All CVEs — 2020 (Page 119/122)

Browse all CVEs by publication year. Use filters to refine.

CVSS ≥ 0.0

2020-01-10

Medium

CVE-2012-3821

A Security Bypass vulnerability exists in the activate.asp page in Arial Software Campaign Enterprise 11.0.551, which could let a remote malicious user modify the SerialNumber field.

CVSS: 4.3 CWE: CWE-863

Medium

CVE-2019-18588

Dell EMC Unisphere for PowerMax versions prior to 9.1.0.9, Dell EMC Unisphere for PowerMax versions prior to 9.0.2.16, and Dell EMC PowerMax OS 5978.221.221 and 5978.479.479 contain a Cross-Site Scri…

CVSS: 5.4 CWE: CWE-79

Critical

CVE-2011-5020

An SQL Injection vulnerability exists in the ID parameter in Online TV Database 2011.

CVSS: 9.8 CWE: CWE-89

Medium

CVE-2019-19819

The JBIG2Globals library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0x90ec NULL Pointer Dereference via crafted Unicode content.

CVSS: 5.5 CWE: CWE-476

Medium

CVE-2019-19817

The JBIG2Decode library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0x2e8a Out-of-Bounds Read via crafted Unicode content.

CVSS: 5.5 CWE: CWE-125

High

CVE-2019-14304

Ricoh SP C250DN 1.06 devices allow CSRF.

CVSS: 8.8 CWE: CWE-352

High

CVE-2019-14301

Ricoh SP C250DN 1.06 devices have Incorrect Access Control (issue 1 of 2).

CVSS: 7.5 CWE: CWE-200

Critical

CVE-2020-6162

An issue was discovered in Bftpd 5.3. Under certain circumstances, an out-of-bounds read is triggered due to an uninitialized value. The daemon crashes at startup in the hidegroups_init function in d…

CVSS: 9.1 CWE: CWE-125

High

CVE-2019-19820

An invalid pointer vulnerability in IOCTL Handling in the kyrld.sys driver in Kyrol Internet Security 9.0.6.9 allows an attacker to achieve privilege escalation, denial-of-service, and code execution…

CVSS: 7.8 CWE: CWE-763

High

CVE-2012-4030

Chamilo before 1.8.8.6 does not adequately handle user supplied input by the index.php script, which could allow remote attackers to delete arbitrary files.

CVSS: 7.5 CWE: CWE-20

High

CVE-2012-3824

In Arial Campaign Enterprise before 11.0.551, multiple pages are accessible without authentication or authorization.

CVSS: 7.5 CWE: CWE-287

High

CVE-2012-3823

Arial Campaign Enterprise before 11.0.551 stores passwords in clear text and these may be retrieved.

CVSS: 7.5 CWE: CWE-522

High

CVE-2012-3822

Arial Campaign Enterprise before 11.0.551 has unauthorized access to the User-Edit.asp page, which allows remote attackers to enumerate users' credentials.

CVSS: 7.5 CWE: CWE-863

Medium

CVE-2019-4559

IBM QRadar SIEM 7.3.0 through 7.3.3 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 166355.

CVSS: 5.3 CWE: CWE-200

High

CVE-2019-4508

IBM QRadar SIEM 7.3.0 through 7.3.3 uses weak credential storage in some instances which could be decrypted by a local attacker. IBM X-Force ID: 164429.

CVSS: 7.8 CWE: CWE-522

Low

CVE-2020-1766

Due to improper handling of uploaded images it is possible in very unlikely and rare conditions to force the agents browser to execute malicious javascript from a special crafted SVG file rendered as…

CVSS: 2.0 CWE: CWE-79

Low

CVE-2020-1765

An improper control of parameters allows the spoofing of the from fields of the following screens: AgentTicketCompose, AgentTicketForward, AgentTicketBounce and AgentTicketEmailOutbound. This issue a…

CVSS: 3.5 CWE: CWE-472

Critical

CVE-2014-5093

Status2k does not remove the install directory allowing credential reset.

CVSS: 9.8 CWE: CWE-522

High

CVE-2014-5092

Status2k allows Remote Command Execution in admin/options/editpl.php.

