How severe is CVE-2019-19269?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.9 out of 10.

What type of vulnerability is CVE-2019-19269?

This is classified as CWE-476, which is a common weakness in software security.

CVE-2019-19269 - MEDIUM Severity | CVSS 4.9

Vulnerability Description

An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL sk_X509_REVOKED_value() function when encountering an empty CRL installed by a system administrator. The dereference occurs when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup.

Related Vulnerabilities

CVE-2019-14847

MEDIUM

CVSS:4.9(Medium)

A flaw was found in samba 4.0.0 before samba 4.9.15 and samba 4.10.x before 4.10.10. An attacker can crash AD DC LDAP server via dirsync resulting in denial of service. Privilege escalation is not pos...

CWE-4762019

CVE-2020-12514

MEDIUM

CVSS:4.9(Medium)

Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd

CWE-4762020

CVE-2020-1995

MEDIUM

CVSS:4.9(Medium)

A NULL pointer dereference vulnerability in Palo Alto Networks PAN-OS allows an authenticated administrator to send a request that causes the rasmgr daemon to crash. Repeated attempts to send this req...

CWE-4762020

CVE-2023-32970

MEDIUM

CVSS:4.9(Medium)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to launch a denial...

CWE-4762023

CVE-2023-41274

MEDIUM

CVSS:4.9(Medium)

CWE-4762023

CVE-2024-11499

MEDIUM

CVSS:4.9(Medium)

A vulnerability exists in RTU500 IEC 60870-4-104 controlled station functionality, that allows an authenticated and authorized attacker to perform a CMU restart. The vulnerability can be triggered if ...

CWE-4762024