IDCVSSSummaryLast (major) updatePublished
CVE-2020-28949 None
Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed.
27-11-2020 - 12:15 19-11-2020 - 19:15
CVE-2020-28948 None
Archive_Tar through 1.4.10 allows an unserialization attack because phar: is blocked but PHAR: is not blocked.
27-11-2020 - 12:15 19-11-2020 - 19:15
CVE-2020-25738 None
CyberArk Endpoint Privilege Manager (EPM) 11.1.0.173 allows attackers to bypass a Credential Theft protection mechanism by injecting a DLL into a process that normally has credential access, such as a Chrome process that reads credentials from a SQLi
27-11-2020 - 06:15 27-11-2020 - 06:15
CVE-2020-28368 None
Xen through 4.14.x allows guest OS administrators to obtain sensitive information (such as AES keys from outside the guest) via a side-channel attack on a power/energy monitoring interface, aka a "Platypus" attack. NOTE: there is only one logically i
27-11-2020 - 05:15 10-11-2020 - 19:15
CVE-2020-29145 None
In Ericsson BSCS iX R18 Billing & Rating iX R18, ADMX is a web base module in BSCS iX that is vulnerable to stored XSS via the name or description field to a solutionUnitServlet?SuName=UserReferenceDataSU Access Rights Group. In most test cases, sess
27-11-2020 - 04:15 27-11-2020 - 04:15
CVE-2020-29144 None
In Ericsson BSCS iX R18 Billing & Rating iX R18, MX is a web base module in BSCS iX that is vulnerable to stored XSS via an Alert Dashboard comment. In most test cases, session hijacking was also possible by utilizing the XSS vulnerability. This pote
27-11-2020 - 04:15 27-11-2020 - 04:15
CVE-2020-25654 None
An ACL bypass flaw was found in pacemaker before 1.1.24-rc1 and 2.0.5-rc2. An attacker having a local account on the cluster and in the haclient group could use IPC communication with various daemons directly to perform certain tasks that they would
27-11-2020 - 03:15 24-11-2020 - 20:15
CVE-2020-24977 6.4
GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.
27-11-2020 - 03:15 04-09-2020 - 00:15
CVE-2020-29137 None
cPanel before 90.0.17 allows self-XSS via the WHM Transfer Tool interface (SEC-577).
27-11-2020 - 02:15 27-11-2020 - 02:15
CVE-2020-29136 None
In cPanel before 90.0.17, 2FA can be bypassed via a brute-force approach (SEC-575).
27-11-2020 - 02:15 27-11-2020 - 02:15
CVE-2020-29135 None
cPanel before 90.0.17 has multiple instances of URL parameter injection (SEC-567).
27-11-2020 - 02:15 27-11-2020 - 02:15
CVE-2020-29133 None
jsp/upload.jsp in Coremail XT 5.0 allows XSS via an uploaded personal signature, as demonstrated by a .jpg.html filename in the signImgFile parameter.
27-11-2020 - 01:15 27-11-2020 - 01:15
CVE-2020-12262 None
Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 devices allow /cgi-bin/cgiServer.exx?page= XSS.
27-11-2020 - 00:15 27-11-2020 - 00:15
CVE-2018-19787 4.3
An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, as demonstrated by "j a v a s c r i p t:" in Interne
26-11-2020 - 21:15 02-12-2018 - 10:29
CVE-2020-29130 None
slirp.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length.
26-11-2020 - 20:15 26-11-2020 - 20:15
CVE-2020-29129 None
ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length.
26-11-2020 - 20:15 26-11-2020 - 20:15
CVE-2020-26936 None
Cloudera Data Engineering (CDE) before 1.1 was vulnerable to a CSRF attack.
26-11-2020 - 19:15 26-11-2020 - 19:15
CVE-2020-29042 None
An issue was discovered in BigBlueButton through 2.2.29. A brute-force attack may occur because an unlimited number of codes can be entered for a meeting that is protected by an access code.
26-11-2020 - 18:15 26-11-2020 - 18:15
CVE-2020-29043 None
An issue was discovered in BigBlueButton through 2.2.29. When at attacker is able to view an account_activations/edit?token= URI, the attacker can create an approved user account associated with an email address that has an arbitrary domain name.
