5642
|
2024-11-21 13:45 |
2019-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218968
|
9.8 |
CRITICAL
Network
|
gatech
|
computing_for_good\'s_basic_laboratory_information_system
|
Computing For Good's Basic Laboratory Information System (also known as C4G BLIS) version 3.4 and earlier suffers from an instance of CWE-284, "Improper Access Control." As a result, an unauthenticat…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-5617
|
2024-11-21 13:45 |
2019-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218969
|
3.1 |
LOW
Network
|
nicehash
|
miner
|
A Username Enumeration via Error Message issue was discovered in NiceHash Miner before 2.0.3.0 because an "EMAIL DOES NOT EXIST" error message occurs whenever a submitted email address is incorrect, …
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2019-6122
|
2024-11-21 13:45 |
2019-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218970
|
3.7 |
LOW
Network
|
nicehash
|
miner
|
An issue was discovered in NiceHash Miner before 2.0.3.0. Missing Authorization allows an adversary to can gain access to a miner's information about such as his recent payments, unclaimed Balance, O…
|
CWE-862
Missing Authorization
|
CVE-2019-6121
|
2024-11-21 13:45 |
2019-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
