Export limit exceeded: 361559 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (361559 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2019-15950 | 1 Redmineup | 1 Crm | 2024-11-21 | 6.1 Medium |
| The CRM Plugin before 4.2.4 for Redmine allows XSS via crafted vCard data. | ||||
| CVE-2019-15948 | 1 Ti | 6 Cc256xb-bt-sp, Cc256xb-bt-sp Firmware, Cc256xc-bt-sp and 3 more | 2024-11-21 | 8.8 High |
| Texas Instruments CC256x and WL18xx dual-mode Bluetooth controller devices, when LE scan mode is used, allow remote attackers to trigger a buffer overflow via a malformed Bluetooth Low Energy advertising packet, to cause a denial of service or potentially execute arbitrary code. This affects CC256xC-BT-SP 1.2, CC256xB-BT-SP 1.8, and WL18xx-BT-SP 4.4. | ||||
| CVE-2019-15947 | 1 Bitcoin | 1 Bitcoin Core | 2024-11-21 | 7.5 High |
| In Bitcoin Core 0.18.0, bitcoin-qt stores wallet.dat data unencrypted in memory. Upon a crash, it may dump a core file. If a user were to mishandle a core file, an attacker can reconstruct the user's wallet.dat file, including their private keys, via a grep "6231 0500" command. | ||||
| CVE-2019-15946 | 4 Debian, Fedoraproject, Opensc Project and 1 more | 4 Debian Linux, Fedora, Opensc and 1 more | 2024-11-21 | 6.4 Medium |
| OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry in libopensc/asn1.c. | ||||
| CVE-2019-15945 | 4 Debian, Fedoraproject, Opensc Project and 1 more | 4 Debian Linux, Fedora, Opensc and 1 more | 2024-11-21 | 6.4 Medium |
| OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string in libopensc/asn1.c. | ||||
| CVE-2019-15944 | 1 Valvesoftware | 1 Counter-strike\ | 2024-11-21 | 5.3 Medium |
| In Counter-Strike: Global Offensive before 8/29/2019, community game servers can display unsafe HTML in a disconnection message. | ||||
| CVE-2019-15943 | 1 Valvesoftware | 1 Counter-strike\ | 2024-11-21 | 8.8 High |
| vphysics.dll in Counter-Strike: Global Offensive before 1.37.1.1 allows remote attackers to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a memset call. | ||||
| CVE-2019-15942 | 1 Ffmpeg | 1 Ffmpeg | 2024-11-21 | 8.8 High |
| FFmpeg through 4.2 has a "Conditional jump or move depends on uninitialised value" issue in h2645_parse because alloc_rbsp_buffer in libavcodec/h2645_parse.c mishandles rbsp_buffer. | ||||
| CVE-2019-15940 | 1 Govicture | 2 Pc530, Pc530 Firmware | 2024-11-21 | 9.8 Critical |
| Victure PC530 devices allow unauthenticated TELNET access as root. | ||||
| CVE-2019-15939 | 3 Debian, Opencv, Opensuse | 3 Debian Linux, Opencv, Leap | 2024-11-21 | 5.9 Medium |
| An issue was discovered in OpenCV 4.1.0. There is a divide-by-zero error in cv::HOGDescriptor::getDescriptorSize in modules/objdetect/src/hog.cpp. | ||||
| CVE-2019-15938 | 1 Pengutronix | 1 Barebox | 2024-11-21 | N/A |
| Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_req in fs/nfs.c because a length field is directly used for a memcpy. | ||||
| CVE-2019-15937 | 1 Pengutronix | 1 Barebox | 2024-11-21 | N/A |
| Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_reply in net/nfs.c because a length field is directly used for a memcpy. | ||||
| CVE-2019-15936 | 1 Intesync | 1 Solismed | 2024-11-21 | 9.8 Critical |
| Intesync Solismed 3.3sp allows Insecure File Upload. | ||||
| CVE-2019-15935 | 1 Intesync | 1 Solismed | 2024-11-21 | 6.1 Medium |
| Intesync Solismed 3.3sp has XSS. | ||||
| CVE-2019-15934 | 1 Intesync | 1 Solismed | 2024-11-21 | 8.8 High |
| Intesync Solismed 3.3sp has CSRF. | ||||
| CVE-2019-15933 | 1 Intesync | 1 Solismed | 2024-11-21 | 9.8 Critical |
| Intesync Solismed 3.3sp has SQL Injection. | ||||
| CVE-2019-15932 | 1 Intesync | 1 Solismed | 2024-11-21 | 9.8 Critical |
| Intesync Solismed 3.3sp has Incorrect Access Control. | ||||
| CVE-2019-15931 | 1 Intesync | 1 Solismed | 2024-11-21 | 9.8 Critical |
| Intesync Solismed 3.3sp allows Directory Traversal, a different vulnerability than CVE-2019-16246. | ||||
| CVE-2019-15930 | 1 Intesync | 1 Solismed | 2024-11-21 | 4.3 Medium |
| Intesync Solismed 3.3sp allows Clickjacking. | ||||
| CVE-2019-15929 | 1 Craftcms | 1 Craft Cms | 2024-11-21 | 9.8 Critical |
| In Craft CMS through 3.1.7, the elevated session password prompt was not being rate limited like normal login forms, leading to the possibility of a brute force attempt on them. | ||||