CVSS: 8.8 CWE: CWE-20

Medium

CVE-2014-4561

The ultimate-weather plugin 1.0 for WordPress has XSS

CVSS: 6.1 CWE: CWE-79

Critical

CVE-2013-7380

The Etherpad Lite ep_imageconvert Plugin has a Remote Command Injection Vulnerability

CVSS: 9.8 CWE: CWE-74

Medium

CVE-2013-6430

The JavaScriptUtils.javaScriptEscape method in web/util/JavaScriptUtils.java in Spring MVC in Spring Framework before 3.2.2 does not properly escape certain characters, which allows remote attackers…

CVSS: 5.4 CWE: CWE-79

High

CVE-2013-6231

SpagoBI before 4.1 has Privilege Escalation via an error in the AdapterHTTP script

CVSS: 8.8 CWE: CWE-269

Medium

CVE-2011-4595

Pretty-Link WordPress plugin 1.5.2 has XSS

CVSS: 6.1 CWE: CWE-79

Critical

CVE-2014-5081

sphider prior to 1.3.6, sphider-pro prior to 3.2, and sphider-plus prior to 3.2 allow authentication bypass

CVSS: 9.8 CWE: CWE-287

Critical

CVE-2014-4984

Déjà Vu Crescendo Sales CRM has remote SQL Injection

CVSS: 9.8 CWE: CWE-89

Critical

CVE-2014-4982

LPAR2RRD ≤ 4.53 and ≤ 3.5 has arbitrary command injection on the application server.

CVSS: 9.8 CWE: CWE-77

Medium

CVE-2014-4530

flog plugin 0.1 for WordPress has XSS

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2014-5011

DOMPDF before 0.6.2 allows Information Disclosure.

CVSS: 6.5 CWE: CWE-200

Medium

CVE-2019-20376

A cross-site scripting (XSS) vulnerability in Electronic Logbook (ELOG) 3.1.4 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG document to elogd.c.

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2019-20375

A cross-site scripting (XSS) vulnerability in Electronic Logbook (ELOG) 3.1.4 allows remote attackers to inject arbitrary web script or HTML via the value parameter in a localization (loc) command to…

CVSS: 6.1 CWE: CWE-79

2020-01-09

Medium

CVE-2020-6758

A cross-site scripting (XSS) vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows remote attackers to inject arbitrary web script or HTML via th…

CVSS: 6.1 CWE: CWE-79

High

CVE-2020-6757

contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows authenticated attackers to remotely execute code via the name parameter.

CVSS: 8.8 CWE: CWE-78

Critical

CVE-2020-6756

languageOptions.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows unauthenticated attackers to remotely execute code via the lang parameter.

CVSS: 9.8 CWE: CWE-78

Critical

CVE-2019-20374

A mutation cross-site scripting (XSS) issue in Typora through 0.9.9.31.2 on macOS and through 0.9.81 on Linux leads to Remote Code Execution through Mermaid code blocks. To exploit this vulnerability…

CVSS: 9.6 CWE: CWE-79

High

CVE-2020-5504

In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this…

CVSS: 8.8 CWE: CWE-89

High

CVE-2019-20184

KeePass 2.4.1 allows CSV injection in the title field of a CSV export.

CVSS: 7.8 CWE: CWE-1236

High

CVE-2019-20183

uploadimage.php in Employee Records System 1.0 allows upload and execution of arbitrary PHP code because file-extension validation is only on the client side. The attacker can modify global.js to all…

CVSS: 7.2 CWE: CWE-434

Medium

CVE-2019-20182

The FooGallery plugin 1.8.12 for WordPress allow XSS via the post_title parameter.

CVSS: 4.8 CWE: CWE-79

Medium

CVE-2019-20181

The awesome-support plugin 5.8.0 for WordPress allows XSS via the post_title parameter.

CVSS: 4.8 CWE: CWE-79

High

CVE-2019-20179

SOPlanning 1.45 has SQL injection via the user_list.php "by" parameter.

CVSS: 8.8 CWE: CWE-89

Medium

CVE-2019-20178

Advisto PEEL Shopping 9.2.1 has CSRF via administrer/utilisateurs.php to delete a user.

