News aggregator

CVE-2019-14923

National Vulnerability Database - Fri, 08/16/2019 - 09:15
EyesOfNetwork 5.1 allows Remote Command Execution via shell metacharacters in the module/tool_all/ host field.
Categories: Security News

CVE-2019-15091

National Vulnerability Database - Fri, 08/16/2019 - 09:15
filemgr.php in Artica Integria IMS 5.0.86 allows index.php?sec=wiki&sec2=operation/wiki/wiki&action=upload arbitrary file upload.
Categories: Security News

CVE-2019-15108

National Vulnerability Database - Fri, 08/16/2019 - 00:15
An issue was discovered in WSO2 API Manager 2.6.0 before WSO2-CARBON-PATCH-4.4.0-4457. There is XSS via a crafted filename to the file-upload feature of the event simulator component.
Categories: Security News

CVE-2018-20969

National Vulnerability Database - Fri, 08/16/2019 - 00:15
do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is specific to ed, and is unrelated to a shell metacharacter.
Categories: Security News

CVE-2016-10894

National Vulnerability Database - Thu, 08/15/2019 - 23:15
xtrlock through 2.10 does not block multitouch events. Consequently, an attacker at a locked screen can send input to (and thus control) various programs such as Chromium via events such as pan scrolling, "pinch and zoom" gestures, or even regular mouse clicks (by depressing the touchpad once and then clicking with a different finger).
Categories: Security News

CVE-2019-15104

National Vulnerability Database - Thu, 08/15/2019 - 23:15
An issue was discovered in Zoho ManageEngine OpManager through 12.4x. There is a SQL Injection vulnerability in jsp/NewThresholdConfiguration.jsp via the resourceid parameter. Therefore, a low-authority user can gain the authority of SYSTEM on the server. One can consequently upload a malicious file using the "Execute Program Action(s)" feature.
Categories: Security News

CVE-2019-15105

National Vulnerability Database - Thu, 08/15/2019 - 23:15
An issue was discovered in Zoho ManageEngine Application Manager through 14.2. There is a SQL Injection vulnerability in jsp/NewThresholdConfiguration.jsp via the resourceid parameter. Therefore, a low-authority user can gain the authority of SYSTEM on the server. One can consequently upload a malicious file using the "Execute Program Action(s)" feature.
Categories: Security News

CVE-2019-15106

National Vulnerability Database - Thu, 08/15/2019 - 23:15
An issue was discovered in Zoho ManageEngine OpManager through 12.4x. One can bypass the user password requirement and execute commands on the server. The "username+'@opm' string is used for the password. For example, if the username is admin, the password is admin@opm.
Categories: Security News

CVE-2019-15107

National Vulnerability Database - Thu, 08/15/2019 - 23:15
An issue was discovered in Webmin through 1.920. The parameter old in password_change.cgi contains a command injection vulnerability.
Categories: Security News

CVE-2019-15098

National Vulnerability Database - Thu, 08/15/2019 - 22:15
drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
Categories: Security News

CVE-2019-15099

National Vulnerability Database - Thu, 08/15/2019 - 22:15
drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
Categories: Security News

CVE-2019-15095

National Vulnerability Database - Thu, 08/15/2019 - 21:15
DWSurvey through 2019-07-22 has reflected XSS via the design/qu-multi-fillblank!answers.action surveyId parameter.
Categories: Security News

CVE-2019-15084

National Vulnerability Database - Thu, 08/15/2019 - 20:15
Realtek Waves MaxxAudio driver 1.6.2.0, as used on Dell laptops, installs with incorrect file permissions. As a result, a local attacker can escalate to SYSTEM.
Categories: Security News

CVE-2019-15090

National Vulnerability Database - Thu, 08/15/2019 - 20:15
An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12. In the qedi_dbg_* family of functions, there is an out-of-bounds read.
Categories: Security News

CVE-2019-9850

National Vulnerability Database - Thu, 08/15/2019 - 18:15
LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands contained with the document it is launched from. LibreOffice also has a feature where documents can specify that pre-installed scripts can be executed on various document script events such as mouse-over, etc. Protection was added, to address CVE-2019-9848, to block calling LibreLogo from script event handers. However an insufficient url validation vulnerability in LibreOffice allowed malicious to bypass that protection and again trigger calling LibreLogo from script event handlers. This issue affects: Document Foundation LibreOffice versions prior to 6.2.6.
Categories: Security News

CVE-2019-9851

National Vulnerability Database - Thu, 08/15/2019 - 18:15
LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands contained with the document it is launched from. Protection was added, to address CVE-2019-9848, to block calling LibreLogo from document event script handers, e.g. mouse over. However LibreOffice also has a separate feature where documents can specify that pre-installed scripts can be executed on various global script events such as document-open, etc. In the fixed versions, global script event handlers are validated equivalently to document script event handlers. This issue affects: Document Foundation LibreOffice versions prior to 6.2.6.
Categories: Security News

CVE-2019-9852

National Vulnerability Database - Thu, 08/15/2019 - 18:15
LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under the share/Scripts/python, user/Scripts/python sub-directories of the LibreOffice install. Protection was added, to address CVE-2018-16858, to avoid a directory traversal attack where scripts in arbitrary locations on the file system could be executed. However this new protection could be bypassed by a URL encoding attack. In the fixed versions, the parsed url describing the script location is correctly encoded before further processing. This issue affects: Document Foundation LibreOffice versions prior to 6.2.6.
Categories: Security News

CVE-2019-10081

National Vulnerability Database - Thu, 08/15/2019 - 18:15
HTTP/2 (2.4.20 through 2.4.39) very early pushes, for example configured with "H2PushResource", could lead to an overwrite of memory in the pushing request's pool, leading to crashes. The memory copied is that of the configured push link header values, not data supplied by the client.
Categories: Security News

CVE-2019-12791

National Vulnerability Database - Thu, 08/15/2019 - 17:15
A directory traversal vulnerability in the v-list-user script in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root via the password reset form.
Categories: Security News

CVE-2019-12792

National Vulnerability Database - Thu, 08/15/2019 - 17:15
A command injection vulnerability in UploadHandler.php in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root.
Categories: Security News

Pages