CVEs from 2019
Total
3,157
critical
critical 227
high
high 474
medium
medium 476
low
low 94
% Critical
7.2%
% with KEV
3.7%
% with exploit
8.0%
Top vendors
- intel 246
- schneider-electric 117
- netapp 61
- siemens 58
- oracle 36
- hp 23
- denx 20
- phoenixcontact 9
Top products
- u-boot 20
- crimson 8
- active_iq_unified_manager 7
- weblogic_server 5
- jdk 5
- oncommand_workflow_automation 5
- codeready_linux_builder_eus 4
- oncommand_insight 4
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-6237 | low | — | 2.5 | 7y ago | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for … | |||
| CVE-2019-8551 | low | — | 2.5 | 7y ago | A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web c… | |||
| CVE-2019-11070 | low | — | 2.5 | 7y ago | WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video (HLS, DASH, or Smooth Streaming), an error resulting in dean… | |||
| CVE-2019-11459 | low | — | 2.5 | 7y ago | RHSA-2019:3553: GNOME security, bug fix, and enhancement update (Low) | |||
| CVE-2019-8536 | low | — | 2.5 | 7y ago | A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Proces… | |||
| CVE-2019-3820 | low | — | 2.5 | 7y ago | RHSA-2019:3553: GNOME security, bug fix, and enhancement update (Low) | |||
| CVE-2019-8768 | low | — | 2.5 | 7y ago | "Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Catalina 10.15. A user may be unable to delete browsing h… | |||
| CVE-2019-9824 | low | — | 2.5 | 7y ago | tcp_emu in slirp/tcp_subr.c (aka slirp/src/tcp_subr.c) in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure. | |||
| CVE-2019-9755 | low | — | 2.5 | 7y ago | RHSA-2019:3345: virt:rhel security, bug fix, and enhancement update (Low) | |||
| CVE-2019-12155 | low | — | 2.5 | 7y ago | interface_release_resource in hw/display/qxl.c in QEMU 3.1.x through 4.0.0 has a NULL pointer dereference. | |||
| CVE-2019-12312 | low | — | 2.5 | 7y ago | RHSA-2019:3391: libreswan security and bug fix update (Low) | |||
| CVE-2019-6465 | low | — | 2.5 | 7y ago | RHSA-2019:3552: bind security and bug fix update (Low) | |||
| CVE-2019-10183 | low | — | 2.5 | 7y ago | RHSA-2019:3464: virt-manager security, bug fix, and enhancement update (Low) | |||
| CVE-2019-10155 | low | — | 2.5 | 7y ago | RHSA-2019:3391: libreswan security and bug fix update (Low) | |||
| CVE-2019-13313 | low | — | 2.5 | 7y ago | RHSA-2019:3387: osinfo-db and libosinfo security and bug fix update (Low) | |||
| CVE-2019-1543 | low | — | 2.5 | 7y ago | RHSA-2019:3700: openssl security, bug fix, and enhancement update (Low) | |||
| CVE-2019-7665 | low | — | 2.5 | 7y ago | RHSA-2019:3575: elfutils security, bug fix, and enhancement update (Low) | |||
| CVE-2019-7150 | low | — | 2.5 | 7y ago | RHSA-2019:3575: elfutils security, bug fix, and enhancement update (Low) | |||
| CVE-2019-7664 | low | — | 2.5 | 7y ago | RHSA-2019:3575: elfutils security, bug fix, and enhancement update (Low) | |||
| CVE-2019-7149 | low | — | 2.5 | 7y ago | RHSA-2019:3575: elfutils security, bug fix, and enhancement update (Low) | |||
| CVE-2019-7146 | low | — | 2.5 | 7y ago | RHSA-2019:3575: elfutils security, bug fix, and enhancement update (Low) |