How severe is CVE-2019-16214?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.7 out of 10.

What type of vulnerability is CVE-2019-16214?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2019-16214

MEDIUM Year: 2019

CVSS v3 Score

5.7

Medium

CVSS v2 Score

3.5

Low

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

Libra Core before 2019-09-03 has an erroneous regular expression for inline comments, which makes it easier for attackers to interfere with code auditing by using a nonstandard line-break character for a comment. For example, a Move module author can enter the // sequence (which introduces a single-line comment), followed by very brief comment text, the \r character, and code that has security-critical functionality. In many popular environments, this code is displayed on a separate line, and thus a reader may infer that the code is executed. However, the code is NOT executed, because language/compiler/ir_to_bytecode/src/parser.rs allows the comment to continue after the \r character.

CVE-2016-3464

MEDIUM

CVSS:5.7(Medium)

Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.3 allows remote authenticated users to affect confidentiality via vectors related t...

NVD-CWE-Other2016

CVE-2016-3472

MEDIUM

CVSS:5.7(Medium)

Unspecified vulnerability in the Siebel Engineering - Installer and Deployment component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confi...

NVD-CWE-Other2016

CVE-2016-5537

MEDIUM

CVSS:5.7(Medium)

Unspecified vulnerability in the NetBeans component in Oracle Fusion Middleware 8.1 allows local users to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous in...

NVD-CWE-Other2016

CVE-2017-10051

MEDIUM

CVSS:5.7(Medium)

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). The supported version that is affected is 8.5.3.0. Easily exploitable vulner...

NVD-CWE-Other2017

CVE-2017-10389

MEDIUM

CVSS:5.7(Medium)

Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: PMS). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerab...

NVD-CWE-Other2017

CVE-2017-3276

MEDIUM

CVSS:5.7(Medium)

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel Zones virtualized block driver). The supported version that is affected is 11.3. Difficult to exploit ...

NVD-CWE-Other2017

CVE-2019-16214

Vulnerability Description

Related Vulnerabilities

CVE-2016-3464

CVE-2016-3472

CVE-2016-5537

CVE-2017-10051

CVE-2017-10389

CVE-2017-3276