cyber
·
news
News
Deep Dives
Settings
Sign in
1915 items
Unread (2164)
All
Dismissed
All
Critical
High
Supply Chain
Ransomware
Breaches
Zero-Day
CVEs
HIGH
CVE-2019-1010294 (CVSS 7.5) — Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Rounding error. The impact is: Potentially le...
NVD
CVE-2019-1010294
2518d ago
CRITICAL
CVE-2019-1010293 (CVSS 9.8) — Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Boundary crossing. The impact is: Memory corr...
NVD
CVE-2019-1010293
2518d ago
CRITICAL
CVE-2017-14854 (CVSS 9.1) — A stack buffer overflow exists in one of the Orpak SiteOmat CGI components, allowing for remote code...
NVD
CVE-2017-14854
2560d ago
HIGH
CVE-2017-14853 (CVSS 8.6) — The Orpak SiteOmat OrCU component is vulnerable to code injection, for all versions prior to 2017-09...
NVD
CVE-2017-14853
2560d ago
HIGH
CVE-2017-14852 (CVSS 8.6) — An insecure communication was found between a user and the Orpak SiteOmat management console for all...
NVD
CVE-2017-14852
2560d ago
CRITICAL
CVE-2017-14851 (CVSS 9.8) — A SQL injection vulnerability exists in all Orpak SiteOmat versions prior to 2017-09-25. The vulnera...
NVD
CVE-2017-14851
2560d ago
CRITICAL
CVE-2017-14728 (CVSS 9.8) — An authentication bypass was found in an unknown area of the SiteOmat source code. All SiteOmat BOS ...
NVD
CVE-2017-14728
2560d ago
HIGH
CVE-2019-6820 (CVSS 8.2) — A CWE-306: Missing Authentication for Critical Function vulnerability exists which could cause a mod...
NVD
CVE-2019-6820
2572d ago
HIGH
CVE-2019-6819 (CVSS 7.5) — A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists which could cau...
NVD
CVE-2019-6819
2572d ago
HIGH
CVE-2018-7852 (CVSS 7.5) — A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340...
NVD
CVE-2018-7852
2572d ago
HIGH
CVE-2018-7821 (CVSS 7.5) — An Environment (CWE-2) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all r...
NVD
CVE-2018-7821
2572d ago
MEDIUM
CVE-2019-6576 (CVSS 6.5) — A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Upd...
NVD
CVE-2019-6576
2580d ago
HIGH
CVE-2019-11687 (CVSS 7.8) — An issue was discovered in the DICOM Part 10 File Format in the NEMA DICOM Standard 1995 through 201...
NVD
CVE-2019-11687
2592d ago
HIGH
CVE-2019-10953 (CVSS 7.5) — ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple v...
NVD
CVE-2019-10953
2608d ago
HIGH
CVE-2019-6575 (CVSS 7.5) — A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open...
NVD
CVE-2019-6575
2608d ago
HIGH
CVE-2018-16561 (CVSS 7.5) — A vulnerability has been identified in SIMATIC S7-300 CPUs (All versions < V3.X.16). The affected CP...
NVD
CVE-2018-16561
2608d ago
CRITICAL
CVE-2019-11068 (CVSS 9.8) — libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and ...
NVD
CVE-2019-11068
2614d ago
CRITICAL
CVE-2019-9201 (CVSS 9.8) — Multiple Phoenix Contact devices allow remote attackers to establish TCP sessions to port 1962 and o...
NVD
CVE-2019-9201
2657d ago
HIGH
CVE-2017-15031 (CVSS 7.5) — In all versions of ARM Trusted Firmware up to and including v1.4, not initializing or saving/restori...
NVD
CVE-2017-15031
2728d ago
HIGH
CVE-2018-17924 (CVSS 8.6) — Rockwell Automation MicroLogix 1400 Controllers and 1756 ControlLogix Communications Modules An unau...
NVD
CVE-2018-17924
2739d ago
HIGH
CVE-2018-6439 (CVSS 7.8) — A Vulnerability in the configdownload command of Brocade Fabric OS command line interface (CLI) vers...
NVD
CVE-2018-6439
2742d ago
HIGH
CVE-2018-7798 (CVSS 8.2) — A Insufficient Verification of Data Authenticity (CWE-345) vulnerability exists in the Modicon M221,...
NVD
CVE-2018-7798
2774d ago
HIGH
CVE-2018-7792 (CVSS 7.5) — A Permissions, Privileges, and Access Control vulnerability exists in Schneider Electric's Modicon M...
NVD
CVE-2018-7792
2838d ago
CRITICAL
CVE-2018-7791 (CVSS 9.8) — A Permissions, Privileges, and Access Control vulnerability exists in Schneider Electric's Modicon M...
NVD
CVE-2018-7791
2838d ago
CRITICAL
CVE-2018-7790 (CVSS 9.8) — An Information Management Error vulnerability exists in Schneider Electric's Modicon M221 product (a...
NVD
CVE-2018-7790
2838d ago
HIGH
CVE-2018-7789 (CVSS 7.5) — An Improper Check for Unusual or Exceptional Conditions vulnerability exists in Schneider Electric's...
