Security Vulnerabilities - CVEs Published In May 2019
An issue was discovered in Espressif ESP-IDF 2.x and 3.x before 3.0.6 and 3.1.x before 3.1.1. Insufficient validation of input data in the 2nd stage bootloader allows a physically proximate attacker to bypass secure boot checks and execute arbitrary code, by crafting an application binary that overwrites a bootloader code segment in process_segment in components/bootloader_support/src/esp_image_format.c. The attack is effective when the flash encryption feature is not enabled, or if the attacker finds a different vulnerability that allows them to write this binary to flash memory.
CVSS Score
6.4
EPSS Score
0.0
Published
2019-05-13
On Virgin Media wireless router 3.0 hub devices, the web interface is vulnerable to denial of service. When POST requests are sent and keep the connection open, the router lags and becomes unusable to anyone currently using the web interface.
CVSS Score
7.5
EPSS Score
0.003
Published
2019-05-13
lib/common/html_re.js in remarkable 1.7.1 allows Regular Expression Denial of Service (ReDoS) via a CDATA section.
CVSS Score
7.5
EPSS Score
0.004
Published
2019-05-13
Missing cross-site request forgery protection in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows attackers to cause state-changing actions with specially crafted URLs.
CVSS Score
6.5
EPSS Score
0.001
Published
2019-05-13
Buffer overflow in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows attackers to inject system commands via the "hook" URL parameter.
CVSS Score
6.5
EPSS Score
0.004
Published
2019-05-13
Format string vulnerability in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows attackers to read arbitrary sections of memory and CPU registers via the "hook" URL parameter.
CVSS Score
8.1
EPSS Score
0.011
Published
2019-05-13
System command injection in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows attackers to execute system commands via the "load_script" URL parameter.
CVSS Score
9.8
EPSS Score
0.81
Published
2019-05-13
Cross-site scripting (XSS) in the web interface of the Xerox ColorQube 8580 allows remote persistent injection of custom HTML / JavaScript code.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-05-13
Kirby V2.5.12 is prone to a Persistent XSS attack via the Title of the "Site options" in the admin panel dashboard dropdown.
CVSS Score
4.8
EPSS Score
0.002
Published
2019-05-13
panel/pages/home/edit in Kirby v2.5.12 allows XSS via the title of a new page.
CVSS Score
5.4
EPSS Score
0.002
Published
2019-05-13