CVSS: 6.5 CWE: CWE-352

High

CVE-2012-3806

Samsung Kies before 2.5.0.12094_27_11 contains a NULL pointer dereference vulnerability which could allow remote attackers to perform a denial of service.

CVSS: 7.5 CWE: CWE-476

High

CVE-2012-2950

Gateway Geomatics MapServer for Windows before 3.0.6 contains a Local File Include Vulnerability which allows remote attackers to execute local PHP code and obtain sensitive information.

CVSS: 8.1 CWE: CWE-434

Medium

CVE-2019-20372

NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is…

CVSS: 5.3 CWE: CWE-444

Medium

CVE-2019-20180

The TablePress plugin 1.9.2 for WordPress allows tablepress[data] CSV injection by Editor users. Note: The vendor disputes this issue and argues that this responsibility lies with the application tha…

CVSS: 6.8 CWE: CWE-1236

Medium

CVE-2019-18859

Digi AnywhereUSB 14 allows XSS via a link for the Digi Page.

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2012-5558

Cross-site scripting (XSS) vulnerability in the Smiley module 6.x-1.x versions prior to 6.x-1.1 and Smileys module 6.x-1.x versions prior to 6.x-1.1 for Drupal allows remote authenticated users with…

CVSS: 4.8 CWE: CWE-79

High

CVE-2012-4434

fwknop before 2.0.3 allow remote authenticated users to cause a denial of service (server crash) or possibly execute arbitrary code.

CVSS: 8.8 CWE: CWE-276

High

CVE-2012-2931

PHP code injection in TinyWebGallery before 1.8.8 allows remote authenticated users with admin privileges to inject arbitrary code into the .htusers.php file.

CVSS: 7.2 CWE: CWE-74

Critical

CVE-2012-2226

Invision Power Board before 3.3.1 fails to sanitize user-supplied input which could allow remote attackers to obtain sensitive information or execute arbitrary code by uploading a malicious file.

CVSS: 9.8 CWE: CWE-434

Medium

CVE-2012-1915

EllisLab CodeIgniter 2.1.2 allows remote attackers to bypass the xss_clean() Filter and perform XSS attacks.

CVSS: 6.1 CWE: CWE-79

Low

CVE-2010-3282

389 Directory Server before 1.2.7.1 (aka Red Hat Directory Server 8.2) and HP-UX Directory Server before B.08.10.03, when audit logging is enabled, logs the Directory Manager password (nsslapd-rootpw…

CVSS: 3.3 CWE: CWE-312

High

CVE-2020-6168

A flaw in the WordPress plugin, Minimal Coming Soon & Maintenance Mode through 2.10, allows authenticated users with basic access to enable and disable maintenance-mode settings (impacting the availa…

CVSS: 7.6 CWE: CWE-862

Medium

CVE-2020-6166

A flaw in the WordPress plugin, Minimal Coming Soon & Maintenance Mode through 2.15, allows authenticated users with basic access to export settings and change maintenance-mode themes.

CVSS: 5.4 CWE: CWE-276

High

CVE-2019-6319

HP DeskJet 3630 All-in-One Printers models F5S43A - F5S57A, K4T93A - K4T99C, K4U00B - K4U03B, and V3F21A - V3F22A (firmware version SWP1FN1912BR or higher) have a Cross-Site Request Forgery (CSRF) vu…

CVSS: 8.1 CWE: CWE-352

High

CVE-2016-5311

A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Pr…

CVSS: 7.8 CWE: CWE-427

Medium

CVE-2012-2724

The Simplenews module 6.x-1.x before 6.x-1.4, 6.x-2.x before 6.x-2.0-alpha4, and 7.x-1.x before 7.x-1.0-rc1 for Drupal reveals the email addresses of new mailing list subscribers when confirmation is…

CVSS: 5.3 CWE: CWE-200

Critical

CVE-2012-2714

The BrowserID (Mozilla Persona) module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to hijack the authentication of arbitrary users via the audience identifier.

