Severity High Analysis Summary CVE-2019-10947 Multiple stack-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, allowing an attacker to remotely execute arbitrary […]

Severity High Analysis Summary When running on Windows with enableCmdLineArguments enabled, the CGI Servlet in Apache Tomcat 9.0.0.M1 to 9.0.17, 8.5.0 to 8.5.39 and 7.0.0 to […]

Severity Medium Analysis Summary An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who […]

Severity Low Analysis Summary An error when handling close_notify SSL/TLS messages can be exploited to send otherwise encrypted messages in plaintext and subsequently disclose certain data. […]

Severity Medium Analysis Summary Due to a vulnerability, many enterprise VPN applications are storing authentication and session cookies insecurely which may allow an attacker to access […]

Severity Medium Analysis Summary CVE-2019-5518VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before ESXi600-201903001), Workstation (15.x before 15.0.4, 14.x before 14.1.7), Fusion (11.x before 11.0.3, […]

Severity Medium Analysis Summary An error within the XML parser when parsing XML entities can be exploited to disclose certain data or cause a DoS condition […]

Severity Medium Analysis Summary CVE-2019-7221 The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free. CVE-2019-3701 An issue was discovered in can_can_gw_rcv in net/can/gw.c […]

Severity Medium Analysis Summary Texas Instruments BLE-STACK v2.2.1 for SimpleLink CC2640 and CC2650 devices allows remote attackers to execute arbitrary code via a malformed packet that […]