# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
1051 |
CVE-2019-14533 |
416 |
|
|
2019-08-29 |
2019-09-06 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The Control function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 has a use-after-free. |
1052 |
CVE-2019-14530 |
22 |
|
Dir. Trav. |
2019-08-13 |
2019-08-19 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
An issue was discovered in custom/ajax_download.php in OpenEMR before 5.0.2 via the fileName parameter. An attacker can download any file (that is readable by the user www-data) from server storage. If the requested file is writable for the www-data user and the directory /var/www/openemr/sites/default/documents/cqm_qrda/ exists, it will be deleted from server. |
1053 |
CVE-2019-14528 |
119 |
|
Overflow |
2019-08-02 |
2019-08-13 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
GnuCOBOL 2.2 has a heap-based buffer overflow in read_literal in cobc/scanner.l via crafted COBOL source code. |
1054 |
CVE-2019-14526 |
352 |
|
Bypass CSRF |
2019-08-14 |
2019-08-27 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
An issue was discovered on NETGEAR Nighthawk M1 (MR1100) devices before 12.06.03. The web-interface Cross-Site Request Forgery token is stored in a dynamically generated JavaScript file, and therefore can be embedded in third party pages, and re-used against the Nighthawk web interface. This entirely bypasses the intended security benefits of the use of a CSRF-protection token. |
1055 |
CVE-2019-14525 |
200 |
|
+Info |
2019-08-05 |
2019-08-09 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
In Octopus Deploy 2019.4.0 through 2019.6.x before 2019.6.6, and 2019.7.x before 2019.7.6, an authenticated system administrator is able to view sensitive values by visiting a server configuration page or making an API call. |
1056 |
CVE-2019-14524 |
119 |
|
Overflow |
2019-08-02 |
2019-08-23 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
An issue was discovered in Schism Tracker through 20190722. There is a heap-based buffer overflow via a large number of song patterns in fmt_mtm_load_song in fmt/mtm.c, a different vulnerability than CVE-2019-14465. |
1057 |
CVE-2019-14523 |
191 |
|
|
2019-08-02 |
2019-08-23 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a large plen in fmt_okt_load_song in the Amiga Oktalyzer parser in fmt/okt.c. |
1058 |
CVE-2019-14521 |
22 |
|
Dir. Trav. |
2019-08-05 |
2019-08-13 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
The api/admin/logoupload Logo File upload feature in EMCA Energy Logserver 6.1.2 allows attackers to send any kind of file to any location on the server via path traversal in the filename parameter. |
1059 |
CVE-2019-14518 |
79 |
|
XSS |
2019-08-15 |
2019-08-21 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
** DISPUTED ** Evolution CMS 2.0.x allows XSS via a description and new category location in a template. NOTE: the vendor states that the behavior is consistent with the "access policy in the administration panel." |
1060 |
CVE-2019-14517 |
79 |
|
XSS |
2019-08-01 |
2019-08-05 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
pandao Editor.md 1.5.0 allows XSS via the Javascript: string. |
1061 |
CVE-2019-14516 |
295 |
|
|
2019-08-13 |
2019-08-19 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
The mAadhaar application 1.2.7 for Android lacks SSL Certificate Validation, leading to man-in-the-middle attacks against requests for FAQs or Help. |
1062 |
CVE-2019-14513 |
119 |
|
Overflow |
2019-08-01 |
2019-09-13 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
Improper bounds checking in Dnsmasq before 2.76 allows an attacker controlled DNS server to send large DNS packets that result in a read operation beyond the buffer allocated for the packet, a different vulnerability than CVE-2017-14491. |
1063 |
CVE-2019-14511 |
306 |
|
|
2019-08-22 |
2019-09-14 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
Sphinx Technologies Sphinx 3.1.1 by default has no authentication and listens on 0.0.0.0, making it exposed to the internet (unless filtered by a firewall or reconfigured to listen to 127.0.0.1 only). |
1064 |
CVE-2019-14498 |
369 |
|
|
2019-08-29 |
2019-09-06 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file. |
1065 |
CVE-2019-14497 |
119 |
|
Overflow |
2019-08-01 |
2019-08-08 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
ModuleEditor::convertInstrument in tracker/ModuleEditor.cpp in MilkyTracker 1.02.00 has a heap-based buffer overflow. |
1066 |
CVE-2019-14496 |
119 |
|
Overflow |
2019-08-01 |
2019-08-08 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
LoaderXM::load in LoaderXM.cpp in milkyplay in MilkyTracker 1.02.00 has a stack-based buffer overflow. |
1067 |
CVE-2019-14494 |
369 |
|
|
2019-08-01 |
2019-08-12 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
An issue was discovered in Poppler through 0.78.0. There is a divide-by-zero error in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc. |
1068 |
CVE-2019-14493 |
476 |
|
|
2019-08-01 |
2019-08-05 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
