CVE.report search for "CVE-2019-13940"
Listed below are 50 relevant search results for "CVE-2019-13940" based on Vendor, Software, and CVE description
These results are gathered from attempted matches with listed vendor and software data, as well as a keyword search in the description of all known CVEs.
If you notice a "Not Listed" in either the vendor or software columns, the underlying source record does not currently include normalized affected-product data.
Search Results
| CVE ID | Vendor | Software | Description |
|---|---|---|---|
| CVE-2026-0964 | A malicious SCP server can send unexpected paths that could make the client application override local files outside of worki... | ||
| CVE-2024-14031 | Sereal::Encoder versions from 4.000 through 4.009_002 for Perl embeds a vulnerable version of the Zstandard library. Sereal:... | ||
| CVE-2024-14030 | Sereal::Decoder versions from 4.000 through 4.009_002 for Perl embeds a vulnerable version of the Zstandard library. Sereal:... | ||
| CVE-2023-43665 | Djangoproject | Django | In Django 3.2 before 3.2.22, 4.1 before 4.1.12, and 4.2 before 4.2.6, the django.utils.text.Truncator chars() and words() met... |
| CVE-2023-38336 | Netkit | Netkit | netkit-rcp in rsh-client 0.17-24 allows command injection via filenames because /bin/sh is used by susystem, a related issue ... |
| CVE-2023-37543 | Cacti | Cacti | Cacti before 1.2.6 allows IDOR (Insecure Direct Object Reference) for accessing any graph via a modified local_graph_id param... |
| CVE-2023-32711 | Splunk | Splunk | In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, a Splunk dashboard view lets a low-privileged user exploit a v... |
| CVE-2023-28972 | Juniper | Junos | An Improper Link Resolution Before File Access vulnerability in console port access of Juniper Networks Junos OS on NFX Serie... |
| CVE-2023-28432 | Minio | Minio | Minio is a Multi-Cloud Object Storage framework. In a cluster deployment starting with RELEASE.2019-12-17T23-16-33Z and prior... |
| CVE-2023-27655 | Xpdfreader | Xpdf | ** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2019-9587. Reason: This record is a reservation duplicate of CVE-201... |
| CVE-2023-27561 | Debian | Debian Linux | runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go.... |
| CVE-2023-26938 | Xpdfreader | Xpdf | ** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2019-9587. Reason: This record is a reservation duplicate of CVE-201... |
| CVE-2023-26937 | Xpdfreader | Xpdf | ** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2019-9587. Reason: This record is a reservation duplicate of CVE-201... |
| CVE-2023-26936 | Xpdfreader | Xpdf | ** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2019-9587. Reason: This record is a reservation duplicate of CVE-201... |
| CVE-2023-26935 | Xpdfreader | Xpdf | ** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2019-9587. Reason: This record is a reservation duplicate of CVE-201... |
| CVE-2023-26934 | Xpdfreader | Xpdf | ** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2019-9587. Reason: This record is a reservation duplicate of CVE-201... |
| CVE-2023-22611 | Schneider-electric | Ecostruxure Geo Scada Expert 2019 | A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information discl... |
| CVE-2023-3350 | Ayesa | Ibermatica Rps | A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By firstly downloading the log ... |
| CVE-2023-3349 | Ayesa | Ibermatica Rps | Information exposure vulnerability in IBERMATICA RPS 2019, which exploitation could allow an unauthenticated user to retrieve... |
| CVE-2023-0595 | Schneider-electric | Clearscada | A CWE-117: Improper Output Neutralization for Logs vulnerability exists that could cause the misinterpretation of log files w... |
| CVE-2023-0426 | Abb | Ac700f | ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vuln... |
| CVE-2023-0425 | Abb | Ac700f | ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vuln... |
| CVE-2022-48570 | Cryptopp | Crypto | Crypto++ through 8.4 contains a timing side channel in ECDSA signature generation. Function FixedSizeAllocatorWithCleanup cou... |
| CVE-2022-45045 | Xiongmaitech | Mbd6304t | Multiple Xiongmai NVR devices, including MBD6304T V4.02.R11.00000117.10001.131900.00000 and NBD6808T-PL V4.02.R11.C7431119.12... |
| CVE-2022-44147 | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-16891. Reason: This candidate is a reservation duplicate ... | ||
