CVEs from 2019
Total
4,187
critical
critical 232
high
high 332
medium
medium 301
low
low 72
% Critical
5.5%
% with KEV
2.8%
% with exploit
2.9%
Top products
- u-boot 20
- nsauditor 1
- crypto 1
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2019-3838 | high | — | 8.0 | — | It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example,… | |
| CVE-2019-18634 | high | — | 8.0 | — | In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process. (pwfeedback is a default setting in Linux Mint and ele… | |
| CVE-2019-6109 | high | — | 8.0 | — | An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the… | |
| CVE-2019-5797 | high | — | 8.0 | — | multiple issues in chromium | |
| CVE-2019-11750 | high | — | 8.0 | — | A type confusion vulnerability exists in Spidermonkey, which results in a non-exploitable crash. This vulnerability affects Firefox < 69 and Firefox ESR < 68.1. | |
| CVE-2019-19450 | high | — | 8.0 | 3y ago | Important: python-reportlab security update | |
| CVE-2019-18466 | high | — | 8.0 | 4y ago | Important: container-tools:rhel8 security and bug fix update | |
| CVE-2019-9512 | high | — | 8.0 | 4y ago | Important: container-tools:rhel8 security and bug fix update | |
| CVE-2019-9514 | high | — | 8.0 | 4y ago | Important: nodejs:10 security update | |
| CVE-2019-10354 | high | — | 8.0 | 4y ago | Missing Authorization in Jenkins | |
| CVE-2019-10352 | high | — | 8.0 | 4y ago | Improper Limitation of a Pathname to a Restricted Directory in Jenkins | |
| CVE-2019-10353 | high | — | 8.0 | 4y ago | Cross-Site Request Forgery in Jenkins | |
| CVE-2019-16276 | high | — | 8.0 | 4y ago | Request smuggling due to accepting invalid headers in net/http via net/textproto | |
| CVE-2019-2435 | high | — | 8.0 | 4y ago | Improper Access Control in MySQL Connector Python | |
| CVE-2019-5885 | high | — | 8.0 | 4y ago | Matrix Synapse before 0.34.0.1, when the macaroon_secret_key authentication parameter is not set, uses a predictable value to derive a secret key and other secrets which could allow remote attackers … | |
| CVE-2019-16884 | high | — | 8.0 | 4y ago | Important: container-tools:rhel8 security and bug fix update | |
| CVE-2019-10214 | high | — | 8.0 | 4y ago | Important: container-tools:rhel8 security, bug fix, and enhancement update | |
| CVE-2019-19523 | high | — | 8.0 | 5y ago | Important: kernel security, bug fix, and enhancement update | |
| CVE-2019-18811 | high | — | 8.0 | 5y ago | Important: kernel security, bug fix, and enhancement update | |
| CVE-2019-19528 | high | — | 8.0 | 5y ago | Important: kernel security, bug fix, and enhancement update | |
| CVE-2019-2974 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2938 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-15890 | high | — | 8.0 | 6y ago | Important: container-tools:rhel8 security, bug fix, and enhancement update | |
| CVE-2019-2967 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2993 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2946 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-3011 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2960 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-3018 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2963 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2966 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-3009 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2968 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2957 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2982 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-3004 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2914 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2998 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2997 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2991 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-2911 | high | — | 8.0 | 6y ago | Important: mysql:8.0 security update | |
| CVE-2019-20382 | high | — | 8.0 | 6y ago | Important: virt:rhel security update | |
| CVE-2019-10086 | high | — | 8.0 | 6y ago | Important: javapackages-tools:201801 security update | |
| CVE-2019-0199 | high | — | 8.0 | 6y ago | Apache Tomcat Denial of Service vulnerability | |
| CVE-2019-12519 | high | — | 8.0 | 6y ago | Important: squid:4 security update | |
| CVE-2019-12525 | high | — | 8.0 | 6y ago | Important: squid:4 security update | |
| CVE-2019-20044 | high | — | 8.0 | 6y ago | Important: zsh security update | |
| CVE-2019-15604 | high | — | 8.0 | 6y ago | Important: nodejs:10 security update | |
| CVE-2019-15606 | high | — | 8.0 | 6y ago | Important: nodejs:12 security update | |
| CVE-2019-15605 | high | — | 8.0 | 6y ago | Important: nodejs:12 security update | |
| CVE-2019-19844 | high | — | 8.0 | 6y ago | Django before 1.11.27, 2.x before 2.2.9, and 3.x before 3.0.1 allows account takeover. A suitably crafted email address (that is equal to an existing user's email address after case transformation of… | |
| CVE-2019-16777 | high | — | 8.0 | 7y ago | Important: nodejs:10 security update | |
| CVE-2019-16776 | high | — | 8.0 | 7y ago | Important: nodejs:10 security update | |
| CVE-2019-16775 | high | — | 8.0 | 7y ago | Important: nodejs:10 security update | |
| CVE-2019-14378 | high | — | 8.0 | 7y ago | Important: container-tools:1.0 security and bug fix update | |
| CVE-2019-9946 | high | — | 8.0 | 7y ago | Important: container-tools:rhel8 security, bug fix, and enhancement update | |
| CVE-2019-2510 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-9518 | high | — | 8.0 | 7y ago | Important: nodejs:10 security update | |
| CVE-2019-9517 | high | — | 8.0 | 7y ago | Important: nodejs:10 security update | |
| CVE-2019-5737 | high | — | 8.0 | 7y ago | Important: nodejs:10 security update | |
| CVE-2019-9515 | high | — | 8.0 | 7y ago | Important: nodejs:10 security update | |
| CVE-2019-9516 | high | — | 8.0 | 7y ago | Important: nodejs:10 security update | |
| CVE-2019-9511 | high | — | 8.0 | 7y ago | Important: nodejs:10 security update | |
| CVE-2019-9513 | high | — | 8.0 | 7y ago | Important: nodejs:10 security update | |
| CVE-2019-12527 | high | — | 8.0 | 7y ago | Important: squid:4 security update | |
| CVE-2019-0203 | high | — | 8.0 | 7y ago | Important: subversion:1.10 security update | |
| CVE-2019-2584 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2585 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2969 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2503 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2596 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2695 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2420 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2784 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2531 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2757 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2812 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2589 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2486 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2617 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2830 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2811 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2780 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2800 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2436 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2502 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2689 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2607 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2626 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2625 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2694 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2620 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2950 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2834 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2826 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2808 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2814 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2802 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2801 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update | |
| CVE-2019-2636 | high | — | 8.0 | 7y ago | Important: mysql:8.0 security update |