|
751
|
7.1
3.6
|
HIGH
Local
|
An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_BLIT commands.
|
CWE-125
Out-of-bounds Read
|
CVE-2019-18390
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:33
2019-12-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
752
|
7.8
4.6
|
HIGH
Local
|
A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service, or QEMU guest-to-…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-18389
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:33
2019-12-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
753
|
8.2
6.4
|
HIGH
Network
|
A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.3, where enabling RabbitMQ manager by setting it with '-e rabbitmq_enable_manager=true' exposes the RabbitMQ manage…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2019-19340
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 13:34
2019-12-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
754
|
7.5
5.0
|
HIGH
Network
|
cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by a…
|
CWE-787 CWE-193
Out-of-bounds Write Off-by-one Error
|
CVE-2019-19906
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 13:35
2019-12-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
755
|
6.5
5.5
|
MEDIUM
Network
|
Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For e…
|
CWE-269
Improper Privilege Management
|
CVE-2019-16777
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:31
2019-12-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
756
|
8.1
5.5
|
HIGH
Network
|
Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It fails to prevent access to folders outside of the intended node_modules folder through the bin field. A properly …
|
CWE-22
Path Traversal
|
CVE-2019-16776
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:31
2019-12-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
757
|
6.5
4.0
|
MEDIUM
Network
|
Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It is possible for packages to create symlinks to files outside of thenode_modules folder through the bin field upon…
|
-
|
CVE-2019-16775
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:31
2019-12-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
758
|
8.8
6.8
|
HIGH
Network
|
Out of bounds write in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-13734
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:25
2019-12-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
759
|
9.8
7.5
|
CRITICAL
Network
|
In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way libyang parses YANG files with a leaf of type "identityref". An application that uses libyang to pars…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-19334
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:34
2019-12-7
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
760
|
9.8
7.5
|
CRITICAL
Network
|
In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way libyang parses YANG files with a leaf of type "bits". An application that uses libyang to parse untru…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-19333
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:34
2019-12-7
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|