Sara Working VB
Released
Dec 23, 2019
Document ID
SB19-357
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. In some cases, the vulnerabilities in the bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.
Vulnerabilities are based on the Common Vulnerabilities and Exposures (CVE) vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:
- High: vulnerabilities with a CVSS base score of 7.0–10.0
- Medium: vulnerabilities with a CVSS base score of 4.0–6.9
- Low: vulnerabilities with a CVSS base score of 0.0–3.9
Entries may include additional information provided by organizations and efforts sponsored by CISA. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletin is compiled from external, open-source reports and is not a direct result of CISA analysis.
Vulnerability Severity:
Medium Vulnerabilities
| Primary Vendor -- Product | Description | Published | CVSS Score | Source & Patch Info |
|---|---|---|---|---|
| redhat -- cloudforms_management_engine | CFME: CSRF protection vulnerability via permissive check of the referrer header | 2019-12-13 | 6.8 | CVE-2014-0197 MISC MISC |
| lout -- lout | Lout 3.40 has a heap-based buffer overflow in the srcnext() function in z02.c. | 2019-12-20 | 6.8 | CVE-2019-19918 MISC |
| jenkins -- jenkins | A cross-site request forgery vulnerability in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers to connect to an attacker-specified web server. | 2019-12-17 | 6.8 | CVE-2019-16570 MLIST CONFIRM |
| jenkins -- jenkins | A cross-site request forgery vulnerability in Jenkins Alauda DevOps Pipeline Plugin 2.3.2 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. | 2019-12-17 | 6.8 | CVE-2019-16573 MLIST CONFIRM |
| jenkins -- jenkins | A cross-site request forgery vulnerability in Jenkins Alauda Kubernetes Suport Plugin 2.3.0 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing the Kubernetes service account token or credentials stored in Jenkins. | 2019-12-17 | 6.8 | CVE-2019-16575 MLIST CONFIRM |
| libsixel_project -- libsixel | stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main. | 2019-12-13 | 6.8 | CVE-2019-19777 MISC |
| libsixel_project -- libsixel | An issue was discovered in libsixel 1.8.2. There is a heap-based buffer over-read in the function load_sixel at loader.c. | 2019-12-13 | 6.8 | CVE-2019-19778 MISC |
| samurai -- samurai | samurai 0.7 has a heap-based buffer overflow in canonpath in util.c via a crafted build file. | 2019-12-13 | 6.8 | CVE-2019-19795 MISC |
| yabasic -- yabasic | Yabasic 2.86.2 has a heap-based buffer overflow in myformat in function.c via a crafted BASIC source file. | 2019-12-13 | 6.8 | CVE-2019-19796 MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8571 MISC MISC MISC MISC MISC MISC MISC |
| lout -- lout | Lout 3.40 has a buffer overflow in the StringQuotedWord() function in z39.c. | 2019-12-20 | 6.8 | CVE-2019-19917 MISC |
| huawei -- mate_20_pro_smartphones | Mate 20 Pro smartphones with versions earlier than 9.1.0.135(C00E133R3P1) have an improper authorization vulnerability. The software does not properly restrict certain operation of certain privilege, the attacker could trick the user into installing a malicious application before the user turns on student mode function. Successful exploit could allow the attacker to bypass the limit of student mode function. | 2019-12-13 | 6.8 | CVE-2019-5250 MISC |
| apple -- multiple_products | A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2. Clicking a malicious SMS link may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8553 MISC MISC MISC |
| apple -- multiple_products | A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8556 MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8558 MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8559 MISC MISC MISC MISC MISC MISC |
| apple -- macos_mojave | A logic issue was addressed with improved validation. This issue is fixed in macOS Mojave 10.14.4. A malicious application may be able to elevate privileges. | 2019-12-18 | 6.8 | CVE-2019-8561 MISC |
| apple -- multiple_products | A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows. A sandboxed process may be able to circumvent sandbox restrictions. | 2019-12-18 | 6.8 | CVE-2019-8562 MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8563 MISC MISC MISC MISC MISC MISC |
| jenkins -- jenkins | A cross-site request forgery vulnerability in Jenkins Team Concert Plugin 1.3.0 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. | 2019-12-17 | 6.8 | CVE-2019-16565 MLIST CONFIRM |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8673 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8677 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8584 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8586 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8594 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8595 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8596 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8601 MISC MISC MISC MISC MISC MISC MISC MISC |
