Vulnerabilities (CVE)

Filter

9679 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-7317 3 Libpng, Canonical, Debian 3 Libpng, Ubuntu Linux, Debian Linux 2019-05-25 2.6
png_image_free in png.c in libpng 1.6.36 has a use-after-free because png_image_free_function is called under png_safe_execute.
CVE-2017-11560 1 Zohocorp 1 Manageengine Opmanager 2019-05-24 3.5
An issue was discovered in ZOHO ManageEngine OpManager 12.2. By adding a Google Map to the application, an authenticated user can upload an HTML file. This HTML file is then rendered in various locations of the application. JavaScript inside the...
CVE-2019-2614 2 Oracle, Canonical 2 Mysql, Ubuntu Linux 2019-05-23 3.5
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Difficult to exploit vulnerability allows high...
CVE-2017-13668 1 Open-xchange 1 Open-xchange Appsuite 2019-05-23 3.5
OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS).
CVE-2017-17061 1 Open-xchange 1 Open-xchange Appsuite 2019-05-23 3.5
OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS).
CVE-2019-4039 1 Ibm 1 Websphere Mq 2019-05-23 2.1
IBM WebSphere MQ 8.0.0.0 through 8.0.0.9 and 9.0.0.0 through 9.1.1 could allow a local attacker to cause a denial of service within the error log reporting system. IBM X-Force ID: 156163.
CVE-2018-7822 1 Schneider-electric 2 Somachine Basic, Modicon M221 Firmware 2019-05-23 2.1
An Incorrect Default Permissions (CWE-276) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all versions prior to firmware V1.10.0.0) which could cause unauthorized access to SoMachine Basic resource files...
CVE-2019-5626 2019-05-23 2.1
The Android mobile application BlueCats Reveal before 3.0.19 stores the username and password in a clear text file. This file persists until the user logs out or the session times out from non-usage (30 days of no user activity). This can allow...
CVE-2003-0367 5 Turbolinux, Openpkg, Mandrakesoft and 2 more 9 Mandrake Multi Network Firewall, Turbolinux Advanced Server, Mandrake Linux Corporate Server and 6 more 2019-05-23 2.1
znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on temporary files.
CVE-2019-11191 1 Linux 1 Linux Kernel 2019-05-23 1.9
The Linux kernel through 5.0.7, when CONFIG_IA32_AOUT is enabled and ia32_aout is loaded, allows local users to bypass ASLR on setuid a.out programs (if any exist) because install_exec_creds() is called too late in load_aout_binary() in...
CVE-2019-2708 2019-05-22 2.1
Vulnerability in the Data Store component of Oracle Berkeley DB. Supported versions that are affected are Prior to 6.138, prior to 6.2.38 and prior to 18.1.32. Easily exploitable vulnerability allows low privileged attacker having Local Logon...
CVE-2017-3513 1 Oracle 1 Vm Virtualbox 2019-05-22 1.9
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Difficult to exploit vulnerability allows high privileged attacker...
CVE-2017-3575 1 Oracle 1 Vm Virtualbox 2019-05-22 3.6
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows high privileged attacker...
CVE-2019-6577 1 Siemens 4 Simatic Wincc Runtime, Simatic Hmi Mp Firmware, Simatic Hmi Op Firmware and 1 more 2019-05-22 3.5
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15.1 Update 1), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F,...
CVE-2017-3587 1 Oracle 1 Vm Virtualbox 2019-05-22 3.6
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Shared Folder). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows low privileged...
CVE-2017-3291 1 Oracle 1 Mysql 2019-05-22 3.5
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high...
CVE-2017-3312 2 Oracle, Debian 2 Mysql, Debian Linux 2019-05-22 3.5
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low...
CVE-2017-3313 2 Oracle, Debian 2 Mysql, Debian Linux 2019-05-22 1.5
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: MyISAM). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low...
CVE-2017-3317 2 Oracle, Debian 2 Mysql, Debian Linux 2019-05-22 1.5
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Logging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged...
CVE-2017-3318 2 Oracle, Debian 2 Mysql, Debian Linux 2019-05-22 1.0
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Error Handling). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows...