Security Vulnerabilities - CVEs Published In 2019
Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
CVSS Score
4.3
EPSS Score
0.01
Published
2019-11-14
Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
CVSS Score
4.3
EPSS Score
0.017
Published
2019-11-14
Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
CVSS Score
4.3
EPSS Score
0.01
Published
2019-11-14
Moodle has a database activity export permission issue where the export function of the database activity module exports all entries even those from groups the user does not belong to
CVSS Score
7.5
EPSS Score
0.013
Published
2019-11-14
Moodle before 2.2.2 has users' private files included in course backups
CVSS Score
7.5
EPSS Score
0.012
Published
2019-11-14
Moodle before 2.2.2 has a password and web services issue where when the user profile is updated the user password is reset if not specified.
CVSS Score
8.2
EPSS Score
0.022
Published
2019-11-14
The Untangle NG firewall 14.2.0 is vulnerable to authenticated inline-query SQL injection within the timeDataDynamicColumn parameter when logged in as an admin user.
CVSS Score
7.2
EPSS Score
0.004
Published
2019-11-14
The Untangle NG firewall 14.2.0 is vulnerable to an authenticated command injection when logged in as an admin user.
CVSS Score
7.2
EPSS Score
0.015
Published
2019-11-14
When logged in as an admin user, the Untangle NG firewall 14.2.0 is vulnerable to reflected XSS at multiple places and specific user input fields.
CVSS Score
4.8
EPSS Score
0.003
Published
2019-11-14
When logged in as an admin user, the Title input field (under Reports) within Untangle NG firewall 14.2.0 is vulnerable to stored XSS.
CVSS Score
4.8
EPSS Score
0.003
Published
2019-11-14