26-11-2020 - 18:15 26-11-2020 - 18:15
CVE-2020-13886 None
Intelbras TIP 200 60.61.75.15, TIP 200 LITE 60.61.75.15, and TIP 300 65.61.75.22 devices allow cgi-bin/cgiServer.exx?page=../ Directory Traversal.
26-11-2020 - 17:15 26-11-2020 - 17:15
CVE-2020-27207 None
Zetetic SQLCipher 4.x before 4.4.1 has a use-after-free, related to sqlcipher_codec_pragma and sqlite3Strlen30 in sqlite3.c. A remote denial of service attack can be performed. For example, a SQL injection can be used to execute the crafted SQL comma
26-11-2020 - 17:15 26-11-2020 - 17:15
CVE-2020-27663 None
In GLPI before 9.5.3, ajax/getDropdownValue.php has an Insecure Direct Object Reference (IDOR) vulnerability that allows an attacker to read data from any itemType (e.g., Ticket, Users, etc.).
26-11-2020 - 17:15 26-11-2020 - 17:15
CVE-2020-27662 None
In GLPI before 9.5.3, ajax/comments.php has an Insecure Direct Object Reference (IDOR) vulnerability that allows an attacker to read data from any database table (e.g., glpi_tickets, glpi_users, etc.).
26-11-2020 - 17:15 26-11-2020 - 17:15
CVE-2020-7778 None
This affects the package systeminformation before 4.30.2. The attacker can overwrite the properties and functions of an object, which can lead to executing OS commands.
26-11-2020 - 11:15 26-11-2020 - 11:15
CVE-2020-7779 None
All versions of package djvalidator are vulnerable to Regular Expression Denial of Service (ReDoS) by sending crafted invalid emails - for example, --@---------------------------------------------------------------------------------------------------
26-11-2020 - 11:15 26-11-2020 - 11:15
CVE-2020-1945 3.3
Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information. The fixcrlf and replaceregexp tasks also copy files fr
26-11-2020 - 09:15 14-05-2020 - 16:15
CVE-2020-29128 None
petl before 1.68, in some configurations, allows resolution of entities in an XML document.
26-11-2020 - 05:15 26-11-2020 - 05:15
CVE-2020-28984 None
prive/formulaires/configurer_preferences.php in SPIP before 3.2.8 does not properly validate the couleur, display, display_navigation, display_outils, imessage, and spip_ecran parameters.
26-11-2020 - 04:15 23-11-2020 - 22:15
CVE-2020-27255 None
A heap overflow vulnerability exists within FactoryTalk Linx Version 6.11 and prior. This vulnerability could allow a remote, unauthenticated attacker to send malicious set attribute requests, which could result in the leaking of sensitive informatio
26-11-2020 - 02:33 26-11-2020 - 02:15
CVE-2020-27253 None
A flaw exists in the Ingress/Egress checks routine of FactoryTalk Linx Version 6.11 and prior. This vulnerability could allow a remote, unauthenticated attacker to specifically craft a malicious packet resulting in a denial-of-service condition on th
26-11-2020 - 02:33 26-11-2020 - 02:15
CVE-2020-27251 None
A heap overflow vulnerability exists within FactoryTalk Linx Version 6.11 and prior. This vulnerability could allow a remote, unauthenticated attacker to send malicious port ranges, which could result in remote code execution.
26-11-2020 - 02:33 26-11-2020 - 02:15
CVE-2020-25653 None
A race condition vulnerability was found in the way the spice-vdagentd daemon handled new client connections. This flaw may allow an unprivileged local guest user to become the active agent for spice-vdagentd, possibly resulting in a denial of servic
26-11-2020 - 02:33 26-11-2020 - 02:15
CVE-2020-25652 None
A flaw was found in the spice-vdagentd daemon, where it did not properly handle client connections that can be established via the UNIX domain socket in `/run/spice-vdagentd/spice-vdagent-sock`. Any unprivileged local guest user could use this flaw t
26-11-2020 - 02:33 26-11-2020 - 02:15
CVE-2020-29070 None
osCommerce 2.3.4.1 has XSS vulnerability via the authenticated user entering the XSS payload into the title section of newsletters.
