• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-287

CVE-2019-1020018

February 26, 2023 by

Discourse before 2.3.0 and 2.4.x before 2.4.0.beta3 lacks a confirmation screen when logging in via an email link.

CVE-2019-10150

February 26, 2023 by

It was found that OpenShift Container Platform versions 3.6.x – 4.6.0 does not perform SSH Host Key checking when using ssh key authentication during builds. An attacker, with the ability to redirect network traffic, could use this to alter the resulting build output.

CVE-2019-10157

February 26, 2023 by

It was found that Keycloak’s Node.js adapter before version 4.8.3 did not properly verify the web token received from the server in its backchannel logout . An attacker with local access could use this to construct a malicious web token setting an NBF parameter that could prevent user access indefinitely.

CVE-2019-0622

February 26, 2023 by

An elevation of privilege vulnerability exists when Skype for Andriod fails to properly handle specific authentication requests, aka “Skype for Android Elevation of Privilege Vulnerability.” This affects Skype 8.35.

CVE-2019-0543

February 26, 2023 by

An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka “Microsoft Windows Elevation of Privilege Vulnerability.” This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.

CVE-2019-0282

February 26, 2023 by

Several web pages in SAP NetWeaver Process Integration (Runtime Workbench), fixed in versions 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; can be accessed without user authentication, which might expose internal data like release information, Java package and Java object names which can be misused by the attacker.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 172
  • Go to page 173
  • Go to page 174
  • Go to page 175
  • Go to page 176
  • Interim pages omitted …
  • Go to page 289
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE