Vulnerabilities > High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-04	CVE-2010-3662	SQL Injection vulnerability in Typo3 TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows SQL Injection on the backend. network low complexity typo3 CWE-89	8.8
2019-11-04	CVE-2017-5333	Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in the extract_group_icon_cursor_resource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) or execute arbitrary code via a crafted executable file. local low complexity icoutils-project redhat canonical debian opensuse CWE-190	7.8
2019-11-04	CVE-2017-5332	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The extract_group_icon_cursor_resource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable. local low complexity icoutils-project redhat canonical debian opensuse CWE-119	7.8
2019-11-04	CVE-2017-5331	Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in the check_offset function in b/wrestool/fileread.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable. local low complexity icoutils-project canonical debian opensuse CWE-190	7.8
2019-11-04	CVE-2019-18178	Use After Free vulnerability in Amazon Freertos+Fat 160919A Real Time Engineers FreeRTOS+FAT 160919a has a use after free. network low complexity amazon CWE-416	7.5
2019-11-04	CVE-2019-17210	Improper Input Validation vulnerability in ARM Mbed-Mqtt and Mbed-Os A denial-of-service issue was discovered in the MQTT library in Arm Mbed OS 2017-11-02. network low complexity arm CWE-20	7.5
2019-11-04	CVE-2013-4251	Improper Privilege Management vulnerability in multiple products The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories. local low complexity scipy fedoraproject redhat debian CWE-269	7.8
2019-11-04	CVE-2005-4890	Improper Input Validation vulnerability in multiple products There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo 1.x before 1.7.4 via "su - user -c program". local low complexity sudo-project debian redhat CWE-20	7.8
2019-11-04	CVE-2019-13496	Improper Validation of Integrity Check Value vulnerability in Oneidentity Cloud Access Manager One Identity Cloud Access Manager before 8.1.4 Hotfix 1 allows OTP bypass via vectors involving a man in the middle, the One Identity Defender product, and replacing a failed SAML response with a successful SAML response. network high complexity oneidentity CWE-354	8.1
2019-11-04	CVE-2013-4105	Information Exposure vulnerability in Cryptocat Project Cryptocat Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure network low complexity cryptocat-project CWE-200	7.5

Vulnerabilities > High {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"High"}]}

Vulnerabilities > High