NVD
CVE-2018-7789
2838d ago
MEDIUM
CVE-2018-10622 (CVSS 6.8) — Medtronic MyCareLink Patient Monitor uses per-product credentials that are stored in a recoverable ...
NVD
CVE-2018-10622
2857d ago
CRITICAL
CVE-2018-8859 (CVSS 9.8) — Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 ...
NVD
CVE-2018-8859
2875d ago
CRITICAL
CVE-2018-8855 (CVSS 9.8) — Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 ...
NVD
CVE-2018-8855
2875d ago
CRITICAL
CVE-2018-8851 (CVSS 9.8) — Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 ...
NVD
CVE-2018-8851
2875d ago
CRITICAL
CVE-2018-10627 (CVSS 9.8) — Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 ...
NVD
CVE-2018-10627
2875d ago
HIGH
CVE-2018-12594 (CVSS 7.5) — Reliable Controls MACH-ProWebCom 7.80 devices allow remote attackers to obtain sensitive information...
NVD
CVE-2018-12594
2909d ago
CRITICAL
CVE-2018-11091 (CVSS 9.9) — An issue was discovered in MyBiz MyProcureNet 5.0.0. A malicious file can be uploaded to the webserv...
NVD
CVE-2018-11091
2945d ago
HIGH
CVE-2018-9989 (CVSS 7.5) — ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in ssl_parse_serve...
NVD
CVE-2018-9989
2979d ago
HIGH
CVE-2018-9988 (CVSS 7.5) — ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in ssl_parse_serve...
NVD
CVE-2018-9988
2979d ago
HIGH
CVE-2017-12626 (CVSS 7.5) — Apache POI in versions prior to release 3.17 are vulnerable to Denial of Service Attacks: 1) Infinit...
NVD
CVE-2017-12626
3051d ago
MEDIUM
CVE-2017-13165 (CVSS 5.3) — An elevation of privilege vulnerability in the kernel file system. Product: Android. Versions: Andro...
NVD
CVE-2017-13165
3105d ago
HIGH
CVE-2017-16715 (CVSS 8.6) — An Information Exposure issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4,...
NVD
CVE-2017-16715
3124d ago
HIGH
CVE-2017-9946 (CVSS 7.5) — A vulnerability has been identified in Siemens APOGEE PXC and TALON TC BACnet Automation Controllers...
NVD
CVE-2017-9946
3149d ago
HIGH
CVE-2017-9607 (CVSS 7) — The BL1 FWU SMC handling code in ARM Trusted Firmware before 1.4 might allow attackers to write arbi...
NVD
CVE-2017-9607
3182d ago
HIGH
CVE-2017-14032 (CVSS 8.1) — ARM mbed TLS before 1.3.21 and 2.x before 2.1.9, if optional authentication is configured, allows re...
NVD
CVE-2017-14032
3202d ago
CRITICAL
CVE-2017-7903 (CVSS 9.8) — A Weak Password Requirements issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 11...
NVD
CVE-2017-7903
3264d ago
CRITICAL
CVE-2017-7898 (CVSS 9.8) — An Improper Restriction of Excessive Authentication Attempts issue was discovered in Rockwell Automa...
NVD
CVE-2017-7898
3264d ago
CRITICAL
CVE-2017-6034 (CVSS 9.8) — An Authentication Bypass by Capture-Replay issue was discovered in Schneider Electric Modicon Modbus...
NVD
CVE-2017-6034
3264d ago
HIGH
CVE-2017-2784 (CVSS 8.1) — An exploitable free of a stack pointer vulnerability exists in the x509 certificate parsing code of ...
NVD
CVE-2017-2784
3334d ago
CRITICAL
CVE-2016-1908 (CVSS 9.8) — The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding an...
NVD
CVE-2016-1908
3343d ago
CRITICAL
CVE-2017-7575 (CVSS 9.8) — Schneider Electric Modicon TM221CE16R 1.3.3.3 devices allow remote attackers to discover the applica...
NVD
CVE-2017-7575
3348d ago
CRITICAL
CVE-2017-7574 (CVSS 9.8) — Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices...
NVD
CVE-2017-7574
3348d ago
CRITICAL
CVE-2016-9369 (CVSS 9.8) — An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions pr...
NVD
CVE-2016-9369
3400d ago
HIGH
CVE-2016-9367 (CVSS 7.5) — An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions pr...
NVD
CVE-2016-9367
3400d ago
Prev
Page 38 / 39
Next
HIGH
NVD
Mon, 15 Jul 2019 18:15:11 UTC
✕ Dismiss
CVE-2019-1010294 (CVSS 7.5) — Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Rounding error. The impact is: Potentially le...
https://nvd.nist.gov/vuln/detail/CVE-2019-1010294
TL;DR
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Rounding error. The impact is: Potentially leaking code and/or data from previous Trusted Application. The component is: optee_os. The fixed version is: 3.4.0 and later.
CVE-2019-1010294
Read full story ↗