VIR Vulnerability Intelligence Relay

Search

Found 15,834 results in 868ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2019-8610 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-8609 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-8608 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-8607 low 2.5 FIX sles rockydebian debian 7y ago An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud f…
CVE-2019-8601 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9…
CVE-2019-8597 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-8596 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-8595 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-8594 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-8587 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-8586 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-8584 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-8583 low 2.5 FIX rockydebian debianalmalinux almalinux 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9…
CVE-2019-8571 low 2.5 FIX rockydebian debian rhel 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-8563 low 2.5 FIX sles rockydebian debian 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.1…
CVE-2019-8559 low 2.5 FIX sles rockydebian debian 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.1…
CVE-2019-8558 low 3.5 EXPFIX rockydebian debian rhel 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.1…
CVE-2019-8551 low 2.5 FIX sles rockydebian debian 7y ago A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web c…
CVE-2019-8544 low 2.5 FIX sles rockydebian debian 7y ago A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Proces…
CVE-2019-8536 low 2.5 FIX sles rockydebian debian 7y ago A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Proces…
CVE-2019-8535 low 2.5 FIX sles rockydebian debian 7y ago A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing malicio…
CVE-2019-8524 low 2.5 FIX rockydebian debian rhel 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing…
CVE-2019-8523 low 2.5 FIX sles rockydebian debian 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing…
CVE-2019-8518 low 3.5 EXPFIX sles rockydebian debian 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.1…
CVE-2019-6251 low 2.5 FIX arch arch rockydebian debian 7y ago WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a…
CVE-2019-6237 low 2.5 FIX rockydebian debian rhel 7y ago Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for …
CVE-2019-3820 low 2.5 FIX arch arch slesdebian debian 7y ago RHSA-2019:3553: GNOME security, bug fix, and enhancement update (Low)
CVE-2019-12795 low 2.5 FIX arch arch slesdebian debian 7y ago daemon/gvfsdaemon.c in gvfsd from GNOME gvfs before 1.38.3, 1.40.x before 1.40.2, and 1.41.x before 1.41.3 opened a private D-Bus server socket without configuring an authorization rule. A local atta…
CVE-2019-11459 low 2.5 FIX debian debian sles rocky 7y ago RHSA-2019:3553: GNOME security, bug fix, and enhancement update (Low)
CVE-2019-11070 low 2.5 FIX sles rockydebian debian 7y ago WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video (HLS, DASH, or Smooth Streaming), an error resulting in dean…
CVE-2019-9824 low 2.5 FIX sles rockydebian debian 7y ago tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure.
CVE-2019-9755 low 2.5 FIX sles rockydebian debian 7y ago RHSA-2019:3345: virt:rhel security, bug fix, and enhancement update (Low)
CVE-2019-12155 low 2.5 FIX sles rockydebian debian 7y ago interface_release_resource in hw/display/qxl.c in QEMU 3.1.x through 4.0.0 has a NULL pointer dereference.