| CVE-2022-42973 | Microsoft | Windows 10 | A CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause local privilege escalation when local attacker... |
| CVE-2022-42972 | Microsoft | Windows 10 | A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could cause local privilege escala... |
| CVE-2022-42971 | Microsoft | Windows 10 | A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could cause remote code execution when t... |
| CVE-2022-42970 | Microsoft | Windows 10 | A CWE-306: Missing Authentication for Critical Function The software does not perform any authentication for functionality th... |
| CVE-2022-41844 | Xpdfreader | Xpdf | An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetch(int, int, Object*, int) in xpdf/XRef.cc, a different vu... |
| CVE-2022-37775 | Genesys | Pureconnect | Genesys PureConnect Interaction Web Tools Chat Service (up to at least 26- September- 2019) allows XSS within the Printable C... |
| CVE-2022-35677 | Adobe | Framemaker | Adobe FrameMaker versions 2019 Update 8 (and earlier) and 2020 Update 4 (and earlier) are affected by a Heap-based Buffer Ove... |
| CVE-2022-35676 | Adobe | Framemaker | Adobe FrameMaker versions 2019 Update 8 (and earlier) and 2020 Update 4 (and earlier) are affected by a Heap-based Buffer Ove... |
| CVE-2022-35675 | Adobe | Framemaker | Adobe FrameMaker versions 2019 Update 8 (and earlier) and 2020 Update 4 (and earlier) are affected by a Use After Free vulner... |
| CVE-2022-35674 | Adobe | Framemaker | Adobe FrameMaker versions 2019 Update 8 (and earlier) and 2020 Update 4 (and earlier) are affected by an out-of-bounds read v... |
| CVE-2022-35673 | Adobe | Framemaker | Adobe FrameMaker versions 2019 Update 8 (and earlier) and 2020 Update 4 (and earlier) are affected by an out-of-bounds read v... |
| CVE-2022-34264 | Adobe | Framemaker | Adobe FrameMaker versions 2019 Update 8 (and earlier) and 2020 Update 4 (and earlier) are affected by an out-of-bounds read v... |
| CVE-2022-34006 | Southrivertech | Titan Ftp Server Nextgen | An issue was discovered in TitanFTP (aka Titan FTP) NextGen before 1.2.1050. When installing, Microsoft SQL Express 2019 inst... |
| CVE-2022-34005 | Southrivertech | Titan Ftp Server Nextgen | An issue was discovered in TitanFTP (aka Titan FTP) NextGen before 1.2.1050. There is Remote Code Execution due to a hardcode... |
| CVE-2022-31586 | Changepop-back Project | Changepop-back | The unizar-30226-2019-06/ChangePop-Back repository through 2019-06-04 on GitHub allows absolute path traversal because the Fl... |
| CVE-2022-31584 | S3label Project | S3label | The stonethree/s3label repository through 2019-08-14 on GitHub allows absolute path traversal because the Flask send_file fun... |
| CVE-2022-31582 | Videoserver Project | Videoserver | The shaolo1/VideoServer repository through 2019-09-21 on GitHub allows absolute path traversal because the Flask send_file fu... |
| CVE-2022-31578 | Bt Lnmp Project | Bt Lnmp | The piaoyunsoft/bt_lnmp repository through 2019-10-10 on GitHub allows absolute path traversal because the Flask send_file fu... |
| CVE-2022-31571 | Python-flask-restful-api Project | Python-flask-restful-api | The akashtalole/python-flask-restful-api repository through 2019-09-16 on GitHub allows absolute path traversal because the F... |
| CVE-2022-31566 | Data Stream Algorithm Benchmark Project | Data Stream Algorithm Benchmark | The DSAB-local/DSAB repository through 2019-02-18 on GitHub allows absolute path traversal because the Flask send_file functi... |
| CVE-2022-31561 | Sphere Imagebackend Project | Sphere Imagebackend | The varijkapil13/Sphere_ImageBackend repository through 2019-10-03 on GitHub allows absolute path traversal because the Flask... |
| CVE-2022-31550 | Python Athena Stack Project | Python Athena Stack | The olmax99/pyathenastack repository through 2019-11-08 on GitHub allows absolute path traversal because the Flask send_file ... |
| CVE-2022-31540 | Hin-eng-preprocessing Project | Hin-eng-preprocessing | The kumardeepak/hin-eng-preprocessing repository through 2019-07-16 on GitHub allows absolute path traversal because the Flas... |
| CVE-2022-31522 | Karaokey Project | Karaokey | The NotVinay/karaokey repository through 2019-12-11 on GitHub allows absolute path traversal because the Flask send_file func... |
| CVE-2022-31499 | Nortekcontrol | Emerge E3 | Nortek Linear eMerge E3-Series devices before 0.32-08f allow an unauthenticated attacker to inject OS commands via ReaderNo. ... |