| apple -- macos_mojave | A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Mojave 10.14.5. An application may be able to read restricted memory. | 2019-12-18 | 6.8 | CVE-2019-8603 MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8608 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8610 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8611 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | An input validation issue was addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. An application may be able to gain elevated privileges. | 2019-12-18 | 6.8 | CVE-2019-8577 MISC MISC MISC MISC MISC MISC MISC |
| apple -- ios | An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 12.3. A sandboxed process may be able to circumvent sandbox restrictions. | 2019-12-18 | 6.8 | CVE-2019-8617 MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8622 MISC MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8623 MISC MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8628 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8644 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. Parsing a maliciously crafted office document may lead to an unexpected application termination or arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8657 MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8666 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. Processing a maliciously crafted movie file may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8585 MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8671 MISC MISC MISC MISC MISC MISC MISC |
| petwant_and_petalk -- pf-103_and_ai | The udpServerSys service in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to initiate firmware upgrades and alter device settings. | 2019-12-13 | 5 | CVE-2019-16731 MISC |
| micro_focus -- arcsight_logger | Cross-Site Request Forgery vulnerability in all Micro Focus ArcSight Logger affecting all product versions below version 7.0. The vulnerability could be exploited to perform CSRF attack. | 2019-12-17 | 6.8 | CVE-2019-11657 MISC |
| apple -- watchos | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8765 MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8679 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8680 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8681 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8683 MISC MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8686 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8687 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8735 MISC MISC MISC |
| apple -- watchos | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8743 MISC |
| apple -- multiple_products | An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A local user may be able to cause unexpected system termination or read kernel memory. | 2019-12-18 | 6.6 | CVE-2019-8576 MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8678 MISC MISC MISC MISC MISC MISC MISC |
| apple -- watchos_and_icloud_for_windows | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1, iCloud for Windows 11.0. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8766 MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8811 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, iTunes for Windows 12.10.2. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8812 MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8819 MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8820 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8821 MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8822 MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8823 MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.1 and iPadOS 13.1, tvOS 13, Safari 13.0.1, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8763 MISC MISC MISC |
| sap -- treasury_and_risk_management | Transaction Management in SAP Treasury and Risk Management (corrected in S4CORE versions 1.01, 1.02, 1.03, 1.04 and EA-FINSERV versions 6.0, 6.03, 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. | 2019-12-17 | 6.5 | CVE-2019-0383 MISC CONFIRM |
| npm -- cli | Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It fails to prevent access to folders outside of the intended node_modules folder through the bin field. A properly constructed entry in the package.json bin field would allow a package publisher to modify and/or gain access to arbitrary files on a user?s system when the package is installed. This behavior is still possible through install scripts. This vulnerability bypasses a user using the --ignore-scripts install option. | 2019-12-13 | 5.5 | CVE-2019-16776 MISC CONFIRM |
