CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In October 2019

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1351 CVE-2018-18929 798 2019-10-29 2019-11-05
4.0
None Remote Low ??? Partial None None
The Tightrope Media Carousel Seneca HDn Windows-based appliance 7.0.4.104 is shipped with a default local administrator username and password. This can be found by a limited user account in an "unattend.xml" file left over on the C: drive from the Sysprep process. An attacker with this username and password can leverage it to gain administrator-level access on the system.
1352 CVE-2018-18678 79 XSS 2019-10-30 2019-11-01
4.3
None Remote Medium Not required None Partial None
GNUBOARD5 before 5.3.2.0 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "board group extra contents" parameter, aka the adm/boardgroup_form_update.php gr_1~10 parameter.
1353 CVE-2018-18379 79 XSS 2019-10-07 2020-08-25
4.3
None Remote Medium Not required None Partial None
The elementor-edit-template class in wp-admin/customize.php in the Elementor Pro plugin before 2.0.10 for WordPress has XSS.
1354 CVE-2018-16452 674 2019-10-03 2019-10-11
5.0
None Remote Low Not required None None Partial
The SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smb_fdata() via recursion.
1355 CVE-2018-16451 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN.
1356 CVE-2018-16417 77 2019-10-30 2020-08-24
5.0
None Remote Low Not required Partial None None
Aruba Instant 4.x prior to 6.4.4.8-4.2.4.12, 6.5.x prior to 6.5.4.11, 8.3.x prior to 8.3.0.6, and 8.4.x prior to 8.4.0.1 allows Command injection.
1357 CVE-2018-16301 120 Overflow 2019-10-03 2019-10-07
7.5
None Remote Low Not required Partial Partial Partial
libpcap before 1.9.1, as used in tcpdump before 4.9.3, has a buffer overflow and/or over-read because of errors in pcapng reading.
1358 CVE-2018-16300 674 2019-10-03 2019-10-11
5.0
None Remote Low Not required None None Partial
The BGP parser in tcpdump before 4.9.3 allows stack consumption in print-bgp.c:bgp_attr_print() because of unlimited recursion.
1359 CVE-2018-16230 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_attr_print() (MP_REACH_NLRI).
1360 CVE-2018-16229 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The DCCP parser in tcpdump before 4.9.3 has a buffer over-read in print-dccp.c:dccp_print_option().
1361 CVE-2018-16228 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The HNCP parser in tcpdump before 4.9.3 has a buffer over-read in print-hncp.c:print_prefix().
1362 CVE-2018-16227 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The IEEE 802.11 parser in tcpdump before 4.9.3 has a buffer over-read in print-802_11.c for the Mesh Flags subfield.
1363 CVE-2018-14882 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c.
1364 CVE-2018-14881 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_RESTART).
1365 CVE-2018-14880 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr().
1366 CVE-2018-14879 120 Overflow 2019-10-03 2020-01-20
5.1
None Remote High Not required Partial Partial Partial
The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().
1367 CVE-2018-14470 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c:babel_print_v2().
1368 CVE-2018-14469 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1_n_print().
1369 CVE-2018-14468 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().
1370 CVE-2018-14467 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_MP).
1371 CVE-2018-14466 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rx_cache_find() and rx_cache_insert().
1372 CVE-2018-14465 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print().
1373 CVE-2018-14464 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs().
1374 CVE-2018-14463 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print().
1375 CVE-2018-14462 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().
1376 CVE-2018-14461 125 2019-10-03 2020-01-20
5.0
None Remote Low Not required None None Partial
The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print().
1377 CVE-2018-11768 119 Overflow 2019-10-04 2020-08-06
5.0
None Remote Low Not required None Partial None
In Apache Hadoop 3.1.0 to 3.1.1, 3.0.0-alpha1 to 3.0.3, 2.9.0 to 2.9.1, and 2.0.0-alpha to 2.8.4, the user/group information can be corrupted across storing in fsimage and reading back from fsimage.
1378 CVE-2018-10727 79 XSS 2019-10-29 2019-10-31
4.3
None Remote Medium Not required None Partial None
Reflected Cross-Site Scripting (XSS) vulnerability in the fabrik_referrer hidden field in the Fabrikar Fabrik component through v3.8.1 for Joomla! allows remote attackers to inject arbitrary web script via the HTTP Referer header.
1379 CVE-2018-10105 20 2019-10-03 2019-10-11
7.5
None Remote Low Not required Partial Partial Partial
tcpdump before 4.9.3 mishandles the printing of SMB data (issue 2 of 2).
1380 CVE-2018-10103 20 2019-10-03 2019-10-11
7.5
None Remote Low Not required Partial Partial Partial
tcpdump before 4.9.3 mishandles the printing of SMB data (issue 1 of 2).