CVSS: 9.8 CWE: CWE-287

Medium

CVE-2012-1261

Cross-site scripting (XSS) vulnerability in cgi-bin/scrut_fa_exclusions.cgi in Plixer International Scrutinizer NetFlow and sFlow Analyzer 8.6.2.16204 and other versions before 9.0.1.19899 allows rem…

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2012-1260

Cross-site scripting (XSS) vulnerability in cgi-bin/userprefs.cgi in Plixer International Scrutinizer NetFlow & sFlow Analyzer 8.6.2.16204, and possibly other versions before 9.0.1.19899, allows remo…

CVSS: 6.1 CWE: CWE-79

Critical

CVE-2012-1259

Multiple SQL injection vulnerabilities in Plixer International Scrutinizer NetFlow & sFlow Analyzer 8.6.2.16204, and possibly other versions before 9.0.1.19899, allow remote attackers to execute arbi…

CVSS: 9.8 CWE: CWE-89

Medium

CVE-2012-1258

cgi-bin/userprefs.cgi in Plixer International Scrutinizer NetFlow & sFlow Analyzer before 9.0.1.19899 does not validate user permissions, which allow remote attackers to add user accounts with admini…

CVSS: 6.5 CWE: CWE-287

High

CVE-2020-6167

A flaw in the WordPress plugin, Minimal Coming Soon & Maintenance Mode through 2.10, allows a CSRF attack to enable maintenance mode, inject XSS, modify several important settings, or include remote…

CVSS: 8.8 CWE: CWE-352

High

CVE-2020-1925

Apache Olingo versions 4.0.0 to 4.7.0 provide the AsyncRequestWrapperImpl class which reads a URL from the Location header, and then sends a GET or DELETE request to this URL. It may allow to impleme…

CVSS: 7.5 CWE: CWE-918

Medium

CVE-2019-6332

A potential security vulnerability has been identified with certain HP InkJet printers. The vulnerability could be exploited to allow cross-site scripting (XSS). Affected products and versions includ…

CVSS: 4.8 CWE: CWE-79

Low

CVE-2019-6331

An issue was found in Samsung Mobile Print (Android) versions prior to 4.08.007. A potential security vulnerability caused by incomplete obfuscation of application configuration information.

CVSS: 3.3 CWE: CWE-200

High

CVE-2019-6320

Certain HP DeskJet 3630 All-in-One Printers models F5S43A - F5S57A, K4T93A - K4T99C, K4U00B - K4U03B, and V3F21A - V3F22A (firmware version SWP1FN1912BR or higher) have a Cross-Site Request Forgery (…

CVSS: 8.1 CWE: CWE-352

Medium

CVE-2020-1810

There is a weak algorithm vulnerability in some Huawei products. The affected products use the RSA algorithm in the SSL key exchange algorithm which have been considered as a weak algorithm. Attacker…

CVSS: 5.3 CWE: CWE-327

Medium

CVE-2020-1786

HUAWEI Mate 20 Pro smartphones versions earlier than 10.0.0.175(C00E69R3P8) have an improper authentication vulnerability. The software does not sufficiently validate the name of apk file in a specia…

CVSS: 4.6 CWE: CWE-287

Medium

CVE-2020-1826

Huawei Honor Magic2 mobile phones with versions earlier than 10.0.0.175(C00E59R2P11) have an information leak vulnerability. Due to a module using weak encryption tool, an attacker with the root perm…

CVSS: 4.4 CWE: CWE-327

Medium

CVE-2020-1787

HUAWEI Mate 20 smartphones versions earlier than 9.1.0.139(C00E133R3P1) have an improper authentication vulnerability. The system has a logic error under certain scenario, successful exploit could al…

CVSS: 6.6 CWE: CWE-287

Critical

CVE-2019-4651

IBM Jazz Reporting Service (JRS) 6.0.6.1 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete i…

CVSS: 9.8 CWE: CWE-89

High

CVE-2019-14919

An exposed Telnet Service on the Billion Smart Energy Router SG600R2 with firmware v3.02.rc6 allows a local network attacker to authenticate via hardcoded credentials into a shell, gaining root execu…