26-11-2020 - 02:33 25-11-2020 - 20:15
CVE-2020-25651 None
A flaw was found in the SPICE file transfer protocol. File data from the host system can end up in full or in parts in the client connection of an illegitimate local user in the VM system. Active file transfers from other users could also be interrup
26-11-2020 - 02:32 26-11-2020 - 02:15
CVE-2020-14190 None
Affected versions of Atlassian Fisheye/Crucible allow remote attackers to achieve Regex Denial of Service via user-supplied regex in EyeQL. The affected versions are before version 4.8.4.
26-11-2020 - 02:32 25-11-2020 - 23:15
CVE-2020-29074 None
scan.c in x11vnc 0.9.16 uses IPC_CREAT|0777 in shmget calls, which allows access by actors other than the current user.
26-11-2020 - 02:32 25-11-2020 - 23:15
CVE-2020-14191 None
Affected versions of Atlassian Fisheye/Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the MessageBundleResource within Atlassian Gadgets. The affected versions are before versio
26-11-2020 - 02:32 25-11-2020 - 22:15
CVE-2020-16846 7.5
An issue was discovered in SaltStack Salt through 3002. Sending crafted web requests to the Salt API, with the SSH client enabled, can result in shell injection.
26-11-2020 - 00:15 06-11-2020 - 08:15
CVE-2020-3992 10.0
OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401-SG, 6.5 before ESXi650-202010401-SG) has a use-after-free issue. A malicious actor residing in the management network who has access to port 427 on an ES
26-11-2020 - 00:15 20-10-2020 - 17:15
CVE-2020-1319 9.3
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1129.
26-11-2020 - 00:15 11-09-2020 - 17:15
CVE-2020-8352 2.1
In some Lenovo Desktop models, the Configuration Change Detection BIOS setting failed to detect SATA configuration changes.
25-11-2020 - 19:28 11-11-2020 - 18:15
CVE-2020-26075 9.0
A vulnerability in the REST API of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to gain access to the back-end database of an affected device. The vulnerability is due to insufficient input validation of REST A
25-11-2020 - 19:25 18-11-2020 - 18:15
CVE-2020-13954 4.3
By default, Apache CXF creates a /services page containing a listing of the available endpoint names and addresses. This webpage is vulnerable to a reflected Cross-Site Scripting (XSS) attack via the styleSheetPath, which allows a malicious actor to
25-11-2020 - 19:15 12-11-2020 - 13:15
CVE-2019-17573 4.3
By default, Apache CXF creates a /services page containing a listing of the available endpoint names and addresses. This webpage is vulnerable to a reflected Cross-Site Scripting (XSS) attack, which allows a malicious actor to inject javascript into
25-11-2020 - 19:15 16-01-2020 - 18:15
CVE-2020-26072 5.5
A vulnerability in the SOAP API of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to access and modify information on devices that belong to a different domain. The vulnerability is due to insufficient authorizat
25-11-2020 - 19:13 18-11-2020 - 18:15
CVE-2019-18899 2.1
The apt-cacher-ng package of openSUSE Leap 15.1 runs operations in user owned directory /run/apt-cacher-ng with root privileges. This can allow local attackers to influence the outcome of these operations. This issue affects: openSUSE Leap 15.1 apt-c
25-11-2020 - 18:51 23-01-2020 - 15:15
CVE-2019-3689 10.0
The nfs-utils package in SUSE Linux Enterprise Server 12 before and including version 1.3.0-34.18.1 and in SUSE Linux Enterprise Server 15 before and including version 2.1.1-6.10.2 the directory /var/lib/nfs is owned by statd:nogroup. This directory
25-11-2020 - 18:51 19-09-2019 - 14:15
CVE-2020-17490 2.1
The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions.
25-11-2020 - 18:45 06-11-2020 - 08:15
CVE-2020-8036 5.0
The tok2strbuf() function in tcpdump 4.10.0-PRE-GIT was used by the SOME/IP dissector in an unsafe way.
25-11-2020 - 18:45 04-11-2020 - 18:15
Back to Top Mark selected
Back to Top