CVE-2020-15719 low 2.5 slesdebian debian rhel 7y ago RHBA-2019:3674: openldap bug fix and enhancement update (Low)
CVE-2019-7665 low 2.5 FIX arch arch slesdebian debian 7y ago RHSA-2019:3575: elfutils security, bug fix, and enhancement update (Low)
CVE-2019-7664 low 2.5 FIX arch arch slesdebian debian 7y ago RHSA-2019:3575: elfutils security, bug fix, and enhancement update (Low)
CVE-2019-7150 low 2.5 FIX arch arch slesdebian debian 7y ago RHSA-2019:3575: elfutils security, bug fix, and enhancement update (Low)
CVE-2019-7149 low 2.5 FIX arch archdebian debian rhel 7y ago RHSA-2019:3575: elfutils security, bug fix, and enhancement update (Low)
CVE-2019-7146 low 2.5 FIX slesdebian debian rhel 7y ago RHSA-2019:3575: elfutils security, bug fix, and enhancement update (Low)
CVE-2019-6465 low 2.5 FIX debian debianarch arch sles 7y ago RHSA-2019:3552: bind security and bug fix update (Low)
CVE-2019-1543 low 2.5 FIX arch arch slesdebian debian 7y ago RHSA-2019:3700: openssl security, bug fix, and enhancement update (Low)
CVE-2019-13313 low 2.5 FIX slesdebian debian rhel 7y ago RHSA-2019:3387: osinfo-db and libosinfo security and bug fix update (Low)
CVE-2019-12312 low 2.5 FIX slesdebian debian rhel 7y ago RHSA-2019:3391: libreswan security and bug fix update (Low)
CVE-2019-10183 low 2.5 FIX slesdebian debian rhel 7y ago RHSA-2019:3464: virt-manager security, bug fix, and enhancement update (Low)
CVE-2019-10155 low 2.5 FIX debian debian rhel 7y ago RHSA-2019:3391: libreswan security and bug fix update (Low)
CVE-2018-6616 low 2.5 FIX slesdebian debian rhel 7y ago RHBA-2019:3408: openjpeg2 bug fix and enhancement update (Low)
CVE-2018-5745 low 2.5 FIX debian debianarch arch sles 7y ago RHSA-2019:3552: bind security and bug fix update (Low)
CVE-2018-16838 low 2.5 FIX slesdebian debian rhel 7y ago RHSA-2019:3651: sssd security, bug fix, and enhancement update (Low)
CVE-2018-10932 low 2.5 FIX sles rockydebian debian 7y ago RHSA-2019:3673: lldpad security and bug fix update (Low)
CVE-2018-0735 low 2.5 FIX arch arch slesdebian debian 7y ago RHSA-2019:3700: openssl security, bug fix, and enhancement update (Low)
CVE-2018-0734 low 2.5 FIX arch arch slesdebian debian 7y ago RHSA-2019:3700: openssl security, bug fix, and enhancement update (Low)
CVE-2019-17359 unknown FIX debian debian 7y ago Out-of-Memory Error in Bouncy Castle Crypto
CVE-2019-17545 unknown FIX debian debian 7y ago GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogr_expat.cpp when the 10MB threshold is exceeded.
CVE-2019-16869 unknown FIX slesdebian debian 7y ago HTTP Request Smuggling in Netty
CVE-2019-12402 unknown FIX debian debian 7y ago Denial of Service in Apache Commons Compress
CVE-2019-10753 unknown FIX debian debian 7y ago Incorrect Resource Transfer Between Spheres in eclipse-wtp
CVE-2019-12400 unknown FIX debian debian 7y ago Improper input validation in Apache Santuario XML Security for Java
CVE-2019-16137 unknown FIX debian debian 7y ago An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclus…
CVE-2019-10088 unknown FIX slesdebian debian 7y ago Allocation of Resources Without Limits or Throttling in Apache Tika
CVE-2019-10093 unknown FIX slesdebian debian 7y ago Allocation of Resources Without Limits or Throttling in Apache Tika
CVE-2019-10094 unknown FIX slesdebian debian 7y ago Allocation of Resources Without Limits or Throttling in Apache Tika
CVE-2019-10184 unknown FIX debian debian 7y ago Undertow Missing Authorization when requesting a protected directory without trailing slash
CVE-2019-14439 unknown FIX debian debian 7y ago Deserialization of untrusted data in FasterXML jackson-databind
CVE-2019-14379 unknown FIX slesdebian debian 7y ago Deserialization of untrusted data in FasterXML jackson-databind
CVE-2015-7559 unknown FIX debian debian 7y ago Improper Input Validation and Missing Authentication for Critical Function in Apache ActiveMQ
CVE-2019-0193 unknown 1.5 KEVFIX debian debian 7y ago The optional Apache Solr module DataImportHandler contains a code injection vulnerability.