| npm -- cli | Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package was installed globally and created a serve binary, any subsequent installs of packages that also create a serve binary would overwrite the previous serve binary. This behavior is still allowed in local installations and also through install scripts. This vulnerability bypasses a user using the --ignore-scripts install option. | 2019-12-13 | 5.5 | CVE-2019-16777 MISC CONFIRM |
| typo3 -- typo3 | An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. Because escaping of user-submitted content is mishandled, the class QueryGenerator is vulnerable to SQL injection. Exploitation requires having the system extension ext:lowlevel installed, and a valid backend user who has administrator privileges. | 2019-12-17 | 6.5 | CVE-2019-19850 MISC MISC |
| apple -- macos_mojave | An authentication issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.5. A user may be unexpectedly logged in to another user?s account. | 2019-12-18 | 6.5 | CVE-2019-8634 MISC |
| huawei -- cloudengine | CloudEngine 12800 has a DoS vulnerability. An attacker of a neighboring device sends a large number of specific packets. As a result, a memory leak occurs after the device uses the specific packet. As a result, the attacker can exploit this vulnerability to cause DoS attacks on the target device. | 2019-12-13 | 6.1 | CVE-2019-5248 MISC |
| huawei -- smartphones | Huawei smartphones HUAWEI Y9 2019 and Honor View 20 have a denial of service vulnerability. Due to insufficient input validation of specific value when parsing the messages, an attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices to exploit this vulnerability. Successful exploit may cause an infinite loop and the device to reboot. | 2019-12-13 | 6.1 | CVE-2019-5260 MISC |
| atlassian -- multiple_products | An issue was discovered in the SAML Single Sign On (SSO) plugin for several Atlassian products affecting versions 3.1.0 through 3.2.2 for Jira and Confluence, versions 2.4.0 through 3.0.3 for Bitbucket, and versions 2.4.0 through 2.5.2 for Bamboo. It allows locally disabled users to reactivate their accounts just by browsing the affected Jira/Confluence/Bitbucket/Bamboo instance, even when the applicable configuration option of the plugin has been disabled ("Reactivate inactive users"). Exploiting this vulnerability requires an attacker to be authorized by the identity provider and requires that the plugin's configuration option "User Update Method" have the "Update from SAML Attributes" value. | 2019-12-13 | 6 | CVE-2019-13347 MISC MISC |
| jboss -- keycloak | JBoss KeyCloak: Open redirect vulnerability via failure to validate the redirect URL. | 2019-12-15 | 5.8 | CVE-2014-3652 MISC MISC |
| zulip -- zulip_server | The image thumbnailing handler in Zulip Server versions 1.9.0 to before 2.0.8 allowed an open redirect that was visible to logged-in users. | 2019-12-18 | 5.8 | CVE-2019-19775 CONFIRM CONFIRM |
| jenkins -- jenkins | Jenkins WebSphere Deployer Plugin 1.6.1 and earlier allows users with Overall/Read access to disable SSL/TLS certificate and hostname validation for the entire Jenkins master JVM. | 2019-12-17 | 5.5 | CVE-2019-16561 MLIST CONFIRM |
| sap -- treasury_and_risk_management | Transaction Management in SAP Treasury and Risk Management (corrected in S4CORE versions 1.01, 1.02, 1.03, 1.04 and EA-FINSERV versions 6.0, 6.03, 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0) does not perform necessary authorization checks for functionalities that require user identity. | 2019-12-17 | 6.5 | CVE-2019-0384 MISC CONFIRM |
| contao -- contao | Contao 4.0 through 4.8.5 allows PHP local file inclusion. A back end user with access to the form generator can upload arbitrary files and execute them on the server. | 2019-12-17 | 6.5 | CVE-2019-19745 MISC CONFIRM |
| qpid-cpp -- qpid-cpp | qpid-cpp: ACL policies only loaded if the acl-file option specified enabling DoS by consuming all available file descriptors | 2019-12-13 | 5 | CVE-2014-0212 MISC MISC MISC |
| duplicity -- duplicity | duplicity 0.6.24 has improper verification of SSL certificates | 2019-12-13 | 5 | CVE-2014-3495 MISC MISC MISC MISC |
| jersey -- jersey | jersey: XXE via parameter entities not disabled by the jersey SAX parser | 2019-12-15 | 5 | CVE-2014-3643 REDHAT MISC |
| docker -- docker_engine_and_cs_docker_engine | Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation. | 2019-12-17 | 5 | CVE-2014-8179 MISC MISC MISC MISC MISC CONFIRM |
| puppet -- puppet_agent | Previous versions of Puppet Agent didn't verify the peer in the SSL connection prior to downloading the CRL. This issue is resolved in Puppet Agent 6.4.0. | 2019-12-16 | 5 | CVE-2018-11751 MISC |
