CVE-2019-13707
- EPSS 0.19%
- Veröffentlicht 25.11.2019 15:15:33
- Zuletzt bearbeitet 21.11.2024 04:25:32
Insufficient validation of untrusted input in intents in Google Chrome on Android prior to 78.0.3904.70 allowed a local attacker to leak files via a crafted application.
CVE-2019-13705
- EPSS 0.23%
- Veröffentlicht 25.11.2019 15:15:32
- Zuletzt bearbeitet 21.11.2024 04:25:32
Insufficient policy enforcement in extensions in Google Chrome prior to 78.0.3904.70 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension.
CVE-2019-16709
- EPSS 0.18%
- Veröffentlicht 23.09.2019 12:15:10
- Zuletzt bearbeitet 21.11.2024 04:31:01
ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrated by XCreateImage.
CVE-2019-14524
- EPSS 0.48%
- Veröffentlicht 02.08.2019 12:15:12
- Zuletzt bearbeitet 21.11.2024 04:26:53
An issue was discovered in Schism Tracker through 20190722. There is a heap-based buffer overflow via a large number of song patterns in fmt_mtm_load_song in fmt/mtm.c, a different vulnerability than CVE-2019-14465.
CVE-2019-10163
- EPSS 0.01%
- Veröffentlicht 30.07.2019 23:15:12
- Zuletzt bearbeitet 21.11.2024 04:18:33
A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master server to cause a high CPU load or even prevent any further updates to any slave zone by sending a large number of NOTIF...
CVE-2019-5460
- EPSS 0.66%
- Veröffentlicht 30.07.2019 21:15:12
- Zuletzt bearbeitet 21.11.2024 04:44:58
Double Free in VLC versions <= 3.0.6 leads to a crash.
CVE-2019-5459
- EPSS 0.94%
- Veröffentlicht 30.07.2019 21:15:12
- Zuletzt bearbeitet 21.11.2024 04:44:58
An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read.
CVE-2019-5840
- EPSS 0.62%
- Veröffentlicht 27.06.2019 17:15:15
- Zuletzt bearbeitet 21.11.2024 04:45:37
Incorrect security UI in popup blocker in Google Chrome on iOS prior to 75.0.3770.80 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
CVE-2019-5839
- EPSS 1.03%
- Veröffentlicht 27.06.2019 17:15:15
- Zuletzt bearbeitet 21.11.2024 04:45:37
Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL.
CVE-2019-5829
- EPSS 2.15%
- Veröffentlicht 27.06.2019 17:15:15
- Zuletzt bearbeitet 21.11.2024 04:45:35
Integer overflow in download manager in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.