Vulnerabilities - Yack CVE

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-8259 2Siemens Uvnc 4Sinumerik Access Mymachine/p2p Sinumerik Pcu Base Win10 Software/ipcSinumerik Pcu Base Win7 Software/ipc+1 more Jun 17, 2026 Mar 5, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 UltraVNC revision 1198 contains multiple memory leaks (CWE-655) in VNC client code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can b...Show more UltraVNC revision 1198 contains multiple memory leaks (CWE-655) in VNC client code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 1199.Show less
CVE-2019-8258 2Siemens Uvnc 4Sinumerik Access Mymachine/p2p Sinumerik Pcu Base Win10 Software/ipcSinumerik Pcu Base Win7 Software/ipc+1 more Jun 17, 2026 Mar 5, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 UltraVNC revision 1198 has a heap buffer overflow vulnerability in VNC client code which results code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revisi...Show more UltraVNC revision 1198 has a heap buffer overflow vulnerability in VNC client code which results code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1199.Show less
CVE-2019-8257 1Adobe 2Acrobat Dc Acrobat Reader Dc Jun 17, 2026 Jan 28, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use aft...Show more Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution .Show less
CVE-2019-8256 1Adobe 1Coldfusion Jun 17, 2026 Dec 19, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 ColdFusion versions Update 6 and earlier have an insecure inherited permissions of default installation directory vulnerability. Successful exploitation could lead to privilege escalation.
CVE-2019-8255 1Adobe 1Brackets Jun 17, 2026 Dec 19, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Brackets versions 1.14 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2019-8254 1Adobe 1Photoshop Cc Jun 17, 2026 Dec 19, 2019 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Adobe Photoshop CC versions before 20.0.8 and 21.0.x before 21.0.2 have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2019-8253 1Adobe 1Photoshop Cc Jun 17, 2026 Dec 19, 2019 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Adobe Photoshop CC versions before 20.0.8 and 21.0.x before 21.0.2 have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2019-8248 1Adobe 1Illustrator Cc Jun 17, 2026 Nov 14, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Adobe Illustrator CC versions 23.1 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
CVE-2019-8247 1Adobe 1Illustrator Cc Jun 17, 2026 Nov 14, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Adobe Illustrator CC versions 23.1 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
CVE-2019-8246 1Adobe 1Media Encoder Jun 17, 2026 Nov 14, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .
CVE-2019-8244 1Adobe 1Media Encoder Jun 17, 2026 Nov 14, 2019 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
CVE-2019-8243 1Adobe 1Media Encoder Jun 17, 2026 Nov 14, 2019 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
CVE-2019-8242 1Adobe 1Media Encoder Jun 17, 2026 Nov 14, 2019 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
CVE-2019-8241 1Adobe 1Media Encoder Jun 17, 2026 Nov 14, 2019 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
CVE-2019-8240 1Adobe 1Bridge Cc Jun 17, 2026 Nov 14, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Adobe Bridge CC versions 9.1 and earlier have a memory corruption vulnerability. Successful exploitation could lead to information disclosure.
CVE-2019-8239 1Adobe 1Bridge Cc Jun 17, 2026 Nov 14, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Adobe Bridge CC versions 9.1 and earlier have a memory corruption vulnerability. Successful exploitation could lead to information disclosure.
CVE-2019-8238 1Adobe 2Acrobat Dc Acrobat Reader Dc Jun 17, 2026 Oct 23, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Adobe Acrobat and Reader versions 2019.010.20100 and earlier; 2019.010.20099 and earlier versions; 2017.011.30140 and earlier version; 2017.011.30138 and earlier version; 2015.006.30495 and earlier versions; 2015.006.304...Show more Adobe Acrobat and Reader versions 2019.010.20100 and earlier; 2019.010.20099 and earlier versions; 2017.011.30140 and earlier version; 2017.011.30138 and earlier version; 2015.006.30495 and earlier versions; 2015.006.30493 and earlier versions have a Path Traversal vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.Show less
CVE-2019-8237 1Adobe 2Acrobat Dc Acrobat Reader Dc Jun 17, 2026 Oct 23, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an insuffi...Show more Adobe Acrobat and Reader versions 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlier have an insufficiently robust encryption vulnerability. Successful exploitation could lead to security feature bypass.Show less
CVE-2019-8236 1Adobe 1Creative Cloud Jun 17, 2026 Oct 23, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Creative Cloud Desktop Application version 4.6.1 and earlier versions have Security Bypass vulnerability. Successful exploitation could lead to Privilege Escalation in the context of the current user.
CVE-2019-8235 1Magento 1Magento Jun 17, 2026 Oct 30, 2019 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 An insecure direct object reference (IDOR) vulnerability exists in Magento 2.3 prior to 2.3.1, 2.2 prior to 2.2.8, and 2.1 prior to 2.1.17 versions. An authenticated user may be able to view personally identifiable shipp...Show more An insecure direct object reference (IDOR) vulnerability exists in Magento 2.3 prior to 2.3.1, 2.2 prior to 2.2.8, and 2.1 prior to 2.1.17 versions. An authenticated user may be able to view personally identifiable shipping details of another user due to insufficient validation of user controlled input.Show less
CVE-2019-8234 1Adobe 1Experience Manager Jun 17, 2026 Oct 25, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a cross-site request forgery vulnerability. Successful exploitation could lead to sensitive information disclosure.
CVE-2019-8233 1Magento 1Magento Jun 17, 2026 Nov 6, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 In Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1, an unauthenticated user can inject arbitrary JavaScript code as a result of the sanitization engine ignoring HTML comments.
CVE-2019-8232 1Magento 1Magento Jun 17, 2026 Nov 6, 2019 N/A· v4 6.6 MEDIUM· v3 6.0 MEDIUM· v2 In Magento prior to 1.9.4.3, Magento prior to 1.14.4.3, Magento 2.2 prior to 2.2.10, and Magento 2.3 prior to 2.3.3 or 2.3.2-p1, an authenticated user with administrative privileges for the import feature can execute arb...Show more In Magento prior to 1.9.4.3, Magento prior to 1.14.4.3, Magento 2.2 prior to 2.2.10, and Magento 2.3 prior to 2.3.3 or 2.3.2-p1, an authenticated user with administrative privileges for the import feature can execute arbitrary code through a race condition that allows webserver configuration file modification.Show less
CVE-2019-8231 1Magento 1Magento Jun 17, 2026 Nov 6, 2019 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 In Magento to 1.9.4.3 and Magento prior to 1.14.4.3, an authenticated user with administrative privileges for editing attribute sets can execute arbitrary code through custom layout modification.
CVE-2019-8230 1Magento 1Magento Jun 17, 2026 Nov 6, 2019 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 In Magentoprior to 1.9.4.3, and Magento prior to 1.14.4.3, an authenticated user with administrative privileges to edit configuration settings can execute arbitrary code through a crafted support/output path.

Previous 1...848586...14337 Next

Vulnerabilities (CVE)