National Vulnerability Database

Subscribe to National Vulnerability Database feed
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
Updated: 5 hours 28 min ago

CVE-2019-15224

Mon, 08/19/2019 - 19:15
The rest-client gem 1.6.13 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party.
Categories: Security News

CVE-2019-15225

Mon, 08/19/2019 - 19:15
In Envoy through 1.11.1, users may configure a route to match incoming path headers via the libstdc++ regular expression implementation. A remote attacker may send a request with a very long URI to result in a denial of service (memory consumption). This is a related issue to CVE-2019-14993.
Categories: Security News

CVE-2019-15223

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/driver.c driver.
Categories: Security News

CVE-2019-15211

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio-raremono.c does not properly allocate memory.
Categories: Security News

CVE-2019-15212

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver.
Categories: Security News

CVE-2019-15213

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver.
Categories: Security News

CVE-2019-15214

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.0.10. There is a use-after-free in the sound subsystem because card disconnection causes certain data structures to be deleted too early. This is related to sound/core/init.c and sound/core/info.c.
Categories: Security News

CVE-2019-15215

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver.
Categories: Security News

CVE-2019-15216

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver.
Categories: Security News

CVE-2019-15217

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver.
Categories: Security News

CVE-2019-15218

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver.
Categories: Security News

CVE-2019-15219

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver.
Categories: Security News

CVE-2019-15220

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.2.1. There is a use-after-free caused by a malicious USB device in the drivers/net/wireless/intersil/p54/p54usb.c driver.
Categories: Security News

CVE-2019-15221

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver.
Categories: Security News

CVE-2019-15222

Mon, 08/19/2019 - 18:15
An issue was discovered in the Linux kernel before 5.2.8. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/helper.c (motu_microbookii) driver.
Categories: Security News

CVE-2019-0173

Mon, 08/19/2019 - 13:15
Authentication bypass in the web console for Intel(R) Raid Web Console 2 all versions may allow an unauthenticated attacker to potentially enable disclosure of information via network access.
Categories: Security News

CVE-2019-11140

Mon, 08/19/2019 - 13:15
Insufficient session validation in system firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.
Categories: Security News

CVE-2019-11143

Mon, 08/19/2019 - 13:15
Improper permissions in the software installer for Intel(R) Authenticate before 3.8 may allow an authenticated user to potentially enable escalation of privilege via local access.
Categories: Security News

CVE-2019-11145

Mon, 08/19/2019 - 13:15
Improper file verification in Intel? Driver & Support Assistant before 19.7.30.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
Categories: Security News

CVE-2019-11146

Mon, 08/19/2019 - 13:15
Improper file verification in Intel? Driver & Support Assistant before 19.7.30.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
Categories: Security News

Pages