Export limit exceeded: 75921 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (75921 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2019-20813 | 1 Foxitsoftware | 1 Phantompdf | 2024-11-21 | 7.5 High |
| An issue was discovered in Foxit PhantomPDF before 8.3.12. It has a NULL pointer dereference. | ||||
| CVE-2019-20809 | 1 Compound | 1 Price Oracle | 2024-11-21 | 7.5 High |
| The price oracle in PriceOracle.sol in Compound Finance Compound Price Oracle 1.0 through 2.0 allows a price poster to set an invalid asset price via the setPrice function, and consequently violate the intended limits on price swings. | ||||
| CVE-2019-20804 | 1 Gilacms | 1 Gila Cms | 2024-11-21 | 8.8 High |
| Gila CMS before 1.11.6 allows CSRF with resultant XSS via the admin/themes URI, leading to compromise of the admin account. | ||||
| CVE-2019-20799 | 1 Cherokee-project | 1 Cherokee | 2024-11-21 | 7.5 High |
| In Cherokee through 1.2.104, multiple memory corruption errors may be used by a remote attacker to destabilize the work of a server. | ||||
| CVE-2019-20798 | 1 Cherokee-project | 1 Cherokee | 2024-11-21 | 8.4 High |
| An XSS issue was discovered in handler_server_info.c in Cherokee through 1.2.104. The requested URL is improperly displayed on the About page in the default configuration of the web server and its administrator panel. The XSS in the administrator panel can be used to reconfigure the server and execute arbitrary commands. | ||||
| CVE-2019-20797 | 1 Prboom-plus Project | 1 Prboom-plus | 2024-11-21 | 7.5 High |
| An issue was discovered in e6y prboom-plus 2.5.1.5. There is a buffer overflow in client and server code responsible for handling received UDP packets, as demonstrated by I_SendPacket or I_SendPacketTo in i_network.c. | ||||
| CVE-2019-20781 | 1 Lg | 1 Bridge | 2024-11-21 | 7.8 High |
| An issue was discovered in LG Bridge before April 2019 on Windows. DLL Hijacking can occur. | ||||
| CVE-2019-20773 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, 8.1, and 9.0 software. Unprivileged applications can execute shell commands via the connectivity service. The LG ID is LVE-SMP-190008 (August 2019). | ||||
| CVE-2019-20771 | 1 Google | 1 Android | 2024-11-21 | 7.5 High |
| An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, 8.1, and 9.0 software. WapService allows unconfirmed configuration changes via a modified OMACP message. The LG ID is LVE-SMP-190006 (August 2019). | ||||
| CVE-2019-20770 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| An issue was discovered on LG mobile devices with Android OS 9.0 software. The HAL service has a buffer overflow that leads to arbitrary code execution. The LG ID is LVE-SMP-190013 (September 2019). | ||||
| CVE-2019-20769 | 1 Lg | 2 G3, Pc Suite | 2024-11-21 | 7.8 High |
| An issue was discovered in LG PC Suite for LG G3 and earlier (aka LG PC Suite v5.3.27 and earlier). DLL Hijacking can occur via a Trojan horse DLL in the current working directory. The LG ID is LVE-MOT-190001 (November 2019). | ||||
| CVE-2019-20767 | 1 Netgear | 20 D3600, D3600 Firmware, D6000 and 17 more | 2024-11-21 | 7.2 High |
| Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.60, D3600 before 1.0.0.75, D6000 before 1.0.0.75, R9000 before 1.0.4.26, R8900 before 1.0.4.26, R7800 before 1.0.2.52, WNDR4500v3 before 1.0.0.58, WNDR4300v2 before 1.0.0.58, WNDR4300 before 1.0.2.104, WNDR3700v4 before 1.0.2.102, and WNR2000v5 before 1.0.0.66. | ||||
| CVE-2019-20761 | 1 Netgear | 2 R7800, R7800 Firmware | 2024-11-21 | 8.0 High |
| NETGEAR R7800 devices before 1.0.2.62 are affected by command injection by an authenticated user. | ||||
| CVE-2019-20760 | 1 Netgear | 2 R9000, R9000 Firmware | 2024-11-21 | 8.8 High |
| NETGEAR R9000 devices before 1.0.4.26 are affected by authentication bypass. | ||||
| CVE-2019-20758 | 1 Netgear | 2 R7000, R7000 Firmware | 2024-11-21 | 8.0 High |
| NETGEAR R7000 devices before 1.0.9.42 are affected by a buffer overflow by an authenticated user. | ||||
| CVE-2019-20753 | 1 Netgear | 46 D6220, D6220 Firmware, D6400 and 43 more | 2024-11-21 | 8.8 High |
| Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects DGN2200v1 before 1.0.0.58, D8500 before 1.0.3.42, D7000v2 before 1.0.0.51, D6400 before 1.0.0.78, D6220 before 1.0.0.44, JNDR3000 before 1.0.0.24, R8000 before 1.0.4.18, R8500 before 1.0.2.122, R8300 before 1.0.2.122, R7900 before 1.0.2.16, R7000P before 1.3.2.34, R7300DST before 1.0.0.68, R7100LG before 1.0.0.46, R6900P before 1.3.2.34, R7000 before 1.0.9.28, R6900 before 1.0.1.46, R6700 before 1.0.1.46, R6400v2 before 1.0.2.56, R6400 before 1.0.1.42, R6300v2 before 1.0.4.28, R6250 before 1.0.4.26, WNDR3400v3 before 1.0.1.22, WNDR4500v2 before 1.0.0.72, and WNR3500Lv2 before 1.2.0.50. | ||||
| CVE-2019-20739 | 1 Netgear | 2 R8500, R8500 Firmware | 2024-11-21 | 8.8 High |
| NETGEAR R8500 devices before v1.0.2.128 are affected by a buffer overflow by an unauthenticated attacker. | ||||
| CVE-2019-20734 | 1 Netgear | 50 D6220, D6220 Firmware, D8500 and 47 more | 2024-11-21 | 8.8 High |
| Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.40, D8500 before 1.0.3.39, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.22, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150v1 before 1.0.0.42, EX6200 before 1.0.3.88, EX7000 before 1.0.0.66, R6300v2 before 1.0.4.18, R6400 before 1.0.1.24, R6400v2 before 1.0.2.32, R6700 before 1.0.1.22, R6700v3 before 1.0.2.32, R6900 before 1.0.1.22, R7000 before 1.0.9.6, R6900P before 1.0.0.56, R7000P before 1.0.0.56, R7100LG before 1.0.0.42, R7300DST before 1.0.0.54, R7900 before 1.0.1.26, R8300 before 1.0.2.106, R8500 before 1.0.2.106, WN2500RPv2 before 1.0.1.54, and WNR3500Lv2 before 1.2.0.46. NOTE: this may be a result of an incomplete fix for CVE-2017-18864. | ||||
| CVE-2019-20711 | 1 Netgear | 6 D3600, D3600 Firmware, D6000 and 3 more | 2024-11-21 | 8.0 High |
| Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, and XR500 before 2.3.2.32. | ||||
| CVE-2019-20710 | 1 Netgear | 6 D3600, D3600 Firmware, D6000 and 3 more | 2024-11-21 | 8.0 High |
| Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, and XR500 before 2.3.2.32. | ||||