An issue was discovered in OpenCV before 4.1.1. There is a NULL pointer dereference in the function cv::XMLParser::parse at modules/core/src/persistence.cpp. |
1069 |
CVE-2019-14492 |
125 |
|
DoS |
2019-08-01 |
2019-08-09 |
6.4 |
None |
Remote |
Low |
Not required |
Partial |
None |
Partial |
An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read/write in the function HaarEvaluator::OptFeature::calc in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service. |
1070 |
CVE-2019-14491 |
125 |
|
DoS |
2019-08-01 |
2019-08-09 |
6.4 |
None |
Remote |
Low |
Not required |
Partial |
None |
Partial |
An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read in the function cv::predictOrdered<cv::HaarEvaluator> in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service. |
1071 |
CVE-2019-14486 |
119 |
|
Overflow |
2019-08-01 |
2019-08-13 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
GnuCOBOL 2.2 has a buffer overflow in cb_evaluate_expr in cobc/field.c via crafted COBOL source code. |
1072 |
CVE-2019-14475 |
285 |
|
|
2019-08-05 |
2019-08-13 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
eQ-3 Homematic CCU2 2.47.15 and prior and CCU3 3.47.15 and prior use session IDs for authentication but lack authorization checks. An attacker can obtain a session ID from CVE-2019-9583, resulting in the ability to read the service messages, clear the system protocol, create a new user in the system, or modify/delete internal programs. |
1073 |
CVE-2019-14474 |
20 |
|
DoS |
2019-08-07 |
2019-08-15 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
eQ-3 Homematic CCU3 3.47.15 and prior has Improper Input Validation in function 'Call()' of ReGa core logic process, resulting in the ability to start a Denial of Service. Due to Improper Authorization an attacker can obtain a session ID from CVE-2019-9583 or a valid guest/user/admin account can start this attack too. |
1074 |
CVE-2019-14473 |
285 |
|
|
2019-08-06 |
2019-08-14 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
eQ-3 Homematic CCU2 and CCU3 use session IDs for authentication but lack authorization checks. Consequently, a valid guest level or user level account can create a new admin level account, read the service messages, clear the system protocol or modify/delete internal programs, etc. pp. |
1075 |
CVE-2019-14472 |
79 |
|
XSS |
2019-08-01 |
2019-08-05 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Zurmo 3.2.7-2 has XSS via the app/index.php/zurmo/default PATH_INFO. |
1076 |
CVE-2019-14471 |
79 |
|
XSS |
2019-08-01 |
2019-08-02 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
TestLink 1.9.19 has XSS via the error.php message parameter. |
1077 |
CVE-2019-14470 |
79 |
|
XSS |
2019-09-04 |
2019-09-04 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
cosenary Instagram-PHP-API (aka Instagram PHP API V2), as used in the UserPro plugin through 4.9.32 for WordPress, has XSS via the example/success.php error_description parameter. |
1078 |
CVE-2019-14469 |
79 |
|
XSS |
2019-08-22 |
2019-08-26 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
In Nexus Repository Manager before 3.18.0, users with elevated privileges can create stored XSS. |
1079 |
CVE-2019-14468 |
119 |
|
Overflow |
2019-08-01 |
2019-08-07 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
GnuCOBOL 2.2 has a buffer overflow in cb_push_op in cobc/field.c via crafted COBOL source code. |
1080 |
CVE-2019-14465 |
119 |
|
Overflow |
2019-07-31 |
2019-08-07 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
fmt_mtm_load_song in fmt/mtm.c in Schism Tracker 20190722 has a heap-based buffer overflow. |
1081 |
CVE-2019-14464 |
119 |
|
Overflow |
2019-07-31 |
2019-08-05 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
XMFile::read in XMFile.cpp in milkyplay in MilkyTracker 1.02.00 has a heap-based buffer overflow. |
1082 |
CVE-2019-14459 |
190 |
|
DoS Overflow |
2019-07-31 |
2019-08-23 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
nfdump 1.6.17 and earlier is affected by an integer overflow in the function Process_ipfix_template_withdraw in ipfix.c that can be abused in order to crash the process remotely (denial of service). |
1083 |
CVE-2019-14456 |
79 |
|
XSS |
2019-07-31 |
2019-08-07 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
Opengear console server firmware releases prior to 4.5.0 have a stored XSS vulnerability related to serial port logging. If a malicious user of an external system (connected to a serial port on an Opengear console server) sends crafted text to a serial port (that has logging enabled), the text will be replayed when the logs are viewed. Exploiting this vulnerability requires access to the serial port and/or console server. |
1084 |
CVE-2019-14452 |
22 |
|
Dir. Trav. |
2019-07-30 |
2019-08-05 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction. |
1085 |
CVE-2019-14444 |
190 |
|
Overflow |
2019-07-30 |
2019-08-22 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
apply_relocations in readelf.c in GNU Binutils 2.32 contains an integer overflow that allows attackers to trigger a write access violation (in byte_put_little_endian function in elfcomm.c) via an ELF file, as demonstrated by readelf. |
1086 |
CVE-2019-14443 |
