CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In December 2019

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
151 CVE-2019-19845 22 Dir. Trav. 2019-12-18 2019-12-19
5.0
None Remote Low Not required Partial None None
In Joomla! before 3.9.14, a missing access check in framework files could lead to a path disclosure.
152 CVE-2019-19844 640 2019-12-18 2020-01-08
5.0
None Remote Low Not required None Partial None
Django before 1.11.27, 2.x before 2.2.9, and 3.x before 3.0.1 allows account takeover. A suitably crafted email address (that is equal to an existing user's email address after case transformation of Unicode characters) would allow an attacker to be sent a password reset token for the matched user account. (One mitigation in the new releases is to send password reset tokens only to the registered user email address.)
153 CVE-2019-19833 352 CSRF 2019-12-18 2020-01-16
4.3
None Remote Medium Not required None None Partial
In Tautulli 2.1.9, CSRF in the /shutdown URI allows an attacker to shut down the remote media server. (Also, anonymous access can be achieved in applications that do not have a user login area).
154 CVE-2019-19832 352 CSRF 2019-12-18 2019-12-23
6.8
None Remote Medium Not required Partial Partial Partial
Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. (The frmUserName value must have a unique name.)
155 CVE-2019-19830 20 2019-12-17 2021-07-21
4.0
None Remote Low ??? None Partial None
_core_/plugins/medias in SPIP 3.2.x before 3.2.7 allows remote authenticated authors to inject content into the database.
156 CVE-2019-19829 79 XSS 2019-12-18 2019-12-23
3.5
None Remote Medium ??? None Partial None
A cross-site scripting (XSS) vulnerability exists in SolarWinds Serv-U FTP Server 15.1.7 in the email parameter, a different vulnerability than CVE-2018-19934 and CVE-2019-13182.
157 CVE-2019-19826 502 Exec Code 2019-12-16 2019-12-27
7.5
None Remote Low Not required Partial Partial Partial
The Views Dynamic Fields module through 7.x-1.0-alpha4 for Drupal makes insecure unserialize calls in handlers/views_handler_filter_dynamic_fields.inc, as demonstrated by PHP object injection, involving a field_names object and an Archive_Tar object, for file deletion. Code execution might also be possible.
158 CVE-2019-19818 125 2019-12-16 2019-12-19
4.3
None Remote Medium Not required Partial None None
The JBIG2Decode library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0xa08a Out-of-Bounds Read via crafted Unicode content.
159 CVE-2019-19816 787 2019-12-17 2021-03-15
9.3
None Remote Medium Not required Complete Complete Complete
In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image and performing some operations can cause slab-out-of-bounds write access in __btrfs_map_block in fs/btrfs/volumes.c, because a value of 1 for the number of data stripes is mishandled.
160 CVE-2019-19815 476 2019-12-17 2020-01-03
7.1
None Remote Medium Not required None None Complete
In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can cause a NULL pointer dereference in f2fs_recover_fsync_data in fs/f2fs/recovery.c. This is related to F2FS_P_SB in fs/f2fs/f2fs.h.
161 CVE-2019-19814 787 2019-12-17 2020-01-03
9.3
None Remote Medium Not required Complete Complete Complete
In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can cause __remove_dirty_segment slab-out-of-bounds write access because an array is bounded by the number of dirty types (8) but the array index can exceed this.
162 CVE-2019-19813 416 2019-12-17 2021-03-12
7.1
None Remote Medium Not required None None Complete
In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image, performing some operations, and then making a syncfs system call can lead to a use-after-free in __mutex_lock in kernel/locking/mutex.c. This is related to mutex_can_spin_on_owner in kernel/locking/mutex.c, __btrfs_qgroup_free_meta in fs/btrfs/qgroup.c, and btrfs_insert_delayed_items in fs/btrfs/delayed-inode.c.
163 CVE-2019-19807 416 2019-12-15 2020-01-30
7.2
None Local Low Not required Complete Complete Complete
In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to snd_timer_open and snd_timer_close_locked. The timeri variable was originally intended to be for a newly created timer instance, but was used for a different purpose after refactoring.
164 CVE-2019-19806 200 +Info 2019-12-30 2021-07-21
5.0
None Remote Low Not required Partial None None
_account_forgot_password.ajax.php in MFScripts YetiShare 3.5.2 through 4.5.3 displays a message indicating whether an email address is configured for the account name provided. This can be used by an attacker to enumerate accounts by guessing email addresses.
165 CVE-2019-19805 200 +Info 2019-12-30 2021-07-21
5.0
None Remote Low Not required Partial None None
_account_forgot_password.ajax.php in MFScripts YetiShare 3.5.2 through 4.5.3 takes a different amount of time to return depending on whether an email address is configured for the account name provided. This can be used by an attacker to enumerate accounts by guessing email addresses.
166 CVE-2019-19797 787 2019-12-15 2021-10-04
4.3
None Remote Medium Not required None None Partial
read_colordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write.
167 CVE-2019-19796 787 Overflow 2019-12-13 2019-12-17
6.8
None Remote Medium Not required Partial Partial Partial
Yabasic 2.86.2 has a heap-based buffer overflow in myformat in function.c via a crafted BASIC source file.
