Vulnerabilities (CVE)

CWE filter

CWE-399

Filter

3015 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-8259 1 Uvnc 1 Ultravnc 2019-10-09 5.0
UltraVNC revision 1198 contains multiple memory leaks (CWE-655) in VNC client code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack...
CVE-2019-3833 3 Openwsman Project, Fedoraproject, Opensuse 3 Openwsman, Fedora, Leap 2019-10-09 5.0
Openwsman, versions up to and including 2.6.9, are vulnerable to infinite loop in process_connection() when parsing specially crafted HTTP requests. A remote, unauthenticated attacker can exploit this vulnerability by sending malicious HTTP...
CVE-2019-3815 2 Redhat, Debian 7 Enterprise Linux Desktop, Enterprise Linux Server, Enterprise Linux Server Aus and 4 more 2019-10-09 2.1
A memory leak was discovered in the backport of fixes for CVE-2018-16864 in Red Hat Enterprise Linux. Function dispatch_message_real() in journald-server.c does not free the memory allocated by set_iovec_field_free() to store the `_CMDLINE=`...
CVE-2019-1967 1 Cisco 1 Nx-os 2019-10-09 7.8
A vulnerability in the Network Time Protocol (NTP) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to excessive use of...
CVE-2019-1957 2019-10-09 7.8
A vulnerability in the web interface of Cisco IoT Field Network Director could allow an unauthenticated, remote attacker to trigger high CPU usage, resulting in a denial of service (DoS) condition on an affected device. The vulnerability is due...
CVE-2019-1800 1 Cisco 1 Wireless Lan Controller 2019-10-09 6.1
A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability exist...
CVE-2019-1799 1 Cisco 1 Wireless Lan Controller 2019-10-09 6.1
A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability exist...
CVE-2019-1796 1 Cisco 1 Wireless Lan Controller 2019-10-09 6.1
A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability exist...
CVE-2019-1721 1 Cisco 1 Telepresence Video Communication Server 2019-10-09 6.8
A vulnerability in the phone book feature of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker to cause the CPU to increase to 100% utilization, causing a denial of...
CVE-2019-1718 1 Cisco 1 Identity Services Engine 2019-10-09 7.8
A vulnerability in the web interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to trigger high CPU usage, resulting in a denial of service (DoS) condition. The vulnerability is due to improper...
CVE-2019-1700 1 Cisco 1 Firepower 9000 Firmware 2019-10-09 5.7
A vulnerability in field-programmable gate array (FPGA) ingress buffer management for the Cisco Firepower 9000 Series with the Cisco Firepower 2-port 100G double-width network module (PID: FPR9K-DNM-2X100G) could allow an unauthenticated,...
CVE-2019-1694 1 Cisco 2 Adaptive Security Appliance Software, Firepower Threat Defense 2019-10-09 7.8
A vulnerability in the TCP processing engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in...
CVE-2019-1693 1 Cisco 2 Adaptive Security Appliance Software, Firepower Threat Defense 2019-10-09 6.8
A vulnerability in the WebVPN service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected...
CVE-2019-1684 2019-10-09 6.1
A vulnerability in the Cisco Discovery Protocol or Link Layer Discovery Protocol (LLDP) implementation for the Cisco IP Phone 7800 and 8800 Series could allow an unauthenticated, adjacent attacker to cause an affected phone to reload...
CVE-2019-1635 1 Cisco 16 Ip Conference Phone 7832 Firmware, Ip Conference Phone 8832 Firmware, Ip Phone 7811 Firmware and 13 more 2019-10-09 7.8
A vulnerability in the call-handling functionality of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to cause an affected phone to reload unexpectedly,...
CVE-2019-1599 1 Cisco 1 Nx-os 2019-10-09 7.8
A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. The vulnerability is due to an issue with allocating and freeing...
CVE-2019-1587 1 Cisco 1 Nx-os 2019-10-09 4.0
A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an authenticated, remote attacker to access sensitive information. The vulnerability occurs because the affected software does...
CVE-2019-0038 1 Juniper 1 Junos 2019-10-09 6.1
Crafted packets destined to the management interface (fxp0) of an SRX340 or SRX345 services gateway may create a denial of service (DoS) condition due to buffer space exhaustion. This issue only affects the SRX340 and SRX345 services gateways. No...
CVE-2019-0010 1 Juniper 1 Junos 2019-10-09 5.0
An SRX Series Service Gateway configured for Unified Threat Management (UTM) may experience a system crash with the error message "mbuf exceed" -- an indication of memory buffer exhaustion -- due to the receipt of crafted HTTP traffic. Each...
CVE-2016-9592 1 Redhat 1 Openshift 2019-10-09 4.0
openshift before versions 3.3.1.11, 3.2.1.23, 3.4 is vulnerable to a flaw when a volume fails to detach, which causes the delete operation to fail with 'VolumeInUse' error. Since the delete operation is retried every 30 seconds for each volume,...