CVE-2018-18515
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2018. Notes: none.
Source: CVE-2018-18515
[월:] 2020년 01월
CVE-2019-19332
CVE-2019-19332
An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel’s KVM hypervisor handled the ‘KVM_GET_EMULATED_CPUID’ ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A user or process able to access the ‘/dev/kvm’ device could use this flaw to crash the system, resulting in a denial of service.
Source: CVE-2019-19332
CVE-2014-3449
CVE-2014-3449
BSS Continuity CMS 4.2.22640.0 has an Authentication Bypass vulnerability
Source: CVE-2014-3449
CVE-2014-3448
CVE-2014-3448
BSS Continuity CMS 4.2.22640.0 has a Remote Code Execution vulnerability due to unauthenticated file upload
Source: CVE-2014-3448
CVE-2014-3753
CVE-2014-3753
AgileBits 1Password through 1.0.9.340 allows security feature bypass
Source: CVE-2014-3753
CVE-2014-3211
CVE-2014-3211
Publify before 8.0.1 is vulnerable to a Denial of Service attack
Source: CVE-2014-3211
CVE-2014-3447
CVE-2014-3447
BSS Continuity CMS 4.2.22640.0 has a Remote Denial Of Service vulnerability
Source: CVE-2014-3447
CVE-2020-5308
CVE-2020-5308
PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to XSS, as demonstrated by the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName parameter in add-product.php.
Source: CVE-2020-5308
CVE-2019-19494
CVE-2019-19494
Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim’s browser. Examples of affected products include Sagemcom F@st 3890 prior to 50.10.21_T4, Sagemcom F@st 3890 prior to 05.76.6.3f, Sagemcom F@st 3686 3.428.0, Sagemcom F@st 3686 4.83.0, NETGEAR CG3700EMR 2.01.05, NETGEAR CG3700EMR 2.01.03, NETGEAR C6250EMR 2.01.05, NETGEAR C6250EMR 2.01.03, Technicolor TC7230 STEB 01.25, COMPAL 7284E 5.510.5.11, and COMPAL 7486E 5.510.5.11.
Source: CVE-2019-19494
CVE-2014-2686
CVE-2014-2686
Ansible prior to 1.5.4 mishandles the evaluation of some strings.
Source: CVE-2014-2686