| apache -- incubator_superset | In Apache Incubator Superset before 0.31 user could query database metadata information from a database he has no access to, by using a specially crafted complex query. | 2019-12-16 | 5 | CVE-2019-12413 MISC |
| apache -- incubator_superset | In Apache Incubator Superset before 0.32, a user can view database names that he has no access to on a dropdown list in SQLLab | 2019-12-16 | 5 | CVE-2019-12414 MISC |
| jenkins -- jenkins | Jenkins SCTMExecutor Plugin 2.2 and earlier transmits previously configured service credentials in plain text as part of the global configuration, as well as individual jobs' configurations. | 2019-12-17 | 5 | CVE-2019-16568 MLIST CONFIRM |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 6.8 | CVE-2019-8609 MISC MISC MISC MISC MISC MISC MISC |
| envoy -- envoy | An issue was discovered in Envoy 1.12.0. Upon receipt of a malformed HTTP request without a Host header, it sends an internally generated "Invalid request" response. This internally generated response is dispatched through the configured encoder filter chain before being sent to the client. An encoder filter that invokes route manager APIs that access a request's Host header causes a NULL pointer dereference, resulting in abnormal termination of the Envoy process. | 2019-12-13 | 5 | CVE-2019-18838 MISC MISC CONFIRM MISC |
| linux -- linux_kernel | In the Linux kernel before 5.4.2, the io_uring feature leads to requests that inadvertently have UID 0 and full capabilities, aka CID-181e448d8709. This is related to fs/io-wq.c, fs/io_uring.c, and net/socket.c. For example, an attacker can bypass intended restrictions on adding an IPv4 address to the loopback interface. This occurs because IORING_OP_SENDMSG operations, although requested in the context of an unprivileged user, are sometimes performed by a kernel worker thread without considering that context. | 2019-12-17 | 4.6 | CVE-2019-19241 MISC MISC MISC MISC |
| huawei -- multiple_products | Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have an out-of-bounds read vulnerability. An attacker who logs in to the board may send crafted messages from the internal network port or tamper with inter-process message packets to exploit this vulnerability. Due to insufficient validation of the message, successful exploit may cause the affected board to be abnormal. | 2019-12-13 | 5 | CVE-2019-5254 MISC |
| dovecot -- dovecot | In Dovecot before 2.3.9.2, an attacker can crash a push-notification driver with a crafted email when push notifications are used, because of a NULL Pointer Dereference. The email must use a group address as either the sender or the recipient. | 2019-12-13 | 5 | CVE-2019-19722 CONFIRM CONFIRM CONFIRM CONFIRM |
| joomla -- joomla | In Joomla! before 3.9.14, a missing access check in framework files could lead to a path disclosure. | 2019-12-18 | 5 | CVE-2019-19845 MISC |
| sqlite -- sqlite | exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled. | 2019-12-18 | 5 | CVE-2019-19880 MISC |
| elog-- elog | ELOG 3.1.4-57bea22 and below is affected by an information disclosure vulnerability. A remote unauthenticated attacker can access the server's configuration file by sending an HTTP GET request. Amongst the configuration data, the attacker may gain access to valid admin usernames and, in older versions of ELOG, passwords. | 2019-12-17 | 5 | CVE-2019-3992 MISC |
| elog -- elog | ELOG 3.1.4-57bea22 and below is affected by an information disclosure vulnerability. A remote unauthenticated attacker can recover a user's password hash by sending a crafted HTTP POST request. | 2019-12-17 | 5 | CVE-2019-3993 MISC |
| elog -- elog | ELOG 3.1.4-57bea22 and below is affected by a denial of service vulnerability due to a use after free. A remote unauthenticated attacker can crash the ELOG server by sending multiple HTTP POST requests which causes the ELOG function retrieve_url() to use a freed variable. | 2019-12-17 | 5 | CVE-2019-3994 MISC |
| elog -- elog | ELOG 3.1.4-57bea22 and below is affected by a denial of service vulnerability due to a NULL pointer dereference. A remote unauthenticated attacker can crash the ELOG server by sending a crafted HTTP GET request. | 2019-12-17 | 5 | CVE-2019-3995 MISC |
| apple -- ios_and_watchos | A denial of service issue was addressed with improved validation. This issue is fixed in iOS 12.4, watchOS 5.3. A remote attacker may cause an unexpected application termination. | 2019-12-18 | 5 | CVE-2019-8665 MISC MISC |
| ibm -- api_connect | IBM API Connect 2018.4.1.7 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 168510. | 2019-12-18 | 5 | CVE-2019-4609 XF CONFIRM |
| huawei_cloudusm-eua_product | Huawei CloudUSM-EUA V600R006C10;V600R019C00 have an information leak vulnerability. Due to improper configuration, the attacker may cause information leak by successful exploitation. | 2019-12-13 | 5 | CVE-2019-5277 MISC |
