|
891
|
7.8
4.6
|
HIGH
Local
|
The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accepts an "emulatorbin" argument to specify the program providing emulation for a domain. Sinc…
|
CWE-22 CWE-862
Path Traversal Missing Authorization
|
CVE-2019-10167
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 13:18
2019-08-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
892
|
7.8
4.6
|
HIGH
Local
|
It was discovered that libvirtd, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, would permit readonly clients to use the virDomainManagedSaveDefineXML() API, which would permit them to modify m…
|
NVD-CWE-Other
|
CVE-2019-10166
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 13:18
2019-08-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
893
|
7.5
4.3
|
HIGH
Network
|
An issue was discovered in Poppler through 0.78.0. There is a divide-by-zero error in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc.
|
CWE-369
Divide By Zero
|
CVE-2019-14494
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 13:26
2019-08-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
894
|
8.1
5.8
|
HIGH
Network
|
It was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. An attacker could abuse this flaw to get confidential information by tricking the user into connecting t…
|
CWE-295
Improper Certificate Validation
|
CVE-2019-3890
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 13:42
2019-08-1
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
895
|
5.0
4.0
|
MEDIUM
Network
|
A flaw was discovered in fence-agents, prior to version 4.3.4, where using non-ASCII characters in a guest VM's comment or other fields would cause fence_rhevm to exit with an exception. In cluster e…
|
NVD-CWE-Other
|
CVE-2019-10153
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:18
2019-07-31
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
896
|
7.8
7.2
|
HIGH
Local
|
It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed wit…
|
CWE-22 CWE-862
Path Traversal Missing Authorization
|
CVE-2019-10161
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 13:18
2019-07-31
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
897
|
7.5
5.0
|
HIGH
Network
|
A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null po…
|
-
|
CVE-2018-16871
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 12:53
2019-07-31
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
898
|
4.9
4.0
|
MEDIUM
Network
|
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.16 and prior. Easily exploitable vulnerability allows high privileged …
|
NVD-CWE-noinfo
|
CVE-2019-2879
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:41
2019-07-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
899
|
6.5
6.8
|
MEDIUM
Network
|
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 8.0.16 and prior. Easily exploitable vulnerability allows low p…
|
NVD-CWE-noinfo
|
CVE-2019-2834
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:41
2019-07-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
900
|
4.9
6.8
|
MEDIUM
Network
|
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 8.0.16 and prior. Easily exploitable vulnerability allows high …
|
NVD-CWE-noinfo
|
CVE-2019-2830
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 13:41
2019-07-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|