Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-19702PUBLISHED: 2019-12-10
The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this to perform a denial of service against the DMARC reporting functionality, such as by referencing the /dev/random file within XML do...
CVE-2019-19703PUBLISHED: 2019-12-10In Ktor through 1.2.6, the client resends data from the HTTP Authorization header to a redirect location.
CVE-2012-1577PUBLISHED: 2019-12-10lib/libc/stdlib/random.c in OpenBSD returns 0 when seeded with 0.
CVE-2012-5620PUBLISHED: 2019-12-10** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
CVE-2013-1689PUBLISHED: 2019-12-10Mozilla Firefox 20.0a1 and earlier allows remote attackers to cause a denial of service (crash), related to event handling with frames.
User Rank: Apprentice
3/20/2014 | 11:56:32 AM