Vulnerabilities > Debian > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-07-11 CVE-2019-10192 Out-of-bounds Write vulnerability in multiple products
A heap-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0.14 and 5.x before 5.0.4.
network
low complexity
redislabs redhat debian canonical oracle CWE-787
6.5
6.5
2019-07-11 CVE-2019-13504 Out-of-bounds Read vulnerability in multiple products
There is an out-of-bounds read in Exiv2::MrwImage::readMetadata in mrwimage.cpp in Exiv2 through 0.27.2.
network
low complexity
exiv2 debian CWE-125
6.5
6.5
2019-07-10 CVE-2019-12470 Missing Authorization vulnerability in multiple products
Wikimedia MediaWiki through 1.32.1 has Incorrect Access Control.
network
low complexity
mediawiki debian CWE-862
4.0
4.0
2019-07-10 CVE-2019-12469 Missing Authorization vulnerability in multiple products
MediaWiki through 1.32.1 has Incorrect Access Control.
network
low complexity
mediawiki debian CWE-862
4.0
4.0
2019-07-10 CVE-2019-12474 Wikimedia MediaWiki 1.23.0 through 1.32.1 has an information leak.
network
low complexity
mediawiki debian
5.0
5.0
2019-07-10 CVE-2019-12473 Wikimedia MediaWiki 1.27.0 through 1.32.1 might allow DoS.
network
low complexity
mediawiki debian
5.0
5.0
2019-07-10 CVE-2019-12471 Cross-site Scripting vulnerability in multiple products
Wikimedia MediaWiki 1.30.0 through 1.32.1 has XSS. 		4.3
4.3
2019-07-10 CVE-2019-12466 Cross-Site Request Forgery (CSRF) vulnerability in multiple products
Wikimedia MediaWiki through 1.32.1 allows CSRF. 		6.8
6.8
2019-07-10 CVE-2019-12467 MediaWiki through 1.32.1 has Incorrect Access Control (issue 1 of 3).
network
low complexity
mediawiki debian
5.0
5.0
2019-07-09 CVE-2019-13454 Divide By Zero vulnerability in multiple products
ImageMagick 7.0.8-54 Q16 allows Division by Zero in RemoveDuplicateLayers in MagickCore/layer.c. 		4.3
4.3