|
223211
|
5.5 |
MEDIUM
Local
|
wireshark
debian
|
wireshark
debian_linux
|
In Wireshark 2.6.0 to 2.6.5, the 6LoWPAN dissector could crash. This was addressed in epan/dissectors/packet-6lowpan.c by avoiding use of a TVB before its creation.
|
CWE-20
Improper Input Validation
|
CVE-2019-5716
|
2024-11-21 13:45 |
2019-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223212
|
9.8 |
CRITICAL
Network
|
frontaccounting
|
frontaccounting
|
includes/db/class.reflines_db.inc in FrontAccounting 2.4.6 contains a SQL Injection vulnerability in the reference field that can allow the attacker to grab the entire database of the application via…
|
CWE-89
SQL Injection
|
CVE-2019-5720
|
2024-11-21 13:45 |
2019-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223213
|
5.5 |
MEDIUM
Local
|
linux
netapp
|
linux_kernel
element_software_management_node
active_iq_performance_analytics_services
|
The mincore() implementation in mm/mincore.c in the Linux kernel through 4.19.13 allowed local attackers to observe page cache access patterns of other processes on the same system, potentially allow…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2019-5489
|
2024-11-21 13:45 |
2019-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223214
|
7.5 |
HIGH
Network
|
earclink
|
espcms-p8
|
EARCLINK ESPCMS-P8 has SQL injection in the install_pack/index.php?ac=Member&at=verifyAccount verify_key parameter. install_pack/espcms_public/espcms_db.php may allow retrieving sensitive information…
|
CWE-89
SQL Injection
|
CVE-2019-5488
|
2024-11-21 13:45 |
2019-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223215
|
6.5 |
MEDIUM
Network
|
arubanetworks
siemens
|
arubaos
scalance_w1750d_firmware
|
A remote cross-site request forgery (csrf) vulnerability was discovered in Aruba Operating System Software version(s): 6.x.x.x: all versions, 8.x.x.x: all versions prior to 8.8.0.0. Aruba has release…
|
CWE-352
Origin Validation Error
|
CVE-2019-5318
|
2024-11-21 13:44 |
2021-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223216
|
7.1 |
HIGH
Network
|
ibm
netapp
|
cognos_analytics
oncommand_insight
|
IBM Cognos Analytics 11.0 and 11.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive info…
|
CWE-611
XXE
|
CVE-2019-4730
|
2024-11-21 13:44 |
2021-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223217
|
7.5 |
HIGH
Network
|
ibm
netapp
|
cognos_analytics
oncommand_insight
|
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain credentials from a user's browser via incorrect autocomplete settings in New Content Backup page. IBM X-Force ID: 172130.
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2019-4724
|
2024-11-21 13:44 |
2021-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223218
|
7.5 |
HIGH
Network
|
ibm
netapp
|
cognos_analytics
oncommand_insight
|
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain credentials from a user's browser via incorrect autocomplete settings in New Data Server Connection page. IBM X-Force ID: 17…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2019-4723
|
2024-11-21 13:44 |
2021-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223219
|
4.3 |
MEDIUM
Network
|
ibm
netapp
|
cognos_analytics
oncommand_insight
|
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain sensitive information via a stack trace due to mishandling of certain error conditions. IBM X-Force ID: 172128.
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2019-4722
|
2024-11-21 13:44 |
2021-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223220
|
9.8 |
CRITICAL
Network
|
arubanetworks
siemens
|
instant
scalance_w1750d_firmware
|
A remote buffer overflow vulnerability was discovered in some Aruba Instant Access Point (IAP) products in version(s): Aruba Instant 6.4.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x: 6.5.4.16 a…
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-5319
|
2024-11-21 13:44 |
2021-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