| sonicwall -- sonicwall | Vulnerability in SonicWall SMA100 allow unauthenticated user to gain read-only access to unauthorized resources. This vulnerablity impacted SMA100 version 9.0.0.3 and earlier. | 2019-12-17 | 5 | CVE-2019-7481 CONFIRM |
| apple -- ios | A user privacy issue was addressed by removing the broadcast MAC address. This issue is fixed in iOS 12.2. A device may be passively tracked by its WiFi MAC address. | 2019-12-18 | 5 | CVE-2019-8567 MISC |
| apple -- multiple_products | A user privacy issue was addressed by removing the broadcast MAC address. This issue is fixed in iOS 12.3, tvOS 12.3, watchOS 5.2.1. A device may be passively tracked by its WiFi MAC address. | 2019-12-18 | 5 | CVE-2019-8620 MISC MISC MISC |
| apple -- watchos | An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 5.3. A remote attacker may be able to leak memory. | 2019-12-18 | 5 | CVE-2019-8624 MISC |
| apple -- multiple_products | An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. A remote attacker may be able to leak memory. | 2019-12-18 | 5 | CVE-2019-8646 MISC MISC MISC MISC |
| apple -- watchos | This issue was addressed with improved checks. This issue is fixed in watchOS 5.3. Users removed from an iMessage conversation may still be able to alter state. | 2019-12-18 | 5 | CVE-2019-8659 MISC |
| apple -- ios_and_macos_mojave | This issue was addressed with improved checks. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6. A remote attacker may be able to leak memory. | 2019-12-18 | 5 | CVE-2019-8663 MISC MISC |
| contao -- contao | Contao 4.8.4 and 4.8.5 has Improper Encoding or Escaping of Output. It is possible to inject insert tags into the login module which will be replaced when the page is rendered. | 2019-12-17 | 5 | CVE-2019-19714 MISC CONFIRM |
| wordpress -- wordpress | The quiz-master-next (aka Quiz And Survey Master) plugin before 6.3.5 for WordPress is affected by: Cross Site Scripting (XSS). The impact is: Allows an attacker to execute arbitrary HTML and JavaScript code via the from or till parameter (and/or the quiz_id parameter). The component is: admin/quiz-options-page.php. The attack vector is: When the Administrator is logged in, a reflected XSS may execute upon a click on a malicious URL. | 2019-12-13 | 4.3 | CVE-2019-17599 MISC MISC MISC MISC |
| coredns -- coredns | The miekg Go DNS package before 1.1.25, as used in CoreDNS before 1.6.6 and other products, improperly generates random numbers because math/rand is used. The TXID becomes predictable, leading to response forgeries. | 2019-12-13 | 4.3 | CVE-2019-19794 MISC CONFIRM MISC MISC MISC |
| apple -- ios | A logic issue existed with the display of notification previews. This issue was addressed with improved validation. This issue is fixed in iOS 13. Notification previews may show on Bluetooth accessories even when previews are disabled. | 2019-12-18 | 5 | CVE-2019-8711 MISC |
| apple -- macos_catalina | "Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Catalina 10.15. A user may be unable to delete browsing history items. | 2019-12-18 | 5 | CVE-2019-8768 MISC |
| apple -- macos_catalina | An issue existed in the handling of links in encrypted PDFs. This issue was addressed by adding a confirmation prompt. This issue is fixed in macOS Catalina 10.15. An attacker may be able to exfiltrate the contents of an encrypted PDF. | 2019-12-18 | 5 | CVE-2019-8772 MISC |
| apple -- multiple_products | An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. A remote attacker may be able to leak memory. | 2019-12-18 | 5 | CVE-2019-8787 MISC MISC MISC MISC |
| linux -- linux_kernel | In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to snd_timer_open and snd_timer_close_locked. The timeri variable was originally intended to be for a newly created timer instance, but was used for a different purpose after refactoring. | 2019-12-15 | 4.9 | CVE-2019-19807 MISC MISC MISC |
| pen -- pen | Pen 0.18.0 has Insecure Temporary File Creation vulnerabilities | 2019-12-13 | 4.6 | CVE-2014-2387 MISC MISC MISC MISC MISC MISC MISC |
| qualcomm -- multiple_products | Possibility of out of bound access in debug queue, if packet size field is corrupted in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCN7605, QCS405, QCS605, QM215, SA6155P, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130 | 2019-12-18 | 4.6 | CVE-2019-10584 CONFIRM |
| intel -- control_center-i | Unquoted service path in Control Center-I version 2.1.0.0 and earlier may allow an authenticated user to potentially enable escalation of privilege via local access. | 2019-12-16 | 4.6 | CVE-2019-14599 MISC |
