CVE-2019-0016

MEDIUM Year: 2019
CVSS v3 Score
6.5
Medium
CVSS v2 Score
5.5
Medium
Weakness Type
NVD-CWE-Other
View all →

Vulnerability Description

A malicious authenticated user may be able to delete a device from the Junos Space database without the necessary privileges through crafted Ajax interactions obtained from another legitimate delete action performed by another administrative user. Affected releases are Juniper Networks Junos Space versions prior to 18.3R1.

Related Vulnerabilities

CVE-2006-7031

MEDIUM
CVSS:6.5(Medium)

Microsoft Internet Explorer 6.0.2900 SP2 and earlier allows remote attackers to cause a denial of service (crash) via a table element with a CSS attribute that sets the position, which triggers an "un...

NVD-CWE-Other2006

CVE-2009-3960

MEDIUM
CVSS:6.5(Medium)

Unspecified vulnerability in BlazeDS 3.2 and earlier, as used in LiveCycle 8.0.1, 8.2.1, and 9.0, LiveCycle Data Services 2.5.1, 2.6.1, and 3.0, Flex Data Services 2.0.1, and ColdFusion 7.0.2, 8.0, 8....

NVD-CWE-Other2009

CVE-2012-4818

MEDIUM
CVSS:6.5(Medium)

IBM InfoSphere Information Server 8.1, 8.5, and 8,7 could allow a remote authenticated attacker to obtain sensitive information, caused by improper restrictions on directories. An attacker could explo...

NVD-CWE-Other2012

CVE-2013-7447

MEDIUM
CVSS:6.5(Medium)

Integer overflow in the gdk_cairo_set_source_pixbuf function in gdk/gdkcairo.c in GTK+ before 3.9.8, as used in eom, gnome-photos, eog, gambas3, thunar, pinpoint, and possibly other applications, allo...

NVD-CWE-Other2013

CVE-2014-9908

MEDIUM
CVSS:6.5(Medium)

A Denial of Service vulnerability exists in Google Android 4.4.4, 5.0.2, and 5.1.1, which allows malicious users to block Bluetooh access (Android Bug ID A-28672558).

NVD-CWE-Other2014