CVSS: 4.9EPSS: 0%CPEs: 19EXPL: 0CVE-2019-2757 – mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2019)
https://notcve.org/view.php?id=CVE-2019-2757
23 Jul 2019 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts)... • http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html •
CVSS: 4.9EPSS: 0%CPEs: 16EXPL: 0CVE-2019-2755 – mysql: Server: Replication unspecified vulnerability (CPU Jul 2019)
https://notcve.org/view.php?id=CVE-2019-2755
23 Jul 2019 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impact... • http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html •
CVSS: 6.5EPSS: 0%CPEs: 27EXPL: 0CVE-2019-2740 – mysql: Server: XML unspecified vulnerability (CPU Jul 2019)
https://notcve.org/view.php?id=CVE-2019-2740
23 Jul 2019 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: XML). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availabili... • http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00037.html •
CVSS: 4.9EPSS: 0%CPEs: 15EXPL: 0CVE-2019-2752 – mysql: Server: Options unspecified vulnerability (CPU Jul 2019)
https://notcve.org/view.php?id=CVE-2019-2752
23 Jul 2019 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected are 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). • http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html •
CVSS: 3.5EPSS: 0%CPEs: 20EXPL: 0CVE-2019-2738 – mysql: Server: Compiling unspecified vulnerability (CPU Jul 2019)
https://notcve.org/view.php?id=CVE-2019-2738
23 Jul 2019 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Compiling). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.0 Base Score 3.1 (Confidentiality impacts). • http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html •
CVSS: 5.1EPSS: 0%CPEs: 23EXPL: 0CVE-2019-2739 – mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2019)
https://notcve.org/view.php?id=CVE-2019-2739
23 Jul 2019 — Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server ... • http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00037.html •
CVSS: 6.5EPSS: 0%CPEs: 17EXPL: 0CVE-2019-9959 – poppler: integer overflow in JPXStream::init function leading to memory consumption
https://notcve.org/view.php?id=CVE-2019-9959
22 Jul 2019 — The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo. La función JPXStream::init en Poppler versión 0.78.0 y anteriores, no comprueba los valores negativos de la longitud de la transmisión, lo que conlleva a un Desbordamiento de Enteros, y por lo tanto hace posible asignar una gr... • http://www.securityfocus.com/bid/109342 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.3EPSS: 0%CPEs: 33EXPL: 0CVE-2019-2762 – OpenJDK: Insufficient checks of suppressed exceptions in deserialization (Utilities, 8212328)
https://notcve.org/view.php?id=CVE-2019-2762
21 Jul 2019 — Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Utilities). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedd... • http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00038.html •
CVSS: 5.3EPSS: 0%CPEs: 33EXPL: 0CVE-2019-2769 – OpenJDK: Unbounded memory allocation during deserialization in Collections (Utilities, 8213432)
https://notcve.org/view.php?id=CVE-2019-2769
21 Jul 2019 — Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Utilities). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedd... • http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00038.html • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 3.4EPSS: 0%CPEs: 23EXPL: 0CVE-2019-2786 – OpenJDK: Insufficient restriction of privileges in AccessController (Security, 8216381)
https://notcve.org/view.php?id=CVE-2019-2786
21 Jul 2019 — Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may sig... • http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00038.html •