|
791
|
5.9
7.1
|
MEDIUM
Network
|
A memory leak in the nfp_abm_u32_knode_replace() function in drivers/net/ethernet/netronome/nfp/abm/cls.c in the Linux kernel before 5.3.6 allows attackers to cause a denial of service (memory consum…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-19076
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:34
2019-11-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
792
|
4.4
4.9
|
MEDIUM
Local
|
A memory leak in the predicate_parse() function in kernel/trace/trace_events_filter.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-96…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-19072
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:34
2019-11-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
793
|
4.6
4.9
|
MEDIUM
Physics
|
A memory leak in the rtl8xxxu_submit_int_urb() function in drivers/net/wireless/realtek/rtl8xxxu/rtl8xxxu_core.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memo…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-19068
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 13:34
2019-11-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
794
|
4.7
4.7
|
MEDIUM
Local
|
A memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/bfad_attr.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering b…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-19066
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 13:34
2019-11-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
795
|
4.7
4.7
|
MEDIUM
Local
|
A memory leak in the crypto_report() function in crypto/crypto_user_base.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering crypto_r…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-19062
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 13:34
2019-11-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
796
|
9.8
7.5
|
CRITICAL
Network
|
An integer overflow in the search_in_range function in regexec.c in Oniguruma 6.x before 6.9.4_rc2 leads to an out-of-bounds read, in which the offset of this read is under the control of an attacker…
|
CWE-125 CWE-190
Out-of-bounds Read Integer Overflow or Wraparound
|
CVE-2019-19012
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:33
2019-11-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
797
|
7.5
5.0
|
HIGH
Network
|
An access bypass issue was found in Drupal 7.x before version 7.5. If a Drupal site has the ability to attach File upload fields to any entity type in the system or has the ability to point individua…
|
CWE-863
Incorrect Authorization
|
CVE-2011-2726
|
cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux:5.0:*
|
|
|
|
|
2024-11-21 10:28
2019-11-16
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
798
|
7.5
5.0
|
HIGH
Network
|
A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime, which could let a remote m…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-5285
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 11:53
2019-11-16
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
799
|
6.5
2.1
|
MEDIUM
Local
|
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.
|
NVD-CWE-noinfo
|
CVE-2019-11135
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:20
2019-11-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
800
|
8.2
6.4
|
HIGH
Network
|
Moodle before 2.2.2 has a password and web services issue where when the user profile is updated the user password is reset if not specified.
|
CWE-20
Improper Input Validation
|
CVE-2012-1168
|
cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 10:36
2019-11-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|