| veracrypt -- veracrypt | VeraCrypt 1.24 allows Local Privilege Escalation during execution of VeraCryptExpander.exe. | 2019-12-13 | 4.6 | CVE-2019-19501 MISC MISC |
| apple -- macos_mojave | This issue was addressed with improved handling of file metadata. This issue is fixed in macOS Mojave 10.14.4. A malicious application may bypass Gatekeeper checks. | 2019-12-18 | 4.6 | CVE-2019-6239 MISC MISC |
| apple -- macos_mojave | An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.6. The encryption status of a Time Machine backup may be incorrect. | 2019-12-18 | 5 | CVE-2019-8667 MISC |
| suphp -- suphp | suPHP before 0.7.2 source-highlighting feature allows security bypass which could lead to arbitrary code execution | 2019-12-13 | 4.4 | CVE-2014-1867 MISC MISC MISC MISC |
| mahara -- mahara | Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x before 1.4.3 and 1.5.x before 1.5.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) javascript innerHTML as used when generating login forms, (2) links or (3) resources URLs, and (4) the Display name in a user profile. | 2019-12-17 | 4.3 | CVE-2012-2237 MISC MISC MISC MISC MISC |
| owncloud -- owncloud | Cross-site scripting (XSS) vulnerability in ownCloud 4.5.5, 4.0.10, and earlier allows remote attackers to inject arbitrary web script or HTML via the action parameter to core/ajax/sharing.php. | 2019-12-17 | 4.3 | CVE-2013-0202 MISC MISC |
| zend -- zend_framework | ZF2014-03 has a potential cross site scripting vector in multiple view helpers | 2019-12-15 | 4.3 | CVE-2014-4913 MISC MISC MISC MISC MISC |
| imagemagick -- imagemagick | imagemagick 6.8.9.6 has remote DOS via infinite loop | 2019-12-15 | 4.3 | CVE-2014-8561 MISC MISC MISC MISC MISC |
| tematres -- tematres | TemaTres 3.0 has reflected XSS via the replace_string or search_string parameter to the vocab/admin.php?doAdmin=bulkReplace URI. | 2019-12-13 | 4.3 | CVE-2019-14344 MISC MISC |
| jenkins -- jenkins | A cross-site request forgery vulnerability in Jenkins Mantis Plugin 0.26 and earlier allows attackers to connect to an attacker-specified web server using attacker-specified credentials. | 2019-12-17 | 4.3 | CVE-2019-16569 MLIST CONFIRM |
| apple -- safari | The issue was addressed with improved handling of service worker lifetime. This issue is fixed in Safari 13.0.1. Service workers may leak private browsing history. | 2019-12-18 | 5 | CVE-2019-8725 MISC |
| tibco -- spotfire_analytics_platform_for_aws_marketplace_and_spotfire_server | The Spotfire library component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace and TIBCO Spotfire Server contains a vulnerability that theoretically allows an attacker to perform a reflected cross-site scripting (XSS) attack. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace: version 10.6.0 and TIBCO Spotfire Server: versions 7.11.7 and below, versions 7.12.0, 7.13.0, 7.14.0, 10.0.0, 10.0.1, 10.1.0, 10.2.0, 10.2.1, 10.3.0, 10.3.1, 10.3.2, 10.3.3, and 10.3.4, versions 10.4.0, 10.5.0, and 10.6.0. | 2019-12-17 | 4.3 | CVE-2019-17337 MISC MISC |
| knot-resolver -- knot-resolver | knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A records can be squashed into one DNS message (limit is 64kB). | 2019-12-16 | 5 | CVE-2019-19331 CONFIRM MISC |
| huawei -- multiple_products | There is a weak algorithm vulnerability in some Huawei products. The affected products use weak algorithms by default. Attackers may exploit the vulnerability to cause information leaks. | 2019-12-13 | 5 | CVE-2019-19397 MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 4.3 | CVE-2019-8615 MISC MISC MISC MISC MISC MISC MISC |
| ibm -- financial_transaction_manager | IBM Financial Transaction Manager 3.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the attacker can then obtain the cookie value by snooping the traffic. IBM X-Force ID: 172880. | 2019-12-20 | 4.3 | CVE-2019-4743 XF CONFIRM |
| ibm -- financial_transaction_manager | IBM Financial Transaction Manager 3.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 172882. | 2019-12-20 | 4.3 | CVE-2019-4744 XF CONFIRM |
| huawei -- multiple_smartphones | There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the application. An attacker could trick the user into installing, backing up and restoring a malicious application. Successful exploit could cause information disclosure. | 2019-12-13 | 4.3 | CVE-2019-5251 MISC |
| huawei -- multiple_products | Some Huawei products have an insufficient verification of data authenticity vulnerability. A remote, unauthenticated attacker has to intercept specific packets between two devices, modify the packets, and send the modified packets to the peer device. Due to insufficient verification of some fields in the packets, an attacker may exploit the vulnerability to cause the target device to be abnormal. | 2019-12-13 | 4.3 | CVE-2019-5291 MISC |
