CWE-693

Protection Mechanism Failure

The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.

554 vulnerabilities with CWE-693

CVE-2019-12697 HIGH

Cisco Firepower - Unauthenticated Malware and File Policy Bypass for RTF and RAR Files

CVSS 7.5

CVE-2019-12696 HIGH

Cisco Firepower - Unauthenticated Malware and File Policy Bypass for RTF and RAR Files

CVSS 7.5

CVE-2019-1975 MEDIUM

Cisco HyperFlex HX220c AF M5 < 3.5.2f - Cross-Frame Scripting via iframe

CVSS 6.1

CVE-2019-13516 HIGH

OSIsoft PI Web API < 2018 - Cross-Site Request Forgery

CVSS 8.8

CVE-2019-1970 MEDIUM

Cisco Firepower Threat Defense - Auth Bypass

CVSS 5.8

CVE-2019-3741 HIGH

Dell EMC Unity <5.0.0.0.5.116 - Info Disclosure

CVSS 7.8

CVE-2019-12938 MEDIUM

Analogic Poste.io <2.1.6 - Info Disclosure

CVSS 4.3

CVE-2019-10328 CRITICAL

Jenkins Pipeline Remote Loader Plugin <1.4 - Code Injection

CVSS 9.9

CVE-2019-1833 MEDIUM

Cisco Firepower Threat Defense - Policy Bypass

CVSS 5.8

CVE-2019-1832 MEDIUM

Cisco Firepower Threat Defense - Auth Bypass

CVSS 5.8

CVE-2019-3586 HIGH

McAfee Endpoint Security (ENS) <10.6.1 - Privilege Escalation

CVSS 7.5

CVE-2019-5024 HIGH

Capsule Technologies SmartLinx Neuron 2 <9.0.3 - Privilege Escalation

CVSS 7.6

CVE-2019-1003030 CRITICAL KEV

Jenkins Pipeline: Groovy Plugin <2.63 - RCE

CVSS 9.9

CVE-2019-1669 HIGH

Cisco Firepower Threat Defense - Protection Mechanism Failure via Traffic Inspection Memory Exhaustion

CVSS 8.6

CVE-2018-20251 MEDIUM

WinRAR <= 5.61 - Path Traversal via ACE Filename Field

CVSS 5.5

CVE-2018-11460 HIGH

SINUMERIK < V4.7 SP6 HF1, < V4.8 SP3 - Local Privilege Escalation

CVSS 7.8

CVE-2018-11459 HIGH

SINUMERIK - Privilege Escalation

CVSS 7.8

CVE-2018-15423 MEDIUM

Cisco HyperFlex HX Data Platform - Unauthenticated Clickjacking via Malicious iFrame Data

CVSS 4.7

CVE-2018-14281 HIGH

Foxit Reader and PhantomPDF < 9.1.0.5096 - Arbitrary File Write via exportData XFA Function

CVSS 8.8

CVE-2018-14280 HIGH

Foxit Reader and PhantomPDF < 9.1.0.5096 - Arbitrary File Write via XFA exportAsFDF Function

CVSS 8.8

CVE-2018-0384 MEDIUM

Cisco FireSIGHT System Software - Auth Bypass

CVSS 5.8

CVE-2018-0383 HIGH

Cisco FireSIGHT System Software - Auth Bypass

CVSS 8.6

CVE-2018-10631 MEDIUM

8840 Clinician Programmer - Code Injection

CVSS 6.3

CVE-2018-0333 MEDIUM

Cisco FireSIGHT System Software - Auth Bypass

CVSS 5.8

CVE-2018-9322 HIGH

BMW i-X-3-5-7 - Local Privilege Escalation

CVSS 7.8

Details

Vulnerabilities 554

Links