168 CVE-2019-19795 787 Overflow 2019-12-13 2019-12-17
6.8
None Remote Medium Not required Partial Partial Partial
samurai 0.7 has a heap-based buffer overflow in canonpath in util.c via a crafted build file.
169 CVE-2019-19794 338 2019-12-13 2020-01-02
4.3
None Remote Medium Not required None Partial None
The miekg Go DNS package before 1.1.25, as used in CoreDNS before 1.6.6 and other products, improperly generates random numbers because math/rand is used. The TXID becomes predictable, leading to response forgeries.
170 CVE-2019-19793 367 +Priv 2019-12-13 2020-08-24
6.5
None Remote Low ??? Partial Partial Partial
In Cyxtera AppGate SDP Client 4.1.x through 4.3.x before 4.3.2 on Windows, a local or remote user from the same domain can gain privileges.
171 CVE-2019-19790 22 Dir. Trav. 2019-12-13 2019-12-30
7.5
None Remote Low Not required Partial Partial Partial
Path traversal in RadChart in Telerik UI for ASP.NET AJAX allows a remote attacker to read and delete an image with extension .BMP, .EXIF, .GIF, .ICON, .JPEG, .PNG, .TIFF, or .WMF on the server through a specially crafted request. NOTE: RadChart was discontinued in 2014 in favor of RadHtmlChart. All RadChart versions were affected. To avoid this vulnerability, you must remove RadChart's HTTP handler from a web.config (its type is Telerik.Web.UI.ChartHttpHandler).
172 CVE-2019-19789 476 2019-12-20 2020-01-03
4.0
None Remote Low ??? None None Partial
3S-Smart CODESYS SP Realtime NT before V2.3.7.28, CODESYS Runtime Toolkit 32 bit full before V2.4.7.54, and CODESYS PLCWinNT before V2.4.7.54 allow a NULL pointer dereference.
173 CVE-2019-19788 Bypass 2019-12-18 2020-01-07
2.1
None Local Low Not required None Partial None
Opera for Android before 54.0.2669.49432 is vulnerable to a sandboxed cross-origin iframe bypass attack. By using a service working inside a sandboxed iframe it is possible to bypass the normal sandboxing attributes. This allows an attacker to make forced redirections without any user interaction from a third-party context.
174 CVE-2019-19787 787 Overflow 2019-12-13 2021-04-03
6.8
None Remote Medium Not required Partial Partial Partial
ATasm 1.06 has a stack-based buffer overflow in the get_signed_expression() function in setparse.c via a crafted .m65 file.
175 CVE-2019-19786 787 Overflow 2019-12-13 2021-04-03
6.8
None Remote Medium Not required Partial Partial Partial
ATasm 1.06 has a stack-based buffer overflow in the parse_expr() function in setparse.c via a crafted .m65 file.
176 CVE-2019-19785 787 Overflow 2019-12-13 2021-04-03
6.8
None Remote Medium Not required Partial Partial Partial
ATasm 1.06 has a stack-based buffer overflow in the to_comma() function in asm.c via a crafted .m65 file.
177 CVE-2019-19783 20 2019-12-16 2021-07-21
3.5
None Remote Medium ??? None Partial None
An issue was discovered in Cyrus IMAP before 2.5.15, 3.0.x before 3.0.13, and 3.1.x through 3.1.8. If sieve script uploading is allowed (3.x) or certain non-default sieve options are enabled (2.x), a user with a mail account on the service can use a sieve script containing a fileinto directive to create any mailbox with administrator privileges, because of folder mishandling in autosieve_createfolder() in imap/lmtp_sieve.c.
178 CVE-2019-19782 120 Overflow 2019-12-13 2019-12-16
10.0
None Remote Low Not required Complete Complete Complete
The FTP client in AceaXe Plus 1.0 allows a buffer overflow via a long EHLO response from an FTP server.
179 CVE-2019-19781 22 Dir. Trav. 2019-12-27 2020-01-08
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal.
180 CVE-2019-19778 125 2019-12-13 2019-12-19
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in libsixel 1.8.2. There is a heap-based buffer over-read in the function load_sixel at loader.c.
181 CVE-2019-19777 125 2019-12-13 2019-12-18
6.8
None Remote Medium Not required Partial Partial Partial
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main.
182 CVE-2019-19775 601 2019-12-18 2019-12-18
5.8
None Remote Medium Not required Partial Partial None
The image thumbnailing handler in Zulip Server versions 1.9.0 to before 2.0.8 allowed an open redirect that was visible to logged-in users.
183 CVE-2019-19774 Bypass 2019-12-13 2020-08-24
4.0
None Remote Low ??? Partial None None
An issue was discovered in Zoho ManageEngine EventLog Analyzer 10.0 SP1 before Build 12110. By running "select hostdetails from hostdetails" at the /event/runquery.do endpoint, it is possible to bypass the security restrictions that prevent even administrative users from viewing credential data stored in the database, and recover the MD5 hashes of the accounts used to authenticate the ManageEngine platform to the managed machines on the network (most often administrative accounts). Specifically, this bypasses these restrictions: a query cannot mention password, and a query result cannot have a password column.