1381 CVE-2018-5745 327 2019-10-09 2019-11-06
3.5
None Remote Medium ??? None None Partial
"managed-keys" is a feature which allows a BIND resolver to automatically maintain the keys used by trust anchors which operators configure for use in DNSSEC validation. Due to an error in the managed-keys feature it is possible for a BIND server which uses managed-keys to exit due to an assertion failure if, during key rollover, a trust anchor's keys are replaced with keys which use an unsupported algorithm. Versions affected: BIND 9.9.0 -> 9.10.8-P1, 9.11.0 -> 9.11.5-P1, 9.12.0 -> 9.12.3-P1, and versions 9.9.3-S1 -> 9.11.5-S3 of BIND 9 Supported Preview Edition. Versions 9.13.0 -> 9.13.6 of the 9.13 development branch are also affected. Versions prior to BIND 9.9.0 have not been evaluated for vulnerability to CVE-2018-5745.
1382 CVE-2018-5744 772 2019-10-09 2019-11-05
5.0
None Remote Low Not required None None Partial
A failure to free memory can occur when processing messages having a specific combination of EDNS options. Versions affected are: BIND 9.10.7 -> 9.10.8-P1, 9.11.3 -> 9.11.5-P1, 9.12.0 -> 9.12.3-P1, and versions 9.10.7-S1 -> 9.11.5-S3 of BIND 9 Supported Preview Edition. Versions 9.13.0 -> 9.13.6 of the 9.13 development branch are also affected.
1383 CVE-2018-5743 770 2019-10-09 2019-12-18
4.3
None Remote Medium Not required None None Partial
By design, BIND is intended to limit the number of TCP clients that can be connected at any given time. The number of allowed connections is a tunable parameter which, if unset, defaults to a conservative value for most servers. Unfortunately, the code which was intended to limit the number of simultaneous connections contained an error which could be exploited to grow the number of simultaneous connections beyond this limit. Versions affected: BIND 9.9.0 -> 9.10.8-P1, 9.11.0 -> 9.11.6, 9.12.0 -> 9.12.4, 9.14.0. BIND 9 Supported Preview Edition versions 9.9.3-S1 -> 9.11.5-S3, and 9.11.5-S5. Versions 9.13.0 -> 9.13.7 of the 9.13 development branch are also affected. Versions prior to BIND 9.9.0 have not been evaluated for vulnerability to CVE-2018-5743.
1384 CVE-2018-5742 617 2019-10-30 2019-11-07
4.3
None Remote Medium Not required None None Partial
While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420. Affects RedHat versions bind-9.9.4-65.el7 -> bind-9.9.4-72.el7. No ISC releases are affected. Other packages from other distributions who made the same error may also be affected.
1385 CVE-2018-5735 617 2019-10-30 2019-11-06
5.0
None Remote Low Not required None None Partial
The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858; Affects Debian versions 9.9.5.dfsg-9+deb8u15; 9.9.5.dfsg-9+deb8u18; 9.10.3.dfsg.P4-12.3+deb9u5; 9.11.5.P4+dfsg-5.1 No ISC releases are affected. Other packages from other distributions who did similar backports for the fix for 2017-3137 may also be affected.
1386 CVE-2018-5732 119 Overflow 2019-10-09 2020-01-09
5.0
None Remote Low Not required None None Partial
Failure to properly bounds-check a buffer used for processing DHCP options allows a malicious server (or an entity masquerading as a server) to cause a buffer overflow (and resulting crash) in dhclient by sending a response containing a specially constructed options section. Affects ISC DHCP versions 4.1.0 -> 4.1-ESV-R15, 4.2.0 -> 4.2.8, 4.3.0 -> 4.3.6, 4.4.0
1387 CVE-2018-4064 287 2019-10-31 2019-11-06
5.5
None Remote Low ??? None Partial Partial
An exploitable unverified password change vulnerability exists in the ACEManager upload.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause a unverified device configuration change, resulting in an unverified change of the user password on the device. An attacker can make an authenticated HTTP request to trigger this vulnerability.
1388 CVE-2018-4031 94 2019-10-31 2019-11-06
10.0
None Remote Low Not required Complete Complete Complete
An exploitable vulnerability exists in the safe browsing function of the CUJO Smart Firewall, version 7003. The flaw lies in the way the safe browsing function parses HTTP requests. The server hostname is extracted from captured HTTP/HTTPS requests and inserted as part of a Lua statement without prior sanitization, which results in arbitrary Lua script execution in the kernel. An attacker could send an HTTP request to exploit this vulnerability.
