Lista CVE - 2019 / Giugno
Visualizzazione 501 - 600 di 1244 CVE per Giugno 2019 (Pagina 6 di 13)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2019-0959 | 2019-06-12 | Windows Common Log File System Driver Elevation of Privilege Vulnerability |
| CVE-2019-0960 | 2019-06-12 | Win32k Elevation of Privilege Vulnerability |
| CVE-2019-0968 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-0972 | 2019-06-12 | Local Security Authority Subsystem Service Denial of Service Vulnerability |
| CVE-2019-0973 | 2019-06-12 | Windows Installer Elevation of Privilege Vulnerability |
| CVE-2019-0974 | 2019-06-12 | Jet Database Engine Remote Code Execution Vulnerability |
| CVE-2019-0977 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-0983 | 2019-06-12 | Windows Storage Service Elevation of Privilege Vulnerability |
| CVE-2019-0984 | 2019-06-12 | Windows Common Log File System Driver Elevation of Privilege Vulnerability |
| CVE-2019-0985 | 2019-06-12 | Microsoft Speech API Remote Code Execution Vulnerability |
| CVE-2019-0986 | 2019-06-12 | Windows User Profile Service Elevation of Privilege Vulnerability |
| CVE-2019-0988 | 2019-06-12 | Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-0989 | 2019-06-12 | Chakra Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-0990 | 2019-06-12 | Chakra Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-0991 | 2019-06-12 | Chakra Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-0992 | 2019-06-12 | Chakra Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-0993 | 2019-06-12 | Chakra Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-0996 | 2019-06-12 | Azure DevOps Server Spoofing Vulnerability |
| CVE-2019-0998 | 2019-06-12 | Windows Storage Service Elevation of Privilege Vulnerability |
| CVE-2019-1002 | 2019-06-12 | Chakra Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-1003 | 2019-06-12 | Chakra Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-1005 | 2019-06-12 | Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-1007 | 2019-06-12 | Windows Audio Service Elevation of Privilege Vulnerability |
| CVE-2019-1009 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1010 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1011 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1012 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1013 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1014 | 2019-06-12 | Win32k Elevation of Privilege Vulnerability |
| CVE-2019-1015 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1016 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1017 | 2019-06-12 | Win32k Elevation of Privilege Vulnerability |
| CVE-2019-1018 | 2019-06-12 | DirectX Elevation of Privilege Vulnerability |
| CVE-2019-1019 | 2019-06-12 | Microsoft Windows Security Feature Bypass Vulnerability |
| CVE-2019-1021 | 2019-06-12 | Windows Audio Service Elevation of Privilege Vulnerability |
| CVE-2019-1022 | 2019-06-12 | Windows Audio Service Elevation of Privilege Vulnerability |
| CVE-2019-1023 | 2019-06-12 | Scripting Engine Information Disclosure Vulnerability |
| CVE-2019-1024 | 2019-06-12 | Chakra Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-1025 | 2019-06-12 | Windows Denial of Service Vulnerability |
| CVE-2019-1026 | 2019-06-12 | Windows Audio Service Elevation of Privilege Vulnerability |
| CVE-2019-1027 | 2019-06-12 | Windows Audio Service Elevation of Privilege Vulnerability |
| CVE-2019-1028 | 2019-06-12 | Windows Audio Service Elevation of Privilege Vulnerability |
| CVE-2019-1029 | 2019-06-12 | Skype for Business and Lync Server Denial of Service Vulnerability |
| CVE-2019-1031 | 2019-06-12 | Microsoft Office SharePoint XSS Vulnerability |
| CVE-2019-1032 | 2019-06-12 | Microsoft Office SharePoint XSS Vulnerability |
| CVE-2019-1033 | 2019-06-12 | Microsoft Office SharePoint XSS Vulnerability |
| CVE-2019-1034 | 2019-06-12 | Microsoft Word Remote Code Execution Vulnerability |
| CVE-2019-1035 | 2019-06-12 | Microsoft Word Remote Code Execution Vulnerability |
