Vulnerability Trends

CVE-2019-6342Drupal Core CVE-2019-6342 Access Bypass Vulnerability
CVE-2019-11581CVE-2019-11581
CVE-2019-1014An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation ...
CVE-2019-1040A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity...
CVE-2019-1620A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to u...
CVE-2019-1622A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to r...
CVE-2019-1619A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to b...
CVE-2019-1621A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to g...
CVE-2019-6471Important: bind security update
CVE-2019-1917A vulnerability in the REST API interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to bypass authentic...
CVE-2019-0708A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects ...
CVE-2019-13139Docker build code execution. The issue is a relative straight forward command injection, however, what possibly makes it a little more interesting is ...
CVE-2019-7839ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a command injection vulnerability. Successful exploita...
CVE-2018-2628Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are aff...
CVE-2019-1167A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement...
CVE-2019-13647Firefly III before 4.7.17.3 is vulnerable to stored XSS due to lack of filtration of user-supplied data in image file content. The JavaScript code is ...
CVE-2019-2856Oracle Fusion Middleware WebLogic Server Application Container - JavaEE unspecified
CVE-2019-1579Palo Alto Networks is aware of the reported remote code execution (RCE) vulnerability in its GlobalProtect portal and GlobalProtect Gateway interface ...
CVE-2019-13973LayerBB 1.1.3 allows admin/general.php arbitrary file upload because the custom_logo filename suffix is not restricted, and .php may be used.
CVE-2019-8286Information Disclosure in Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security versions up to 2019 could potentially disclose u...

Top Vendors

microsoft 6635
oracle 5889
ibm 4555
apple 4505
google 4300
cisco 4015
debian 3433
adobe 3171
redhat 2842
linux 2275