Export limit exceeded: 361847 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (989 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2019-9317 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libstagefright, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112052258 | ||||
| CVE-2019-9316 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libstagefright, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112052432 | ||||
| CVE-2019-9315 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112326216 | ||||
| CVE-2019-9314 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libavc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112329563 | ||||
| CVE-2019-9313 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libstagefright, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112005441 | ||||
| CVE-2019-9247 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In AAC Codec, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120426166 | ||||
| CVE-2019-7321 | 1 Artifex | 1 Mupdf | 2024-11-21 | N/A |
| Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code. | ||||
| CVE-2019-6976 | 1 Libvips | 1 Libvips | 2024-11-21 | N/A |
| libvips before 8.7.4 generates output images from uninitialized memory locations when processing corrupted input image data because iofuncs/memory.c does not zero out allocated memory. This can result in leaking raw process memory contents through the output image. | ||||
| CVE-2019-5818 | 5 Debian, Fedoraproject, Google and 2 more | 6 Debian Linux, Fedora, Chrome and 3 more | 2024-11-21 | 6.5 Medium |
| Uninitialized data in media in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted video file. | ||||
| CVE-2019-5067 | 1 Aspose | 1 Aspose.pdf For C\+\+ | 2024-11-21 | 9.8 Critical |
| An uninitialized memory access vulnerability exists in the way Aspose.PDF 19.2 for C++ handles invalid parent object pointers. A specially crafted PDF can cause a read and write from uninitialized memory, resulting in memory corruption and possibly arbitrary code execution. To trigger this vulnerability, a specifically crafted PDF document needs to be processed by the target application. | ||||
| CVE-2019-4297 | 1 Ibm | 1 Robotic Process Automation With Automation Anywhere | 2024-11-21 | 5.4 Medium |
| IBM Robotic Process Automation with Automation Anywhere 11 could allow a remote authenticated attacker to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability to make unauthorized queries or modify the LDAP content. IBM X-Force ID: 160761. | ||||
| CVE-2019-3804 | 3 Cockpit-project, Fedoraproject, Redhat | 4 Cockpit, Fedora, Enterprise Linux and 1 more | 2024-11-21 | 7.5 High |
| It was found that cockpit before version 184 used glib's base64 decode functionality incorrectly resulting in a denial of service attack. An unauthenticated attacker could send a specially crafted request with an invalid base64-encoded cookie which could cause the web service to crash. | ||||
| CVE-2019-2172 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libxaac there is a possible information disclosure due to uninitialized data. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-113035224 | ||||
| CVE-2019-2171 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libxaac there is a possible information disclosure due to uninitialized data. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-113035086 | ||||
| CVE-2019-2170 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libxaac there is a possible information disclosure due to uninitialized data. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-118615735 | ||||
| CVE-2019-2169 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libxaac there is a possible information disclosure due to uninitialized data. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-118492282 | ||||
| CVE-2019-2168 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libxaac there is a possible information disclosure due to uninitialized data. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-118492594 | ||||
| CVE-2019-2167 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libxaac there is a possible information disclosure due to uninitialized data. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-118615501 | ||||
| CVE-2019-2166 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libxaac there is a possible information disclosure due to uninitialized data. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117661478 | ||||
| CVE-2019-2140 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libxaac, there is a possible information disclosure due to uninitialized data. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112705708 | ||||