| apple -- ios | A permissions issue existed in the handling of motion and orientation data. This issue was addressed with improved restrictions. This issue is fixed in iOS 12.2. A website may be able to access sensor information without user consent. | 2019-12-18 | 4.3 | CVE-2019-8554 MISC |
| apple -- multiple_products | An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to read restricted memory. | 2019-12-18 | 4.3 | CVE-2019-8560 MISC MISC MISC MISC |
| apple -- macos_mojave | This issue was addressed with improved checks. This issue is fixed in macOS Mojave 10.14.5. A malicious application may bypass Gatekeeper checks. | 2019-12-18 | 4.3 | CVE-2019-8589 MISC |
| apple -- multiple_products | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. | 2019-12-18 | 4.3 | CVE-2019-8597 MISC MISC MISC MISC MISC MISC MISC |
| apple -- macos_mojave | A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Mojave 10.14.6. An application may be able to read restricted memory. | 2019-12-18 | 4.3 | CVE-2019-8693 MISC |
| nitro -- nitro_free_pdf_reader | The JBIG2Decode library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0xa08a Out-of-Bounds Read via crafted Unicode content. | 2019-12-16 | 4.3 | CVE-2019-19818 MISC MISC |
| apple -- multiple_products | A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to universal cross site scripting. | 2019-12-18 | 4.3 | CVE-2019-8625 MISC MISC MISC |
| apple -- ios_and_watchos | An input validation issue was addressed with improved input validation. This issue is fixed in iOS 12.3, watchOS 5.2.1. Processing a maliciously crafted message may lead to a denial of service. | 2019-12-18 | 4.3 | CVE-2019-8626 MISC MISC |
| apple -- multiple_products | A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting. | 2019-12-18 | 4.3 | CVE-2019-8649 MISC MISC MISC MISC MISC MISC MISC |
| apple -- safari | An inconsistent user interface issue was addressed with improved state management. This issue is fixed in Safari 13.0.1. Visiting a malicious website may lead to user interface spoofing. | 2019-12-18 | 4.3 | CVE-2019-8654 MISC |
| apple -- multiple_products | A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting. | 2019-12-18 | 4.3 | CVE-2019-8658 MISC MISC MISC MISC MISC MISC MISC MISC |
| apple -- macos_mojave_and_safari | An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.6, Safari 12.1.2. Visiting a malicious website may lead to address bar spoofing. | 2019-12-18 | 4.3 | CVE-2019-8670 MISC MISC |
| apple -- ios_and_safari | A logic issue was addressed with improved state management. This issue is fixed in iOS 13, Safari 13. Processing maliciously crafted web content may lead to universal cross site scripting. | 2019-12-18 | 4.3 | CVE-2019-8674 MISC MISC |
| apple -- multiple_products | A logic issue existed in the handling of document loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting. | 2019-12-18 | 4.3 | CVE-2019-8690 MISC MISC MISC MISC MISC MISC MISC |
| apple -- multiple_products | An input validation issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. A malicious application may be able to read restricted memory. | 2019-12-18 | 4.3 | CVE-2019-8598 MISC MISC MISC MISC MISC MISC MISC |
| apple -- ios_and_tvos | A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. This issue is fixed in iOS 12.4, tvOS 12.4. A malicious application may be able to restrict access to websites. | 2019-12-18 | 4.3 | CVE-2019-8698 MISC MISC |
| centos-webpanel -- centos_web_panel | CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.864 allows an attacker to get a victim's session file name from /home/[USERNAME]/tmp/session/sess_xxxxxx, and the victim's token value from /usr/local/cwpsrv/logs/access_log, then use them to gain access to the victim's password (for the OS and phpMyAdmin) via an attacker account. This is different from CVE-2019-14782. | 2019-12-17 | 4 | CVE-2019-15235 MISC MISC |
| jenkins -- jenkins | A missing permission check in Jenkins Team Concert Plugin 1.3.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. | 2019-12-17 | 4 | CVE-2019-16566 MLIST CONFIRM |
| apple -- ios | A logic issue was addressed with improved state management. This issue is fixed in iOS 13. Visiting a malicious website may lead to address bar spoofing. | 2019-12-18 | 4.3 | CVE-2019-8727 MISC |
| apple -- ios | A permissions issue existed in which execute permission was incorrectly granted. This issue was addressed with improved permission validation. This issue is fixed in iOS 13. Processing a maliciously crafted file may disclose user information. | 2019-12-18 | 4.3 | CVE-2019-8731 MISC |
| apple -- watchos | A logic issue was addressed with improved state management. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to universal cross site scripting. | 2019-12-18 | 4.3 | CVE-2019-8764 MISC |
