CVE-2019-4236

MEDIUM Year: 2019
CVSS v3 Score
5.1
Medium
CVSS v2 Score
3.6
Low
Weakness Type
CWE-19
View all →

Vulnerability Description

A IBM Spectrum Protect 7.l client backup or archive operation running for an HP-UX VxFS object is silently skipping Access Control List (ACL) entries from backup or archive if there are more than twelve ACL entries associated with the object in total. As a result, it could allow a local attacker to restore or retrieve the object with incorrect ACL entries. IBM X-Force ID: 159418.

Related Vulnerabilities

CVE-2016-8226

MEDIUM
CVSS:4.9(Medium)

The BIOS in Lenovo System X M5, M6, and X6 systems allows administrators to cause a denial of service via updating a UEFI data structure.

CWE-192016

CVE-2015-1838

MEDIUM
CVSS:5.3(Medium)

modules/serverdensity_device.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.

CWE-192015

CVE-2015-1839

MEDIUM
CVSS:5.3(Medium)

modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.

CWE-192015

CVE-2015-8672

MEDIUM
CVSS:5.3(Medium)

The presentation transmission permission management mechanism in Huawei TE30, TE40, TE50, and TE60 multimedia video conferencing endpoints with software before V100R001C10SPC100 allows remote attacker...

CWE-192015

CVE-2018-0203

MEDIUM
CVSS:5.3(Medium)

A vulnerability in the SMTP relay of Cisco Unity Connection could allow an unauthenticated, remote attacker to send unsolicited email messages, aka a Mail Relay Vulnerability. The vulnerability is due...

CWE-192018

CVE-2019-11070

MEDIUM
CVSS:5.3(Medium)

WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video (HLS, DASH, or Smooth Streaming), an error resulting in deano...

CWE-192019