CVE-2019-10173 unknown FIX slesdebian debian 7y ago Deserialization of Untrusted Data and Code Injection in xstream
CVE-2018-11307 unknown FIX debian debian 7y ago Deserialization of Untrusted Data in jackson-databind
CVE-2019-0228 unknown FIX debian debian 7y ago Vulnerability that affects org.apache.pdfbox:pdfbox
CVE-2019-10072 unknown FIX slesdebian debian 7y ago The fix for CVE-2019-0199 was incomplete and did not address HTTP/2 connection window exhaustion on write in Apache Tomcat versions 9.0.0.M1 to 9.0.19 and 8.5.0 to 8.5.40 . By not sending WINDOW_UPDA…
CVE-2019-3888 unknown FIX debian debian 7y ago Credential exposure through log files in Undertow
CVE-2019-0221 unknown 1.0 EXPFIX slesdebian debian 7y ago The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by…
CVE-2019-0201 unknown FIX slesdebian debian 7y ago Access control bypass in Apache ZooKeeper
CVE-2013-7285 unknown 1.0 EXPFIX slesdebian debian 7y ago Command Injection in Xstream
CVE-2019-0227 unknown 1.0 EXP debian debian sles 7y ago Server Side Request Forgery in Apache Axis
CVE-2019-15542 unknown FIX debian debian 7y ago An issue was discovered in the ammonia crate before 2.1.0 for Rust. There is uncontrolled recursion during HTML DOM tree serialization.
CVE-2019-10246 unknown FIX debian debian 7y ago Information Exposure vulnerability in Eclipse Jetty
CVE-2019-10247 unknown FIX debian debian 7y ago Installation information leak in Eclipse Jetty
CVE-2019-10241 unknown FIX debian debian 7y ago Cross-site Scripting in Eclipse Jetty
CVE-2019-5427 unknown FIX debian debian sles 7y ago Billion laughs attack in c3p0
CVE-2019-11358 low 3.5 EXPFIX arch arch rockydebian debian 7y ago RHSA-2021:4142: pcs security, bug fix, and enhancement update (Low)
CVE-2019-0232 unknown 1.0 EXPFIX debian debian 7y ago When running on Windows with enableCmdLineArguments enabled, the CGI Servlet in Apache Tomcat 9.0.0.M1 to 9.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 is vulnerable to Remote Code Execution due to a b…
CVE-2019-0222 unknown FIX debian debian 7y ago Improper Control of Generation of Code ('Code Injection') in org.apache.activemq:activemq-client
CVE-2019-10648 unknown FIX debian debian 7y ago Robocode through 1.9.3.5 allows remote attackers to cause external service interaction (DNS), as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of…
CVE-2018-12545 unknown FIX debian debian 7y ago Uncontrolled Resource Consumption in org.eclipse.jetty:jetty-server
CVE-2018-12022 unknown FIX debian debian 7y ago jackson-databind Deserialization of Untrusted Data vulnerability
CVE-2018-1324 unknown FIX debian debian 7y ago Apache Commons Compress vulnerable to denial of service due to infinite loop
CVE-2017-3164 unknown debian debian 7y ago Server-Side Request Forgery (SSRF) in org.apache.solr:solr-core
CVE-2019-0192 unknown FIX debian debian 7y ago Critical severity vulnerability that affects org.apache.solr:solr-core
CVE-2019-9658 unknown FIX debian debian 7y ago Moderate severity vulnerability that affects com.puppycrawl.tools:checkstyle
CVE-2019-5418 unknown 2.5 KEVEXPFIX slesdebian debian 7y ago Rails Ruby on Rails contains a path traversal vulnerability in Action View. Specially crafted accept headers in combination with calls to `render file:` can cause arbitrary files on the target server…
CVE-2019-0187 unknown debian debian 7y ago Unauthenticated Remote Code Execution in Apache JMeter
CVE-2018-1320 unknown FIX debian debian 8y ago Improper Input Validation in Apache Thrift
CVE-2018-11798 unknown FIX debian debian 8y ago Apache Thrift Node.js static web server sandbox escape
CVE-2018-20433 unknown FIX debian debian sles 8y ago XML External Entity Reference in mchange:c3p0
CVE-2018-14719 unknown FIX debian debian 8y ago Arbitrary Code Execution in jackson-databind
CVE-2018-14720 unknown FIX debian debian 8y ago XML External Entity Reference (XXE) in jackson-databind
CVE-2018-14721 unknown FIX debian debian 8y ago Server-Side Request Forgery (SSRF) in jackson-databind
CVE-2018-19362 unknown FIX debian debian 8y ago com.fasterxml.jackson.core:jackson-databind vulnerable to Deserialization of Untrusted Data
CVE-2018-19361 unknown FIX debian debian 8y ago Deserialization of Untrusted Data in jackson-databind