CVE-2019-2581
- EPSS 2.35%
- Veröffentlicht 23.04.2019 19:32:49
- Zuletzt bearbeitet 21.11.2024 04:41:09
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with netwo...
CVE-2019-2566
- EPSS 2.66%
- Veröffentlicht 23.04.2019 19:32:48
- Zuletzt bearbeitet 21.11.2024 04:41:07
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Audit Plug-in). Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with n...
CVE-2019-7303
- EPSS 3.7%
- Veröffentlicht 23.04.2019 16:29:10
- Zuletzt bearbeitet 21.11.2024 04:47:57
A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host. The seccomp rules were generated to match 64-bit ioctl(2) commands on a 64-bit platform; ...
- EPSS 61.08%
- Veröffentlicht 23.04.2019 16:29:10
- Zuletzt bearbeitet 21.11.2024 04:47:58
Canonical snapd before version 2.37.1 incorrectly performed socket owner validation, allowing an attacker to run arbitrary commands as root. This issue affects: Canonical snapd versions prior to 2.37.1.
CVE-2019-11474
- EPSS 2.16%
- Veröffentlicht 23.04.2019 14:29:01
- Zuletzt bearbeitet 21.11.2024 04:21:09
coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (floating-point exception and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009.
CVE-2019-11459
- EPSS 1.44%
- Veröffentlicht 22.04.2019 22:29:00
- Zuletzt bearbeitet 21.11.2024 04:21:07
The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented(), leading to uninitialized memory use when processing certain TIF...
CVE-2015-1343
- EPSS 0.77%
- Veröffentlicht 22.04.2019 16:29:01
- Zuletzt bearbeitet 21.11.2024 02:25:12
All versions of unity-scope-gdrive logs search terms to syslog.
CVE-2019-11454
- EPSS 2.41%
- Veröffentlicht 22.04.2019 16:29:01
- Zuletzt bearbeitet 21.11.2024 04:21:06
Persistent cross-site scripting (XSS) in http/cervlet.c in Tildeslash Monit before 5.25.3 allows a remote unauthenticated attacker to introduce arbitrary JavaScript via manipulation of an unsanitized user field of the Authorization header for HTTP Ba...
CVE-2019-11455
- EPSS 3.14%
- Veröffentlicht 22.04.2019 16:29:01
- Zuletzt bearbeitet 21.11.2024 04:21:06
A buffer over-read in Util_urlDecode in util.c in Tildeslash Monit before 5.25.3 allows a remote authenticated attacker to retrieve the contents of adjacent memory via manipulation of GET or POST parameters. The attacker can also cause a denial of se...
CVE-2015-1327
- EPSS 0.8%
- Veröffentlicht 22.04.2019 16:29:00
- Zuletzt bearbeitet 21.11.2024 02:25:10
Content Hub before version 0.0+15.04.20150331-0ubuntu1.0 DBUS API only requires a file path for a content item, it doesn't actually require the confined app have access to the file to create a transfer. This could allow a malicious application using ...