CVSS: 7.8 CWE: CWE-798

Medium

CVE-2019-14918

XSS in the DHCP lease-status table in Billion Smart Energy Router SG600R2 Firmware v3.02.rc6 allows an attacker to inject arbitrary HTML/JavaScript code to achieve client-side code execution via craf…

CVSS: 5.4 CWE: CWE-79

High

CVE-2019-20224

netflow_get_stats in functions_netflow.php in Pandora FMS 7.0NG allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the ip_src parameter in an index.php?ope…

CVSS: 8.8 CWE: CWE-78

Medium

CVE-2019-19332

An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to get…

CVSS: 6.1 CWE: CWE-787

Medium

CVE-2014-3753

AgileBits 1Password through 1.0.9.340 allows security feature bypass

CVSS: 5.5 CWE: CWE-200

Critical

CVE-2014-3449

BSS Continuity CMS 4.2.22640.0 has an Authentication Bypass vulnerability

CVSS: 9.8 CWE: CWE-306

Critical

CVE-2014-3448

BSS Continuity CMS 4.2.22640.0 has a Remote Code Execution vulnerability due to unauthenticated file upload

CVSS: 9.8 CWE: CWE-434

High

CVE-2014-3447

BSS Continuity CMS 4.2.22640.0 has a Remote Denial Of Service vulnerability

CVSS: 7.5 CWE: CWE-400

High

CVE-2014-3211

Publify before 8.0.1 is vulnerable to a Denial of Service attack

CVSS: 7.5 CWE: CWE-400

Medium

CVE-2020-5308

PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to XSS, as demonstrated by the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, a…

CVSS: 6.1 CWE: CWE-79

High

CVE-2019-19494

Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim's…

CVSS: 8.8 CWE: CWE-120

High

CVE-2014-2686

Ansible prior to 1.5.4 mishandles the evaluation of some strings.

CVSS: 7.5 CWE: CWE-670

Critical

CVE-2014-2651

Unify OpenStage/OpenScape Desk Phone IP SIP before V3 R3.11.0 has an authentication bypass in the default mode of the Workpoint Interface

CVSS: 9.8 CWE: CWE-287

Critical

CVE-2014-2650

Unify OpenStage / OpenScape Desk Phone IP before V3 R3.11.0 SIP has an OS command injection vulnerability in the web based management interface

CVSS: 9.8 CWE: CWE-78

Medium

CVE-2020-6632

In PrestaShop 1.7.6.2, XSS can occur during addition or removal of a QuickAccess link. This is related to AdminQuickAccessesController.php, themes/default/template/header.tpl, and themes/new-theme/js…

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2020-6631

An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_m2ts_stream_process_pmt() in media_tools/m2ts_mux.c.

CVSS: 5.5 CWE: CWE-476

Medium

CVE-2020-6630

An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_isom_get_media_data_size() in isomedia/isom_read.c.

CVSS: 5.5 CWE: CWE-476

Medium

CVE-2020-6629

Ming (aka libming) 0.4.8 has z NULL pointer dereference in the function decompileGETURL2() in decompile.c.

CVSS: 6.5 CWE: CWE-476

High

CVE-2020-6628

Ming (aka libming) 0.4.8 has a heap-based buffer over-read in the function decompile_SWITCH() in decompile.c.

CVSS: 8.8 CWE: CWE-125

Medium

CVE-2020-5205

In Pow (Hex package) before 1.0.16, the use of Plug.Session in Pow.Plug.Session is susceptible to session fixation attacks if a persistent session store is used for Plug.Session, such as Redis or a d…

CVSS: 6.5 CWE: CWE-384

High

CVE-2020-6625

jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c.

CVSS: 7.1 CWE: CWE-125

High

CVE-2020-6624

jhead through 3.04 has a heap-based buffer over-read in process_DQT in jpgqguess.c.

CVSS: 7.1 CWE: CWE-125

Medium

CVE-2019-11292

Pivotal Ops Manager, versions 2.4.x prior to 2.4.27, 2.5.x prior to 2.5.24, 2.6.x prior to 2.6.16, and 2.7.x prior to 2.7.5, logs all query parameters to tomcat’s access file. If the query parameters…

CVSS: 6.5 CWE: CWE-532

2020-01-08

High

CVE-2020-6623

stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_get_index.

