CVE-2019-15165
- EPSS 2.83%
- Veröffentlicht 03.10.2019 19:15:09
- Zuletzt bearbeitet 03.12.2025 19:15:48
sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory.
CVE-2019-16866
- EPSS 3.51%
- Veröffentlicht 03.10.2019 19:15:09
- Zuletzt bearbeitet 21.11.2024 04:31:14
Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a crash via a crafted NOTIFY query. The source IP address of the query must match an access-control rule.
CVE-2019-15166
- EPSS 4.99%
- Veröffentlicht 03.10.2019 17:15:11
- Zuletzt bearbeitet 03.12.2025 19:15:49
lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.
CVE-2019-17055
- EPSS 0.54%
- Veröffentlicht 01.10.2019 14:15:51
- Zuletzt bearbeitet 21.11.2024 04:31:36
base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21.
CVE-2019-17052
- EPSS 0.64%
- Veröffentlicht 01.10.2019 14:15:40
- Zuletzt bearbeitet 21.11.2024 04:31:36
ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel 3.16 through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-0614e2b73768.
CVE-2019-16935
- EPSS 4.65%
- Veröffentlicht 28.09.2019 02:15:10
- Zuletzt bearbeitet 21.11.2024 04:31:23
The documentation XML-RPC server in Python through 2.7.16, 3.x through 3.6.9, and 3.7.x through 3.7.4 has XSS via the server_title field. This occurs in Lib/DocXMLRPCServer.py in Python 2.x, and in Lib/xmlrpc/server.py in Python 3.x. If set_server_ti...
CVE-2019-16928
- EPSS 41.59%
- Veröffentlicht 27.09.2019 21:15:10
- Zuletzt bearbeitet 07.11.2025 19:37:28
Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846. There is a heap-based buffer overflow in string_vformat in string.c involving a long EHLO command.
CVE-2019-9433
- EPSS 3.05%
- Veröffentlicht 27.09.2019 19:15:29
- Zuletzt bearbeitet 21.11.2024 04:51:38
In libvpx, there is a possible information disclosure due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVers...
CVE-2019-9371
- EPSS 3.07%
- Veröffentlicht 27.09.2019 19:15:24
- Zuletzt bearbeitet 21.11.2024 04:51:31
In libvpx, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: An...
CVE-2019-9325
- EPSS 2.57%
- Veröffentlicht 27.09.2019 19:15:21
- Zuletzt bearbeitet 21.11.2024 04:51:25
In libvpx, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: A...