1389 CVE-2018-4002 674 2019-10-31 2019-11-06
7.8
None Remote Low Not required None None Complete
An exploitable denial-of-service vulnerability exists in the mdnscap binary of the CUJO Smart Firewall running firmware 7003. When parsing labels in mDNS packets, the firewall unsafely handles label compression pointers, leading to an uncontrolled recursion that eventually exhausts the stack, crashing the mdnscap process. An unauthenticated attacker can send an mDNS message to trigger this vulnerability.
1390 CVE-2018-3983 824 Exec Code 2019-10-31 2019-11-06
6.8
None Remote Medium Not required Partial Partial Partial
An exploitable uninitialized pointer vulnerability exists in the Word document parser of the the Atlantis Word Processor. A specially crafted document can cause an array fetch to return an uninitialized pointer and then performs some arithmetic before writing a value to the result. Usage of this uninitialized pointer can allow an attacker to corrupt heap memory resulting in code execution under the context of the application. An attacker must convince a victim to open a document in order to trigger this vulnerability.
1391 CVE-2018-3300 2019-10-16 2019-10-17
5.5
None Remote Low ??? Partial Partial None
Vulnerability in the Oracle Retail Xstore Office product of Oracle Retail Applications (component: Internal Operations). The supported version that is affected is 7.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Retail Xstore Office. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Retail Xstore Office accessible data as well as unauthorized read access to a subset of Oracle Retail Xstore Office accessible data. CVSS 3.0 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N).
1392 CVE-2018-2875 2019-10-16 2019-10-17
4.0
None Remote Low ??? Partial None None
Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are affected are 12.2.0.1, 18c and 19c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via OracleNet to compromise Core RDBMS. While the vulnerability is in Core RDBMS, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Core RDBMS accessible data. CVSS 3.0 Base Score 5.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N).
1393 CVE-2017-1002201 79 XSS 2019-10-15 2021-12-29
4.3
None Remote Medium Not required None Partial None
In haml versions prior to version 5.0.0.beta.2, when using user input to perform tasks on the server, characters like < > " ' must be escaped properly. In this case, the ' character was missed. An attacker can manipulate the input to introduce additional attributes, potentially executing code.
1394 CVE-2017-18638 918 2019-10-11 2019-10-21
5.0
None Remote Low Not required Partial None None
send_email in graphite-web/webapp/graphite/composer/views.py in Graphite through 1.1.5 is vulnerable to SSRF. The vulnerable SSRF endpoint can be used by an attacker to have the Graphite web server request any resource. The response to this SSRF request is encoded into an image file and then sent to an e-mail address that can be supplied by the attacker. Thus, an attacker can exfiltrate any information.
1395 CVE-2017-15725 611 2019-10-28 2019-10-31
5.0
None Remote Low Not required Partial None None
An XML External Entity Injection vulnerability exists in Dzone AnswerHub.
1396 CVE-2017-14948 120 Exec Code Overflow 2019-10-14 2021-04-23
7.5
None Remote Low Not required Partial Partial Partial
Certain D-Link products are affected by: Buffer Overflow. This affects DIR-880L 1.08B04 and DIR-895 L/R 1.13b03. The impact is: execute arbitrary code (remote). The component is: htdocs/fileaccess.cgi. The attack vector is: A crafted HTTP request handled by fileacces.cgi could allow an attacker to mount a ROP attack: if the HTTP header field CONTENT_TYPE starts with ''boundary=' followed by more than 256 characters, a buffer overflow would be triggered, potentially causing code execution.
1397 CVE-2017-14742 119 Exec Code Overflow 2019-10-25 2019-10-29
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in LabF nfsAxe FTP client 3.7 allows an attacker to execute code remotely.
1398 CVE-2017-8087 200 +Info 2019-10-22 2019-10-24
2.1
None Local Low Not required Partial None None
Information Leakage in PPPoE Packet Padding in AVM Fritz!Box 7490 with Firmware versions Fritz!OS 6.80 and 6.83 allows physically proximate attackers to view slices of previously transmitted packets or portions of memory via via unspecified vectors.
1399 CVE-2017-5731 119 Overflow 2019-10-28 2019-11-18
4.6
None Local Low Not required Partial Partial Partial
Bounds checking in Tianocompress before November 7, 2017 may allow an authenticated user to potentially enable an escalation of privilege via local access.
1400 CVE-2016-11016 79 XSS 2019-10-16 2020-11-10
4.3
None Remote Medium Not required None Partial None
NETGEAR JNR1010 devices before 1.0.0.32 allow webproc?getpage= XSS.
Total number of vulnerabilities : 1567   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 (This Page)29 30 31 32
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.