CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In August 2019

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2019-15160 DoS 2019-08-19 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
The SweetXml (aka sweet_xml) package through 0.6.6 for Erlang and Elixir allows attackers to cause a denial of service (resource consumption) via an XML entity expansion attack with an inline DTD.
2 CVE-2019-15151 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
AdPlug 2.3.1 has a double free in the Cu6mPlayer class in u6m.h.
3 CVE-2019-15150 CSRF 2019-08-19 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function.
4 CVE-2019-15149 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
** DISPUTED ** core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with hypothetical other factors, i.e., an affected use case within a library caller, and a bug in the message receiver policy code that led to reliance on this extra protection mechanism.
5 CVE-2019-15148 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
GoPro GPMF-parser 1.2.2 has an out-of-bounds write in OpenMP4Source in demo/GPMF_mp4reader.c.
6 CVE-2019-15147 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
GoPro GPMF-parser 1.2.2 has an out-of-bounds read and SEGV in GPMF_Next in GPMF_parser.c.
7 CVE-2019-15146 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
GoPro GPMF-parser 1.2.2 has a heap-based buffer over-read (4 bytes) in GPMF_Next in GPMF_parser.c.
8 CVE-2019-15145 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack (application crash via an out-of-bounds read) by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::get_direct_context in libdjvu/JB2Image.h because of a missing zero-bytes check in libdjvu/GBitmap.h.
9 CVE-2019-15144 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
In DjVuLibre 3.5.27, the sorting functionality (aka GArrayTemplate<TYPE>::sort) allows attackers to cause a denial-of-service (application crash due to an Uncontrolled Recursion) by crafting a PBM image file that is mishandled in libdjvu/GContainer.h.
10 CVE-2019-15143 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
In DjVuLibre 3.5.27, the bitmap reader component allows attackers to cause a denial-of-service error (resource exhaustion caused by a GBitmap::read_rle_raw infinite loop) by crafting a corrupted image file, related to libdjvu/DjVmDir.cpp and libdjvu/GBitmap.cpp.
11 CVE-2019-15142 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service (application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read) by crafting a DJVU file.
12 CVE-2019-15141 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
WriteTIFFImage in coders/tiff.c in ImageMagick 7.0.8-43 Q16 allows attackers to cause a denial-of-service (application crash resulting from a heap-based buffer over-read) via a crafted TIFF image file, related to TIFFRewriteDirectory, TIFFWriteDirectory, TIFFWriteDirectorySec, and TIFFWriteDirectoryTagColormap in tif_dirwrite.c of LibTIFF. NOTE: this occurs because of an incomplete fix for CVE-2019-11597.
13 CVE-2019-15140 DoS 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by crafting a Matlab image file that is mishandled in ReadImage in MagickCore/constitute.c.
14 CVE-2019-15139 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a different vulnerability than CVE-2019-11472.
15 CVE-2019-15137 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
The Access Control plugin in eProsima Fast RTPS through 1.9.0 allows fnmatch pattern matches with topic name strings (instead of the permission expressions themselves), which can lead to unintended connections between participants in a Data Distribution Service (DDS) network.
16 CVE-2019-15136 Bypass 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
The Access Control plugin in eProsima Fast RTPS through 1.9.0 does not check partition permissions from remote participant connections, which can lead to policy bypass for a secure Data Distribution Service (DDS) partition.
17 CVE-2019-15135 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
The handshake protocol in Object Management Group (OMG) DDS Security 1.1 sends cleartext information about all of the capabilities of a participant (including capabilities inapplicable to the current session), which makes it easier for attackers to discover potentially sensitive reachability information on a Data Distribution Service (DDS) network.
18 CVE-2019-15134 2019-08-17 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
RIOT through 2019.07 contains a memory leak in the TCP implementation (gnrc_tcp), allowing an attacker to consume all memory available for network packets and thus effectively stopping all network threads from working. This is related to _receive in sys/net/gnrc/transport_layer/tcp/gnrc_tcp_eventloop.c upon receiving an ACK before a SYN.
19 CVE-2019-15133 2019-08-17 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero.
20 CVE-2019-15132 2019-08-17 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
Zabbix through 4.4.0alpha1 allows User Enumeration. With login requests, it is possible to enumerate application usernames based on the variability of server responses (e.g., the "Login name or password is incorrect" and "No permissions for system access" messages, or just blocking for a number of seconds). This affects both api_jsonrpc.php and index.php.
21 CVE-2019-15130 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to upload any file type to a candidate's profile picture folder via a crafted recruitment_online/personalData/act_personaltab.cfm multiple-part POST request with a predictable WRC01_USERID parameter. Moreover, the attacker can upload executable content (e.g., asp or aspx) for executing OS commands on the server.
22 CVE-2019-15129 2019-08-18 2019-08-19
0.0
None ??? ??? ??? ??? ??? ???
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to access all candidates' files in the photo folder on the website by specifying a "user id" parameter and file name, such as in a recruitment_online/upload/user/[user_id]/photo/[file_name] URI.
23 CVE-2019-15120 79 XSS 2019-08-16 2019-08-16
4.3
None Remote Medium Not required None Partial None
The Kunena extension before 5.1.14 for Joomla! allows XSS via BBCode.
24 CVE-2019-15119 2019-08-16 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
lib/install/install.go in cnlh nps through 0.23.2 uses 0777 permissions for /usr/local/bin/nps and/or /usr/bin/nps, leading to a file overwrite by a local user.
25 CVE-2019-15118 2019-08-16 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
check_input_term in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles recursion, leading to kernel stack exhaustion.
