Security Vulnerabilities - CVEs Published In November 2019
Portainer before 1.22.1 allows Directory Traversal.
CVSS Score
7.5
EPSS Score
0.007
Published
2019-11-07
Portainer before 1.22.1 has Incorrect Access Control (issue 4 of 4).
CVSS Score
8.8
EPSS Score
0.006
Published
2019-11-07
Portainer before 1.22.1 has XSS (issue 2 of 2).
CVSS Score
5.4
EPSS Score
0.004
Published
2019-11-07
For the printers listed a maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device.
CVSS Score
5.2
EPSS Score
0.004
Published
2019-11-07
PHPOffice PhpSpreadsheet before 1.8.0 has an XXE issue. The XmlScanner decodes the sheet1.xml from an .xlsx to utf-8 if something else than UTF-8 is declared in the header. This was a security measurement to prevent CVE-2018-19277 but the fix is not sufficient. By double-encoding the the xml payload to utf-7 it is possible to bypass the check for the string ‚<!ENTITY‘ and thus allowing for an xml external entity processing (XXE) attack.
CVSS Score
8.8
EPSS Score
0.001
Published
2019-11-07
Portainer before 1.22.1 has XSS (issue 1 of 2).
CVSS Score
5.4
EPSS Score
0.005
Published
2019-11-07
Portainer before 1.22.1 has Incorrect Access Control (issue 2 of 4).
CVSS Score
6.5
EPSS Score
0.004
Published
2019-11-07
An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6.
CVSS Score
9.8
EPSS Score
0.006
Published
2019-11-07
DjVuLibre 3.5.27 has a NULL pointer dereference in the function DJVU::filter_fv at IW44EncodeCodec.cpp.
CVSS Score
7.5
EPSS Score
0.046
Published
2019-11-07
The Customer Context Filter in Atlassian Jira Service Desk Server and Jira Service Desk Data Center before 3.9.17, from 3.10.0 before 3.16.10, from 4.0.0 before 4.2.6, from 4.3.0 before 4.3.5, from 4.4.0 before 4.4.3, and from 4.5.0 before 4.5.1 allows remote attackers with portal access to view arbitrary issues in Jira Service Desk projects via authorization bypass. Note that when the 'Anyone can email the service desk or raise a request in the portal' setting is enabled, an attacker can grant themselves portal access, allowing them to exploit the vulnerability.
CVSS Score
5.3
EPSS Score
0.005
Published
2019-11-07