369 |
|
DoS |
2019-07-30 |
2019-07-31 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
An issue was discovered in Libav 12.3. Division by zero in range_decode_culshift in libavcodec/apedec.c allows remote attackers to cause a denial of service (application crash), as demonstrated by avconv. |
1087 |
CVE-2019-14441 |
119 |
|
DoS Overflow |
2019-07-30 |
2019-08-07 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
An issue was discovered in Libav 12.3. An access violation allows remote attackers to cause a denial of service (application crash), as demonstrated by avconv. This is related to ff_mpa_synth_filter_float in avcodec/mpegaudiodsp_template.c. |
1088 |
CVE-2019-14439 |
200 |
|
+Info |
2019-07-30 |
2019-09-05 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.x before 2.9.9.2. This occurs when Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint and the service has the logback jar in the classpath. |
1089 |
CVE-2019-14438 |
125 |
|
|
2019-08-29 |
2019-09-06 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg file. |
1090 |
CVE-2019-14437 |
416 |
|
|
2019-08-29 |
2019-09-06 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The xiph_SplitHeaders function in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 does not check array bounds properly. As a result, a heap-based buffer over-read can be triggered via a crafted .ogg file. |
1091 |
CVE-2019-14433 |
200 |
|
+Info |
2019-08-09 |
2019-08-19 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
An issue was discovered in OpenStack Nova before 17.0.12, 18.x before 18.2.2, and 19.x before 19.0.2. If an API request from an authenticated user ends in a fault condition due to an external exception, details of the underlying environment may be leaked in the response, and could include sensitive configuration or other data. |
1092 |
CVE-2019-14432 |
287 |
|
Exec Code |
2019-08-07 |
2019-08-19 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
Incorrect authentication of application WebSocket connections in Loom Desktop for Mac up to 0.16.0 allows remote code execution from either malicious JavaScript in a browser or hosts on the same network, during periods in which a user is recording a video with the application. The same attack vector can be used to crash the application at any time. |
1093 |
CVE-2019-14430 |
89 |
|
Sql |
2019-08-20 |
2019-08-26 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
plugin/Audit/Objects/AuditTable.php in YouPHPTube through 7.2 allows SQL Injection. |
1094 |
CVE-2019-14427 |
79 |
|
XSS |
2019-08-14 |
2019-08-26 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
XSS exists in WEB STUDIO Ultimate Loan Manager 2.0 by adding a branch under the Branches button that sets the notes parameter with crafted JavaScript code. |
1095 |
CVE-2019-14422 |
254 |
|
Exec Code |
2019-08-15 |
2019-08-28 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
An issue was discovered in in TortoiseSVN 1.12.1. The Tsvncmd: URI handler allows a customised diff operation on Excel workbooks, which could be used to open remote workbooks without protection from macro security settings to execute arbitrary code. A tsvncmd:command:diff?path:[file1]?path2:[file2] URI will execute a customised diff on [file1] and [file2] based on the file extension. For xls files, it will execute the script diff-xls.js using wscript, which will open the two files for analysis without any macro security warning. An attacker can exploit this by putting a macro virus in a network drive, and force the victim to open the workbooks and execute the macro inside. |
1096 |
CVE-2019-14418 |
22 |
|
Dir. Trav. |
2019-07-29 |
2019-10-09 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
An issue was discovered in Veritas Resiliency Platform (VRP) before 3.4 HF1. When uploading an application bundle, a directory traversal vulnerability allows a VRP user with sufficient privileges to overwrite any file in the VRP virtual machine. A malicious VRP user could use this to replace existing files to take control of the VRP virtual machine. |
1097 |
CVE-2019-14415 |
79 |
|
XSS |
2019-07-29 |
2019-10-09 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
An issue was discovered in Veritas Resiliency Platform (VRP) before 3.4 HF1. A persistent cross-site scripting (XSS) vulnerability allows a malicious VRP user to inject malicious script into another user's browser, related to resiliency plans functionality. A victim must open a resiliency plan that an attacker has access to. |
1098 |
CVE-2019-14414 |
20 |
|
|
2019-07-30 |
2019-07-30 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
In cPanel before 78.0.2, a Userdata cache temporary file can conflict with domains (SEC-478). |
1099 |
CVE-2019-14413 |
20 |
|
|
2019-07-30 |
2019-07-30 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
cPanel before 78.0.2 allows certain file-write operations as shared users during connection resets (SEC-476). |
1100 |
CVE-2019-14412 |
134 |
|
|
2019-07-30 |
2019-07-30 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
Maketext in cPanel before 78.0.2 allows format-string injection in the DCV check_domains_via_dns UAPI (SEC-474). |