| CVE-2019-1036 | 2019-06-12 | Microsoft Office SharePoint XSS Vulnerability |
| CVE-2019-1038 | 2019-06-12 | Microsoft Browser Memory Corruption Vulnerability |
| CVE-2019-1039 | 2019-06-12 | Windows Kernel Information Disclosure Vulnerability |
| CVE-2019-1040 | 2019-06-12 | Windows NTLM Tampering Vulnerability |
| CVE-2019-1041 | 2019-06-12 | Windows Kernel Elevation of Privilege Vulnerability |
| CVE-2019-1043 | 2019-06-12 | Comctl32 Remote Code Execution Vulnerability |
| CVE-2019-1044 | 2019-06-12 | Windows Secure Kernel Mode Security Feature Bypass Vulnerability |
| CVE-2019-1045 | 2019-06-12 | Windows Network File System Elevation of Privilege Vulnerability |
| CVE-2019-1046 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1047 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1048 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1049 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1050 | 2019-06-12 | Windows GDI Information Disclosure Vulnerability |
| CVE-2019-1051 | 2019-06-12 | Chakra Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-1052 | 2019-06-12 | Chakra Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-1053 | 2019-06-12 | Windows Shell Elevation of Privilege Vulnerability |
| CVE-2019-1054 | 2019-06-12 | Microsoft Edge Security Feature Bypass Vulnerability |
| CVE-2019-1055 | 2019-06-12 | Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-1065 | 2019-06-12 | Windows Kernel Elevation of Privilege Vulnerability |
| CVE-2019-1080 | 2019-06-12 | Scripting Engine Memory Corruption Vulnerability |
| CVE-2019-1081 | 2019-06-12 | Microsoft Browser Information Disclosure Vulnerability |
| CVE-2019-1064 | 2019-06-12 | Windows Elevation of Privilege Vulnerability |
| CVE-2019-1069 | 2019-06-12 | Task Scheduler Elevation of Privilege Vulnerability |
| CVE-2019-10155 | 2019-06-12 | The Libreswan Project has found a vulnerability in the processing of IKEv1 informational exchange packets which are encrypted and integrity protected using the established IKE SA encryption and integrity keys,... |
| CVE-2019-3875 | 2019-06-12 | A vulnerability was found in keycloak before 6.0.2. The X.509 authenticator supports the verification of client certificates through the CRL, where the CRL list can be obtained from the URL... |
| CVE-2019-3946 | 2019-06-12 | Fuji Electric V-Server before 6.0.33.0 is vulnerable to denial of service via a crafted UDP message sent to port 8005. An unauthenticated, remote attacker can crash vserver.exe due to an... |
| CVE-2019-3947 | 2019-06-12 | Fuji Electric V-Server before 6.0.33.0 stores database credentials in project files as plaintext. An attacker that can gain access to the project file can recover the database credentials and gain... |
| CVE-2019-9676 | 2019-06-12 | Buffer overflow vulnerability found in some Dahua IP Camera devices IPC-HFW1XXX,IPC-HDW1XXX,IPC-HFW2XXX Build before 2018/11. The vulnerability exits in the function of redirection display for serial port printing information, which can... |
| CVE-2019-0304 | 2019-06-12 | FTP Function of SAP NetWeaver AS ABAP Platform, versions- KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT,... |
| CVE-2019-0305 | 2019-06-12 | Java Server Pages (JSPs) provided by the SAP NetWeaver Process Integration (SAP_XIESR and SAP_XITOOL: 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50) do not restrict or incorrectly restrict frame objects... |
| CVE-2019-0306 | 2019-06-12 | SAP HANA Extended Application Services (advanced model), version 1, allows authenticated low privileged XS Advanced Platform users such as SpaceAuditors to execute requests to obtain a complete list of SAP... |
| CVE-2019-0307 | 2019-06-12 | Diagnostics Agent in Solution Manager, version 7.2, stores several credentials such as SLD user connection as well as Solman user communication in the SAP Secure Storage file which is not... |
