Severity Medium Analysis summary CVE-2019-1033, CVE-2019-1036, CVE-2019-1031 A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to […]

Severity Medium Analysis Summary The affected devices store passwords in a recoverable format. An attacker may extract and recover device passwords from the device configuration. Successful […]

Severity Medium Analysis summary CVE-2019-6571 An attacker with network access to Port 10005/TCP of the LOGO!8 device could cause a denial-of-service condition by sending specially crafted […]

Severity High Analysis Summary CVE-2019-6580 An attacker with network access to Port 80/TCP could change device properties without authorization. CVE-2019-6581 An attacker with network access to […]

Severity Medium Analysis Summary CVE-2019-10925 An authenticated attacker could escalate privileges by sending specially crafted requests to the integrated webserver.  CVE-2019-10926 Communication with the device is […]

Severity Medium Analysis Summary A remote code execution vulnerability exists in Xterm.js when the component mishandles special characters, aka “Xterm Remote Code Execution Vulnerability.” This affects […]

Severity High Analysis Summary CVE-2019-1081 An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability […]

Severity High Analysis Summary CVE-2019-1081 An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability […]

Severity Medium Analysis Summary An error in Microsoft Word software when handling objects in memory can be exploited to execute arbitrary code via a specially crafted […]