26 CVE-2019-15117 2019-08-16 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles a short descriptor, leading to out-of-bounds memory access.
27 CVE-2019-15116 XSS 2019-08-16 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address logging.
28 CVE-2019-15115 CSRF 2019-08-16 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
The peters-login-redirect plugin before 2.9.2 for WordPress has CSRF.
29 CVE-2019-15114 CSRF 2019-08-16 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
The formcraft-form-builder plugin before 1.2.2 for WordPress has CSRF.
30 CVE-2019-15113 CSRF 2019-08-16 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
The companion-sitemap-generator plugin before 3.7.0 for WordPress has CSRF.
31 CVE-2019-15108 XSS 2019-08-16 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in WSO2 API Manager 2.6.0 before WSO2-CARBON-PATCH-4.4.0-4457. There is XSS via a crafted filename to the file-upload feature of the event simulator component.
32 CVE-2019-15107 2019-08-15 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Webmin through 1.920. The parameter old in password_change.cgi contains a command injection vulnerability.
33 CVE-2019-15106 Exec Code Bypass 2019-08-15 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Zoho ManageEngine OpManager through 12.4x. One can bypass the user password requirement and execute commands on the server. The "username+'@opm' string is used for the password. For example, if the username is admin, the password is [email protected]
34 CVE-2019-15105 Sql 2019-08-15 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Zoho ManageEngine Application Manager through 14.2. There is a SQL Injection vulnerability in jsp/NewThresholdConfiguration.jsp via the resourceid parameter. Therefore, a low-authority user can gain the authority of SYSTEM on the server. One can consequently upload a malicious file using the "Execute Program Action(s)" feature.
35 CVE-2019-15104 Sql 2019-08-15 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Zoho ManageEngine OpManager through 12.4x. There is a SQL Injection vulnerability in jsp/NewThresholdConfiguration.jsp via the resourceid parameter. Therefore, a low-authority user can gain the authority of SYSTEM on the server. One can consequently upload a malicious file using the "Execute Program Action(s)" feature.
36 CVE-2019-15099 2019-08-15 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
37 CVE-2019-15098 2019-08-15 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
38 CVE-2019-15095 XSS 2019-08-15 2019-08-15
0.0
None ??? ??? ??? ??? ??? ???
DWSurvey through 2019-07-22 has reflected XSS via the design/qu-multi-fillblank!answers.action surveyId parameter.
39 CVE-2019-15091 2019-08-16 2019-08-16
0.0
None ??? ??? ??? ??? ??? ???
filemgr.php in Artica Integria IMS 5.0.86 allows index.php?sec=wiki&sec2=operation/wiki/wiki&action=upload arbitrary file upload.
40 CVE-2019-15090 2019-08-15 2019-08-15
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12. In the qedi_dbg_* family of functions, there is an out-of-bounds read.
41 CVE-2019-15084 2019-08-15 2019-08-15
0.0
None ??? ??? ??? ??? ??? ???
Realtek Waves MaxxAudio driver 1.6.2.0, as used on Dell laptops, installs with incorrect file permissions. As a result, a local attacker can escalate to SYSTEM.
42 CVE-2019-15081 XSS 2019-08-15 2019-08-15
0.0
None ??? ??? ??? ??? ??? ???
OpenCart 3.x, when the attacker has login access to the admin panel, allows stored XSS within the Source/HTML editing feature of the Categories, Product, and Information pages.
43 CVE-2019-15062 Bypass CSRF 2019-08-14 2019-08-15
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Dolibarr 11.0.0-alpha. A user can store an IFRAME element (containing a user/card.php CSRF request) in his Linked Files settings page. When visited by the admin, this could completely take over the admin account. (The protection mechanism for CSRF is to check the Referer header; however, because the attack is from one of the application's own settings pages, this mechanism is bypassed.)
44 CVE-2019-15058 DoS 2019-08-14 2019-08-15
0.0
None ??? ??? ??? ??? ??? ???
stb_image.h (aka the stb image loader) 2.23 has a heap-based buffer over-read in stbi__tga_load, leading to Information Disclosure or Denial of Service.
45 CVE-2019-15053 XSS Bypass 2019-08-14 2019-08-14
0.0
None ??? ??? ??? ??? ??? ???
The "HTML Include and replace macro" plugin before 1.5.0 for Confluence Server allows a bypass of the includeScripts=false XSS protection mechanism via vectors involving an IFRAME element.
46 CVE-2019-15052 2019-08-14 2019-08-14
0.0
None ??? ??? ??? ??? ??? ???
The HTTP client in the Build tool in Gradle before 5.6 sends authentication credentials originally destined for the configured host. If that host returns a 30x redirect, Gradle also sends those credentials to all subsequent hosts that the request redirects to. This is similar to CVE-2018-1000007.
47 CVE-2019-15050 125 2019-08-14 2019-08-19
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in the AP4_AvccAtom class at Core/Ap4AvccAtom.cpp.
48 CVE-2019-15049 125 2019-08-14 2019-08-16
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in the AP4_Dec3Atom class at Core/Ap4Dec3Atom.cpp.
49 CVE-2019-15048 119 Overflow 2019-08-14 2019-08-16
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer overflow in the AP4_RtpAtom class at Core/Ap4RtpAtom.cpp.
50 CVE-2019-15047 125 2019-08-14 2019-08-16
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in the function AP4_BitReader::SkipBits at Core/Ap4Utils.cpp.
Total number of vulnerabilities : 1101   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.