184 CVE-2019-19771 20 2019-12-12 2021-07-21
9.3
None Remote Medium Not required Complete Complete Complete
The lodahs package 0.0.1 for Node.js is a Trojan horse, and may have been installed by persons who mistyped the lodash package name. In particular, the Trojan horse finds and exfiltrates cryptocurrency wallets.
185 CVE-2019-19770 416 2019-12-12 2020-12-11
6.4
None Remote Low Not required Partial None Partial
** DISPUTED ** In the Linux kernel 4.19.83, there is a use-after-free (read) in the debugfs_remove function in fs/debugfs/inode.c (which is used to remove a file or directory in debugfs that was previously created with a call to another debugfs function such as debugfs_create_file). NOTE: Linux kernel developers dispute this issue as not being an issue with debugfs, instead this is an issue with misuse of debugfs within blktrace.
186 CVE-2019-19769 416 2019-12-12 2020-05-30
6.5
None Remote Low ??? Partial Partial Partial
In the Linux kernel 5.3.10, there is a use-after-free (read) in the perf_trace_lock_acquire function (related to include/trace/events/lock.h).
187 CVE-2019-19768 416 2019-12-12 2020-06-10
5.0
None Remote Low Not required None None Partial
In the Linux kernel 5.4.0-rc2, there is a use-after-free (read) in the __blk_add_trace function in kernel/trace/blktrace.c (which is used to fill out a blk_io_trace structure and place it in a per-cpu sub-buffer).
188 CVE-2019-19767 416 2019-12-12 2020-01-03
4.3
None Remote Medium Not required None None Partial
The Linux kernel before 5.4.2 mishandles ext4_expand_extra_isize, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ext4/inode.c and fs/ext4/super.c, aka CID-4ea99936a163.
189 CVE-2019-19766 326 2019-12-12 2021-07-21
5.0
None Remote Low Not required Partial None None
The Bitwarden server through 1.32.0 has a potentially unwanted KDF.
190 CVE-2019-19750 2019-12-12 2019-12-30
7.5
None Remote Low Not required Partial Partial Partial
minerstat msOS before 2019-10-23 does not have a unique SSH key for each instance of the product.
191 CVE-2019-19748 79 XSS 2019-12-12 2019-12-13
4.3
None Remote Medium Not required None Partial None
The Work Time Calendar app before 4.7.1 for Jira allows XSS.
192 CVE-2019-19747 521 2019-12-20 2020-01-03
7.5
None Remote Low Not required Partial Partial Partial
NeuVector 3.1 when configured to allow authentication via Active Directory, does not enforce non-empty passwords which allows an attacker with access to the Neuvector portal to authenticate as any valid LDAP user by providing a valid username and an empty password (provided that the active directory server has not been configured to reject empty passwords).
193 CVE-2019-19746 787 Overflow 2019-12-12 2020-08-24
4.3
None Remote Medium Not required None None Partial
make_arrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type.
194 CVE-2019-19745 434 File Inclusion 2019-12-17 2019-12-18
6.5
None Remote Low ??? Partial Partial Partial
Contao 4.0 through 4.8.5 allows PHP local file inclusion. A back end user with access to the form generator can upload arbitrary files and execute them on the server.
195 CVE-2019-19743 20 2019-12-16 2021-07-21
4.0
None Remote Low ??? None Partial None
On D-Link DIR-615 devices, a normal user is able to create a root(admin) user from the D-Link portal.
196 CVE-2019-19742 79 XSS 2019-12-18 2021-04-23
3.5
None Remote Medium ??? None Partial None
On D-Link DIR-615 devices, the User Account Configuration page is vulnerable to blind XSS via the name field.
197 CVE-2019-19740 89 Sql 2019-12-12 2020-01-21
7.5
None Remote Low Not required Partial Partial Partial
Octeth Oempro 4.7 and 4.8 allow SQL injection. The parameter CampaignID in Campaign.Get is vulnerable.
198 CVE-2019-19739 311 2019-12-30 2020-08-24
5.0
None Remote Low Not required Partial None None
MFScripts YetiShare 3.5.2 through 4.5.3 does not set the Secure flag on session cookies, allowing the cookie to be sent over cleartext channels.
199 CVE-2019-19738 79 Exec Code XSS 2019-12-30 2020-01-06
4.3
None Remote Medium Not required None Partial None
log_file_viewer.php in MFScripts YetiShare 3.5.2 through 4.5.3 does not sanitize or encode the output from the lFile parameter on the page, which would allow an attacker to input HTML or execute scripts on the site, aka XSS.
200 CVE-2019-19737 352 CSRF 2019-12-30 2020-01-07
6.8
None Remote Medium Not required Partial Partial Partial
MFScripts YetiShare 3.5.2 through 4.5.3 does not set the SameSite flag on session cookies, allowing the cookie to be sent in cross-site requests and potentially be used in cross-site request forgery attacks.
Total number of vulnerabilities : 1577   Page : 1 2 3 4 (This Page)5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.