Vulnerability Trends

CVE-2019-6342Drupal Core CVE-2019-6342 Access Bypass Vulnerability
CVE-2019-11581CVE-2019-11581
CVE-2019-1014An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation ...
CVE-2019-6471Important: bind security update
CVE-2019-13139Docker build code execution. The issue is a relative straight forward command injection, however, what possibly makes it a little more interesting is ...
CVE-2019-1917A vulnerability in the REST API interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to bypass authentic...
CVE-2019-7839ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a command injection vulnerability. Successful exploita...
CVE-2019-0708A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects ...
CVE-2019-13647Firefly III before 4.7.17.3 is vulnerable to stored XSS due to lack of filtration of user-supplied data in image file content. The JavaScript code is ...
CVE-2019-1167Microsoft Windows Defender Application Control CVE-2019-1167 Local Security Bypass Vulnerability
CVE-2019-13645Firefly III before 4.7.17.3 is vulnerable to stored XSS due to lack of filtration of user-supplied data in image file names. The JavaScript code is ex...
CVE-2019-13614CMD_SET_CONFIG_COUNTRY in the TP-Link Device Debug protocol in TP-Link Archer C1200 1.0.0 Build 20180502 rel.45702 and earlier is prone to a stack-bas...
CVE-2019-13644Firefly III before 4.7.17.1 is vulnerable to stored XSS due to lack of filtration of user-supplied data in a budget name. The JavaScript code is conta...
CVE-2019-1619A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to b...
CVE-2019-1622A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to r...
CVE-2019-0752A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engin...
CVE-2019-1620A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to u...
CVE-2019-1621A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to g...
CVE-2019-2107In ihevcd_parse_pps of ihevcd_parse_headers.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code e...
CVE-2019-1040A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity...

Top Vendors

microsoft 6625
oracle 5889
ibm 4555
apple 4505
google 4300
cisco 4015
debian 3433
adobe 3171
redhat 2842
linux 2275