Total
889 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2018-12175 | 1 Intel | 1 Distribution For Python | 2019-10-03 | N/A |
Default install directory permissions in Intel Distribution for Python (IDP) version 2018 may allow an unprivileged user to escalate privileges via local access. | ||||
CVE-2017-5684 | 1 Intel | 2 Stk2mv64cc, Stk2mv64cc Bios | 2019-10-03 | N/A |
The BIOS in Intel Compute Stick systems based on 6th Gen Intel Core processors prior to version CC047 may allow an attacker with physical access to the system to gain access to personal information. | ||||
CVE-2018-19592 | 1 Corsair | 19 Axi, Commander Mini, Commander Pro and 16 more | 2019-10-01 | 7.8 High |
The "CLink4Service" service is installed with Corsair Link 4.9.7.35 with insecure permissions by default. This allows unprivileged users to take control of the service and execute commands in the context of NT AUTHORITY\SYSTEM, leading to total system takeover, a similar issue to CVE-2018-12441. | ||||
CVE-2019-9679 | 1 Dahuasecurity | 18 Ipc-hdbw4x2x, Ipc-hdbw4x2x Firmware, Ipc-hdw1x2x and 15 more | 2019-09-19 | 8.8 High |
Some of Dahua's Debug functions do not have permission separation. Low-privileged users can use the Debug function after logging in. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4X2X,IPC-HDW5X2X,IPC-HFW5X2X for versions which Build time is before August 18,2019. | ||||
CVE-2019-16355 | 1 Beego | 1 Beego | 2019-09-17 | 5.5 Medium |
The File Session Manager in Beego 1.10.0 allows local users to read session files because of weak permissions for individual files. | ||||
CVE-2019-16106 | 1 Humanica | 1 Humatrix | 2019-09-11 | 7.5 High |
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to change the password of any user via the recruitment_online/personalData/act_acounttab.cfm txtNewUserName and hdNP fields. | ||||
CVE-2019-16183 | 1 Limesurvey | 1 Limesurvey | 2019-09-10 | 2.7 Low |
In Limesurvey before 3.17.14, admin users can run an integrity check without proper permissions. | ||||
CVE-2019-16185 | 1 Limesurvey | 1 Limesurvey | 2019-09-10 | 7.2 High |
In Limesurvey before 3.17.14, admin users can view, update, or delete reserved menu entries without proper permissions. | ||||
CVE-2019-16186 | 1 Limesurvey | 1 Limesurvey | 2019-09-10 | 7.2 High |
In Limesurvey before 3.17.14, admin users can access the plugin manager without proper permissions. |