Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2019-07-30 CVE-2019-14410 Use of Externally-Controlled Format String vulnerability in Cpanel
Maketext in cPanel before 78.0.2 allows format-string injection in the Email store_filter UAPI (SEC-472).
local
low complexity
cpanel CWE-134
3.3
3.3
2019-07-30 CVE-2019-14407 Unspecified vulnerability in Cpanel
cPanel before 78.0.2 reveals internal data to OpenID providers (SEC-415).
network
low complexity
cpanel
2.7
2.7
2019-07-30 CVE-2019-14402 Unspecified vulnerability in Cpanel
cPanel before 78.0.18 unsafely determines terminal capabilities by using infocmp (SEC-481).
local
low complexity
cpanel
3.3
3.3
2019-07-30 CVE-2019-14396 Unspecified vulnerability in Cpanel
API Analytics adminbin in cPanel before 80.0.5 allows spoofed insertions of log data (SEC-495).
local
low complexity
cpanel
3.3
3.3
2019-07-30 CVE-2019-14395 Incorrect Permission Assignment for Critical Resource vulnerability in Cpanel
cPanel before 80.0.5 uses world-readable permissions for the Queueprocd log (SEC-494).
local
low complexity
cpanel CWE-732
3.3
3.3
2019-07-30 CVE-2019-14391 Unspecified vulnerability in Cpanel
cPanel before 82.0.2 does not properly enforce Reseller package creation ACLs (SEC-514).
local
low complexity
cpanel
3.3
3.3
2019-07-26 CVE-2018-20855 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in the Linux kernel before 4.18.7.
local
low complexity
linux opensuse netapp CWE-119
3.3
3.3
2019-07-23 CVE-2019-2876 Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core).
local
low complexity
oracle opensuse
3.3
3.3
2019-07-23 CVE-2019-2875 Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core).
local
low complexity
oracle opensuse
3.3
3.3
2019-07-23 CVE-2019-2874 Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core).
local
low complexity
oracle opensuse
3.3
3.3