Last 20 Scored Vulnerability IDs & Summaries
CVSS Severity
-
CVE-2019-12660 —
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to write values to the underlying memory of an affected device. The vulnerability is due to improper input validation and authorization of specific comma... read CVE-2019-12660
Published: September 25, 2019; 05:15:11 PM -04:00
-
CVE-2019-12661 —
A vulnerability in a Virtualization Manager (VMAN) related CLI command of Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with a privilege level of root. The vu... read CVE-2019-12661
Published: September 25, 2019; 05:15:11 PM -04:00
-
CVE-2019-12662 —
A vulnerability in Cisco NX-OS Software and Cisco IOS XE Software could allow an authenticated, local attacker with valid administrator or privilege level 15 credentials to load a virtual service image and bypass signature verification on an affected... read CVE-2019-12662
Published: September 25, 2019; 05:15:11 PM -04:00
-
CVE-2019-12654 —
A vulnerability in the common Session Initiation Protocol (SIP) library of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The... read CVE-2019-12654
Published: September 25, 2019; 05:15:10 PM -04:00
-
CVE-2019-12655 —
A vulnerability in the FTP application layer gateway (ALG) functionality used by Network Address Translation (NAT), NAT IPv6 to IPv4 (NAT64), and the Zone-Based Policy Firewall (ZBFW) in Cisco IOS XE Software could allow an unauthenticated, remote at... read CVE-2019-12655
Published: September 25, 2019; 05:15:10 PM -04:00
-
CVE-2019-12656 —
A vulnerability in the IOx application environment of multiple Cisco platforms could allow an unauthenticated, remote attacker to cause the IOx web server to stop processing HTTPS requests, resulting in a denial of service (DoS) condition. The vulner... read CVE-2019-12656
Published: September 25, 2019; 05:15:10 PM -04:00
-
CVE-2019-12657 —
A vulnerability in Unified Threat Defense (UTD) in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper validation of IPv6 packets through the UTD feature. A... read CVE-2019-12657
Published: September 25, 2019; 05:15:10 PM -04:00
-
CVE-2019-12658 —
A vulnerability in the filesystem resource management code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to exhaust filesystem resources on an affected device and cause a denial of service (DoS) condition. The vulnerability... read CVE-2019-12658
Published: September 25, 2019; 05:15:10 PM -04:00
-
CVE-2019-12659 —
A vulnerability in the HTTP server code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the HTTP server to crash. The vulnerability is due to a logical error in the logging mechanism. An attacker could exploit this v... read CVE-2019-12659
Published: September 25, 2019; 05:15:11 PM -04:00
-
CVE-2018-14879 —
The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().
Published: October 03, 2019; 12:15:12 PM -04:00
-
CVE-2019-14959 —
JetBrains Toolbox before 1.15.5605 was resolving an internal URL via a cleartext http connection.
Published: October 02, 2019; 03:15:14 PM -04:00
-
CVE-2019-12646 —
A vulnerability in the Network Address Translation (NAT) Session Initiation Protocol (SIP) Application Layer Gateway (ALG) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerabili... read CVE-2019-12646
Published: September 25, 2019; 04:15:10 PM -04:00
-
CVE-2018-16228 —
The HNCP parser in tcpdump before 4.9.3 has a buffer over-read in print-hncp.c:print_prefix().
Published: October 03, 2019; 12:15:12 PM -04:00
-
CVE-2019-12649 —
A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an authenticated, local attacker to install and boot a malicious software image or execute unsigned binaries on an affected device. The vulnerability exists becaus... read CVE-2019-12649
Published: September 25, 2019; 04:15:10 PM -04:00
-
CVE-2019-6656 —
BIG-IP APM Edge Client before version 7.1.8 (7180.2019.508.705) logs the full apm session ID in the log files. Vulnerable versions of the client are bundled with BIG-IP APM versions 15.0.0-15.0.1, 14,1.0-14.1.0.6, 14.0.0-14.0.0.4, 13.0.0-13.1.1.5, 12... read CVE-2019-6656
Published: September 25, 2019; 04:15:11 PM -04:00
-
CVE-2018-14468 —
The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().
Published: October 03, 2019; 12:15:11 PM -04:00
-
CVE-2018-16452 —
The SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smb_fdata() via recursion.
Published: October 03, 2019; 12:15:12 PM -04:00
-
CVE-2019-15166 —
lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.
Published: October 03, 2019; 01:15:11 PM -04:00
-
CVE-2019-8290 —
Vulnerability in Online Store v1.0, The registration form requirements for the member email format can be bypassed by posting directly to sent_register.php allowing special characters to be included and an XSS payload to be injected.
Published: October 01, 2019; 04:15:11 PM -04:00
-
CVE-2019-13466 —
Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard before 2.5.1.0 have Incorrect Access Control. The ?generate reports? archive is protected with a hard-coded password. An application update that addresses the protection of archiv... read CVE-2019-13466
Published: September 30, 2019; 02:15:10 PM -04:00