» 2020 » 1월

CVE-2019-14629

Posted on 2020년 1월 18일2020년 1월 18일 by admin

CVE-2019-14629

Improper permissions in Intel(R) DAAL before version 2020 Gold may allow an authenticated user to potentially enable information disclosure via local access.

Source: CVE-2019-14629

CVE-2019-17127

Posted on 2020년 1월 18일2020년 1월 18일 by admin

CVE-2019-17127

A Stored Client Side Template Injection (CSTI) with Angular was discovered in the SolarWinds Orion Platform 2019.2 HF1 in many application forms. An attacker can inject an Angular expression and escape the Angular sandbox to achieve stored XSS. This can lead to privilege escalation.

Source: CVE-2019-17127

CVE-2020-6862

Posted on 2020년 1월 18일2020년 1월 18일 by admin

CVE-2020-6862

V6.0.10P2T2 and V6.0.10P2T5 of F6x2W product are impacted by Information leak vulnerability. Unauthorized users could log in directly to obtain page information without entering a verification code.

Source: CVE-2020-6862

CVE-2019-14613

Posted on 2020년 1월 18일2020년 1월 18일 by admin

CVE-2019-14613

Improper access control in driver for Intel(R) VTune(TM) Amplifier for Windows* before update 8 may allow an authenticated user to potentially enable escalation of privilege via local access.

Source: CVE-2019-14613

CVE-2019-10956

Posted on 2020년 1월 18일2020년 1월 18일 by admin

CVE-2019-10956

Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated user, using a specially crafted URL command, to execute commands as root.

Source: CVE-2019-10956

CVE-2019-10957

Posted on 2020년 1월 18일2020년 1월 18일 by admin

CVE-2019-10957

Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to event configuration to store malicious code on the server, which could later be triggered by a legitimate user resulting in code execution within the user?s browser.

Source: CVE-2019-10957

CVE-2019-14615

Posted on 2020년 1월 18일2020년 1월 18일 by admin

CVE-2019-14615

Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.

Source: CVE-2019-14615

CVE-2019-10958

Posted on 2020년 1월 18일2020년 1월 18일 by admin

CVE-2019-10958

Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to network configuration to supply system commands to the server, leading to remote code execution as root.

Source: CVE-2019-10958

CVE-2019-14600

Posted on 2020년 1월 18일2020년 1월 18일 by admin

CVE-2019-14600

Uncontrolled search path element in the installer for Intel(R) SNMP Subagent Stand-Alone for Windows* may allow an authenticated user to potentially enable escalation of privilege via local access.

Source: CVE-2019-14600

CVE-2019-14596

Posted on 2020년 1월 18일2020년 1월 18일 by admin

CVE-2019-14596

Improper access control in the installer for Intel(R) Chipset Device Software INF Utility before version 10.1.18 may allow an authenticated user to potentially enable denial of service via local access.

Source: CVE-2019-14596