| apple -- macos_catalina | The issue was addressed with improved permissions logic. This issue is fixed in macOS Catalina 10.15. A malicious application may be able to access recent documents. | 2019-12-18 | 4.3 | CVE-2019-8770 MISC |
| apple -- multiple_products | A logic issue was addressed with improved state management. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0. Processing maliciously crafted web content may lead to universal cross site scripting. | 2019-12-18 | 4.3 | CVE-2019-8813 MISC MISC MISC MISC MISC |
| solarwinds -- serv-u_ftp_server | A CSV injection vulnerability exists in the web UI of SolarWinds Serv-U FTP Server v15.1.7. | 2019-12-16 | 4 | CVE-2019-13181 MISC FULLDISC MISC |
| centos-webpanel -- centos_web_panel | CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.856 through 0.9.8.864 allows an attacker to get a victim's session file name from the /tmp directory, and the victim's token value from /usr/local/cwpsrv/logs/access_log, then use them to make a request to extract the victim's password (for the OS and phpMyAdmin) via an attacker account. | 2019-12-17 | 4 | CVE-2019-14782 MISC MISC |
| atlassian -- jira | The WorkflowResource class removeStatus method in Jira before version 7.13.12, from version 8.0.0 before version 8.4.3, and from version 8.5.0 before version 8.5.2 allows authenticated remote attackers who do not have project administration access to remove a configured issue status from a project via a missing authorisation check. | 2019-12-18 | 4 | CVE-2019-15013 MISC |
| apple -- macos_catalina_and_tvos | A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15, tvOS 13. Processing a maliciously crafted movie may result in the disclosure of process memory. | 2019-12-18 | 4.3 | CVE-2019-8705 MISC |
| apple -- multiple_products | A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to universal cross site scripting. | 2019-12-18 | 4.3 | CVE-2019-8719 MISC MISC MISC |
| jenkins -- jenkins | A missing permission check in Jenkins Team Concert Plugin 1.3.0 and earlier in form-related methods allowed users with Overall/Read access to enumerate credentials ID of credentials stored in Jenkins. | 2019-12-17 | 4 | CVE-2019-16567 MLIST CONFIRM |
| jenkins -- jenkins | A missing permission check in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified web server. | 2019-12-17 | 4 | CVE-2019-16571 MLIST CONFIRM |
| jenkins -- jenkins | A missing permission check in Jenkins Alauda DevOps Pipeline Plugin 2.3.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. | 2019-12-17 | 4 | CVE-2019-16574 MLIST CONFIRM |
| jenkins -- jenkins | A missing permission check in Jenkins Alauda Kubernetes Suport Plugin 2.3.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing the Kubernetes service account token or credentials stored in Jenkins. | 2019-12-17 | 4 | CVE-2019-16576 MLIST CONFIRM |
| npi -- cli | Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It is possible for packages to create symlinks to files outside of thenode_modules folder through the bin field upon installation. A properly constructed entry in the package.json bin field would allow a package publisher to create a symlink pointing to arbitrary files on a user?s system when the package is installed. This behavior is still possible through install scripts. This vulnerability bypasses a user using the --ignore-scripts install option. | 2019-12-13 | 4 | CVE-2019-16775 MISC CONFIRM |
| spip -- spip | _core_/plugins/medias in SPIP 3.2.x before 3.2.7 allows remote authenticated authors to inject content into the database. | 2019-12-17 | 4 | CVE-2019-19830 MISC MISC DEBIAN MISC |
| ibm -- mq_and_mq_appliance | IBM MQ and IBM MQ Appliance 9.1 CD, 9.1 LTS, 9.0 LTS, and 8.0 is vulnerable to a denial of service attack caused by channels processing poorly formatted messages. IBM X-Force ID: 166357. | 2019-12-16 | 4 | CVE-2019-4560 XF CONFIRM |
| huawei -- gauss100_oltp_database | There is an out-of-bounds read vulnerability in the Advanced Packages feature of the Gauss100 OLTP database in CampusInsight before V100R019C00SPC200. Attackers who gain the specific permission can use this vulnerability by sending elaborate SQL statements to the database. Successful exploit of this vulnerability may cause the database to crash. | 2019-12-13 | 4 | CVE-2019-5278 MISC |
| huawei -- s5700_and_s6700_devices | Huawei S5700 and S6700 have a DoS security vulnerability. Attackers with certain permissions perform specific operations on affected devices. Because the pointer in the program is not processed properly, the vulnerability can be exploited to cause the device to be abnormal. | 2019-12-13 | 4 | CVE-2019-5290 MISC |
Please share your thoughts
We recently updated our anonymous product survey; we’d welcome your feedback.