CVSS: 8.8 CWE: CWE-617

High

CVE-2020-6622

stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_peek8.

CVSS: 8.8 CWE: CWE-125

High

CVE-2020-6621

stb stb_truetype.h through 1.22 has a heap-based buffer over-read in ttUSHORT.

CVSS: 8.8 CWE: CWE-125

High

CVE-2020-6620

stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_get8.

CVSS: 8.8 CWE: CWE-125

High

CVE-2020-6619

stb stb_truetype.h through 1.22 has an assertion failure in stbtt__buf_seek.

CVSS: 8.8 CWE: CWE-617

High

CVE-2020-6618

stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__find_table.

CVSS: 8.8 CWE: CWE-125

High

CVE-2020-6617

stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_int.

CVSS: 8.8 CWE: CWE-617

Critical

CVE-2011-5266

Imperva SecureSphere Web Application Firewall (WAF) before 12-august-2010 allows SQL injection filter bypass.

CVSS: 9.8 CWE: CWE-89

Medium

CVE-2011-5250

Snare for Linux before 1.7.0 has CSRF in the web interface.

CVSS: 6.5 CWE: CWE-352

High

CVE-2011-5247

Snare for Linux before 1.7.0 has password disclosure because the rendered page contains the field RemotePassword.

CVSS: 7.5 CWE: CWE-312

Medium

CVE-2011-5018

Koala Framework before 2011-11-21 has XSS via the request_uri parameter.

CVSS: 6.1 CWE: CWE-79

High

CVE-2019-17025

Mozilla developers reported memory safety bugs present in Firefox 71. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been expl…

CVSS: 8.8 CWE: CWE-787

High

CVE-2019-17024

Mozilla developers reported memory safety bugs present in Firefox 71 and Firefox ESR 68.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these…

CVSS: 8.8 CWE: CWE-787

Medium

CVE-2019-17023

After a HelloRetryRequest has been sent, the client may negotiate a lower protocol that TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state,…

CVSS: 6.5 CWE: CWE-287

Medium

CVE-2019-17022

When pasting a <style> tag from the clipboard into a rich text editor, the CSS sanitizer does not escape < and > characters. Because the resulting string is pasted directly into the text…

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2019-17021

During the initialization of a new content process, a race condition occurs that can allow a content process to disclose heap addresses from the parent process. *Note: this issue only occurs on Windo…

CVSS: 5.3 CWE: CWE-362

Medium

CVE-2019-17020

If an XML file is served with a Content Security Policy and the XML file includes an XSL stylesheet, the Content Security Policy will not be applied to the contents of the XSL stylesheet. If the XSL…

CVSS: 6.5 CWE: CWE-611

Medium

CVE-2019-17018

When in Private Browsing Mode on Windows 10, the Windows keyboard may retain word suggestions to improve the accuracy of the keyboard. This vulnerability affects Firefox < 72.

CVSS: 5.3 CWE: CWE-200

High

CVE-2019-17017

Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. Thi…

CVSS: 8.8 CWE: CWE-843

Medium

CVE-2019-17016

When pasting a <style> tag from the clipboard into a rich text editor, the CSS sanitizer incorrectly rewrites a @namespace rule. This could allow for injection into certain types of websites re…

CVSS: 6.1 CWE: CWE-79

High

CVE-2019-17015

During the initialization of a new content process, a pointer offset can be manipulated leading to memory corruption and a potentially exploitable crash in the parent process. *Note: this issue only…

CVSS: 8.8 CWE: CWE-787

High

CVE-2019-17014

If an image had not loaded correctly (such as when it is not actually an image), it could be dragged and dropped cross-domain, resulting in a cross-origin information leak. This vulnerability affects…

CVSS: 7.4 CWE: CWE-863

High

CVE-2019-17013

Mozilla developers reported memory safety bugs present in Firefox 70. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been expl…

CVSS: 8.8 CWE: CWE-416

High

CVE-2019-17012

Mozilla developers reported memory safety bugs present in Firefox 70 and Firefox ESR 68.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these…

CVSS: 8.8 CWE: CWE-787