| CVE-2019-0308 | 2019-06-12 | An authenticated attacker in SAP E-Commerce (Business-to-Consumer application), versions 7.3, 7.31, 7.32, 7.33, 7.54, can change the price of the product to zero and also checkout, by injecting an HTML... |
| CVE-2019-11269 | 2019-06-12 | Open Redirector in spring-security-oauth2 |
| CVE-2019-10971 | 2019-06-12 | The application (Network Configurator for DeviceNet Safety 3.41 and prior) searches for resources by means of an untrusted search path that could execute a malicious .dll file not under the... |
| CVE-2019-5442 | 2019-06-12 | XML Entity Expansion (Billion Laughs Attack) on Pippo 1.12.0 results in Denial of Service.Entities are created recursively and large amounts of heap memory is taken. Eventually, the JVM process will... |
| CVE-2019-7838 | 2019-06-12 | ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a file extension blacklist bypass vulnerability. Successful exploitation could lead to arbitrary code execution. |
| CVE-2019-7839 | 2019-06-12 | ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution. |
| CVE-2019-7840 | 2019-06-12 | ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution. |
| CVE-2019-7845 | 2019-06-12 | Adobe Flash Player versions 32.0.0.192 and earlier, 32.0.0.192 and earlier, and 32.0.0.192 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution. |
| CVE-2019-0311 | 2019-06-12 | Automotive Dealer Portal in SAP R/3 Enterprise Application (versions: 600, 602, 603, 604, 605, 606, 616, 617) does not sufficiently encode user-controlled inputs, this makes it possible for an attacker... |
| CVE-2019-0312 | 2019-06-12 | Several web pages provided SAP NetWeaver Process Integration (versions: SAP_XIESR: 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50 and SAP_XITOOL: 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50) are not password... |
| CVE-2019-0314 | 2019-06-12 | SAP Work Manager, versions: 6.3, 6.4, 6.5 and SAP Inventory Manager, version 4.3, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the... |
| CVE-2019-0315 | 2019-06-12 | Under certain conditions the PI Integration Builder Web UI of SAP NetWeaver Process Integration (versions: SAP_XIESR: 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, SAP_XITOOL: 7.10 to 7.11, 7.30, 7.31,... |
| CVE-2018-12147 | 2019-06-13 | Insufficient input validation in HECI subsystem in Intel(R) CSME before version 11.21.55, Intel® Server Platform Services before version 4.0 and Intel® Trusted Execution Engine Firmware before version 3.1.55 may allow... |
| CVE-2018-3702 | 2019-06-13 | Improper permissions in the installer for the ITE Tech* Consumer Infrared Driver for Windows 10 versions before 5.4.3.0 may allow an authenticated user to potentially enable escalation of privilege via... |
| CVE-2019-0128 | 2019-06-13 | Improper permissions in the installer for Intel(R) Chipset Device Software (INF Update Utility) before version 10.1.1.45 may allow an authenticated user to escalate privilege via local access. |
| CVE-2019-0130 | 2019-06-13 | Reflected XSS in web interface for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0.2015 may allow an unauthenticated user to potentially enable denial of service via network access. |
| CVE-2019-0136 | 2019-06-13 | Insufficient access control in the Intel(R) PROSet/Wireless WiFi Software driver before version 21.10 may allow an unauthenticated user to potentially enable denial of service via adjacent access. |
| CVE-2019-0157 | 2019-06-13 | Insufficient input validation in the Intel(R) SGX driver for Linux may allow an authenticated user to potentially enable a denial of service via local access. |
| CVE-2019-0164 | 2019-06-13 | Improper permissions in the installer for Intel(R) Turbo Boost Max Technology 3.0 driver version 1.0.0.1035 and before may allow an authenticated user to potentially enable escalation of privilege via local... |
| CVE-2019-0174 | 2019-06-13 | Logic condition in specific microprocessors may allow an authenticated user to potentially enable partial physical address information disclosure via local access. |