Vulnerabilities > Improper Handling of Exceptional Conditions

DATE CVE VULNERABILITY TITLE RISK
2019-11-08 CVE-2019-10222 Improper Handling of Exceptional Conditions vulnerability in multiple products
A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests.
network
low complexity
ceph redhat fedoraproject CWE-755
7.5
2019-11-07 CVE-2011-2336 Improper Handling of Exceptional Conditions vulnerability in Google Blink M11
An issue exists in WebKit in Google Chrome before Blink M12.
network
low complexity
google CWE-755
6.5
2019-11-07 CVE-2011-2807 Improper Handling of Exceptional Conditions vulnerability in Google Blink M11/M12
Incorrect handling of timer information in Timer.cpp in WebKit in Google Chrome before Blink M13.
network
low complexity
google CWE-755
6.5
2019-11-06 CVE-2011-4625 Improper Handling of Exceptional Conditions vulnerability in multiple products
simplesamlphp before 1.6.3 (squeeze) and before 1.8.2 (sid) incorrectly handles XML encryption which could allow remote attackers to decrypt or forge messages.
network
low complexity
simplesamlphp debian CWE-755
7.5
2019-11-02 CVE-2019-18668 Improper Handling of Exceptional Conditions vulnerability in Wpwham Currency Switcher for Woocommerce
An issue was discovered in the Currency Switcher addon before 2.11.2 for WooCommerce if a user provides a currency that was not added by the administrator.
network
low complexity
wpwham CWE-755
6.5
2019-10-31 CVE-2009-5043 Improper Handling of Exceptional Conditions vulnerability in multiple products
burn allows file names to escape via mishandled quotation marks
network
low complexity
burn-project debian CWE-755
critical
9.8
2019-10-29 CVE-2019-6848 Improper Handling of Exceptional Conditions vulnerability in Schneider-Electric products
A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580 CPU (BMEx58*) and Modicon M580 communication module (BMENOC0311, BMENOC0321) (see notification for version info), which could cause a Denial of Service attack on the PLC when sending specific data on the REST API of the controller/communication module.
network
low complexity
schneider-electric CWE-755
8.6
2019-10-29 CVE-2019-6847 Improper Handling of Exceptional Conditions vulnerability in Schneider-Electric products
A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Service attack on the FTP service when upgrading the firmware with a version incompatible with the application in the controller using FTP protocol.
network
low complexity
schneider-electric CWE-755
4.9
2019-10-29 CVE-2019-6844 Improper Handling of Exceptional Conditions vulnerability in Schneider-Electric products
A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Service atack on the PLC when upgrading the controller with a firmware package containing an invalid web server image using FTP protocol.
network
low complexity
schneider-electric CWE-755
4.9
2019-10-29 CVE-2019-6843 Improper Handling of Exceptional Conditions vulnerability in Schneider-Electric products
A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580 with firmware (version prior to V3.10), Modicon M340 (all firmware versions), and Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Service attack on the PLC when upgrading the controller with an empty firmware package using FTP protocol.
network
low complexity
schneider-electric CWE-755
4.9