Max CVSS | 10.0 | Min CVSS | 5.8 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2019-13272 | 7.2 |
In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with
|
17-01-2023 - 21:25 | 17-07-2019 - 13:15 | |
CVE-2019-10192 | 6.5 |
A heap-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0.14 and 5.x before 5.0.4. By carefully corrupting a hyperloglog using the SETRANGE command, an attacker could trick Redis
|
28-10-2021 - 12:14 | 11-07-2019 - 19:15 | |
CVE-2019-10193 | 6.5 |
A stack-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0.14 and 5.x before 5.0.4. By corrupting a hyperloglog using the SETRANGE command, an attacker could cause Redis to perfo
|
28-10-2021 - 12:14 | 11-07-2019 - 19:15 | |
CVE-2019-13574 | 6.8 |
In lib/mini_magick/image.rb in MiniMagick before 4.9.4, a fetched remote image filename could cause remote command execution because Image.open input is directly passed to Kernel#open, which accepts a '|' character followed by a command.
|
24-08-2020 - 17:37 | 12-07-2019 - 03:15 | |
CVE-2019-13917 | 10.0 |
Exim 4.85 through 4.92 (fixed in 4.92.1) allows remote code execution as root in some unusual configurations that use the ${sort } expansion for items that can be controlled by an attacker (e.g., $local_part or $domain).
|
07-09-2019 - 02:15 | 25-07-2019 - 20:15 | |
CVE-2019-13638 | 9.3 |
GNU patch through 2.7.6 is vulnerable to OS shell command injection that can be exploited by opening a crafted patch file that contains an ed style diff payload with shell metacharacters. The ed editor does not need to be present on the vulnerable sy
|
16-08-2019 - 12:15 | 26-07-2019 - 13:15 | |
CVE-2019-13636 | 5.8 |
In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c.
|
24-07-2019 - 17:15 | 17-07-2019 - 21:15 | |
CVE-2019-12735 | 9.3 |
getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assert_fails or nvim_input in Neovim.
|
13-06-2019 - 21:29 | 05-06-2019 - 14:29 | |
CVE-2004-0097 | 10.0 |
Multiple vulnerabilities in PWLib before 1.6.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 |