VYPR

CVEs

1,630 total · page 22 of 33

  • CVE-2020-8599KEVMar 18, 2020
    risk 0.17cvss epss 0.12

    Trend Micro Apex One (2019) and OfficeScan XG server contain a vulnerable EXE file that could allow a remote attacker to write arbitrary data to an arbitrary path on affected installations and bypass ROOT login. Authentication is not required to exploit this vulnerability.

  • CVE-2020-8467KEVMar 18, 2020
    risk 0.14cvss epss 0.11

    A migration tool component of Trend Micro Apex One (2019) and OfficeScan XG contains a vulnerability which could allow remote attackers to execute arbitrary code on affected installations (RCE). An attempted attack requires user authentication.

  • CVE-2020-8468KEVMar 18, 2020
    risk 0.14cvss epss 0.06

    Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) agents are affected by a content validation escape vulnerability which could allow an attacker to manipulate certain agent client components. An attempted attack requires user…

  • CVE-2020-3950KEVMar 17, 2020
    risk 0.16cvss epss 0.07

    VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1) and Horizon Client for Mac (5.x and prior before 5.4.0) contain a privilege escalation vulnerability due to improper use of setuid binaries. Successful exploitation of this issue may…

  • CVE-2020-5849KEVMar 16, 2020
    risk 0.23cvss epss 0.93

    Unraid 6.8.0 allows authentication bypass.

  • CVE-2020-5847KEVMar 16, 2020
    risk 0.23cvss epss 0.96

    Unraid through 6.8.0 allows Remote Code Execution.

  • CVE-2020-0796KEVMar 12, 2020
    risk 0.29cvss epss 1.00

    A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests, aka 'Windows SMBv3 Client/Server Remote Code Execution Vulnerability'.

  • CVE-2020-0787KEVMar 12, 2020
    risk 0.26cvss epss 0.43

    An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.

  • CVE-2020-10181KEVMar 11, 2020
    risk 0.14cvss epss 0.14

    goform/formEMR30 in Sumavision Enhanced Multimedia Router (EMR) 3.0.4.27 allows creation of arbitrary users with elevated privileges (administrator) on a device, as demonstrated by a setString=new_user<*1*>administrator<*1*>123456 request.

  • CVE-2020-6207KEVMar 10, 2020
    risk 0.23cvss epss 0.98

    SAP Solution Manager (User Experience Monitoring), version- 7.2, due to Missing Authentication Check does not perform any authentication for a service resulting in complete compromise of all SMDAgents connected to the Solution Manager.

  • CVE-2020-0069KEVMar 10, 2020
    risk 0.12cvss epss 0.01

    In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User…

  • CVE-2020-0041KEVMar 10, 2020
    risk 0.14cvss epss 0.03

    In binder_transaction of binder.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2016-11021KEVMar 9, 2020
    risk 0.22cvss epss 0.69

    setSystemCommand on D-Link DCS-930L devices before 2.12 allows a remote attacker to execute code via an OS command in the SystemCommand parameter.

  • CVE-2020-10221KEVMar 8, 2020
    risk 0.22cvss epss 0.37

    lib/ajaxHandlers/ajaxAddTemplate.php in rConfig through 3.94 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the fileName POST parameter.

  • CVE-2020-10189KEVMar 6, 2020
    risk 0.23cvss epss 1.00

    Zoho ManageEngine Desktop Central before 10.0.474 allows remote code execution because of deserialization of untrusted data in getChartImage in the FileStorage class. This is related to the CewolfServlet and MDMLogUploaderServlet servlets.

  • CVE-2019-20500KEVMar 5, 2020
    risk 0.22cvss epss 0.97

    D-Link DWL-2600AP 4.2.0.15 Rev A devices have an authenticated OS command injection vulnerability via the Save Configuration functionality in the Web interface, using shell metacharacters in the admin.cgi?action=config_save configBackup or downloadServerip parameter.

  • CVE-2020-9054KEVMar 4, 2020
    risk 0.20cvss epss 1.00

    Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.21 contain a pre-authentication command injection vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable device. ZyXEL NAS devices achieve…

  • CVE-2019-17026KEVMar 2, 2020
    risk 0.19cvss epss 0.47

    Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 68.4.1, Thunderbird < 68.4.1, and Firefox < 72.0.1.

  • CVE-2020-6418KEVFeb 27, 2020
    risk 0.22cvss epss 0.79

    Type confusion in V8 in Google Chrome prior to 80.0.3987.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2020-3837KEVFeb 27, 2020
    risk 0.16cvss epss 0.16

    A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with kernel privileges.

  • CVE-2020-1938KEVFeb 24, 2020
    risk 0.23cvss epss 0.99

    When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be…

  • CVE-2020-3153KEVFeb 19, 2020
    risk 0.23cvss epss 0.28

    A vulnerability in the installer component of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated local attacker to copy user-supplied files to system level directories with system level privileges. The vulnerability is due to the incorrect handling…

  • CVE-2020-7796KEVFeb 18, 2020
    risk 0.19cvss epss 0.85

    Zimbra Collaboration Suite (ZCS) before 8.8.15 Patch 7 allows SSRF when WebEx zimlet is installed and zimlet JSP is enabled.

  • CVE-2020-0688KEVFeb 11, 2020
    risk 0.29cvss epss 1.00

    A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Memory Corruption Vulnerability'.

  • CVE-2020-0683KEVFeb 11, 2020
    risk 0.18cvss epss 0.08

    An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0686.

  • CVE-2020-0674KEVFeb 11, 2020
    risk 0.22cvss epss 0.87

    A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0673, CVE-2020-0710, CVE-2020-0711, CVE-2020-0712,…

  • CVE-2020-0618KEVFeb 11, 2020
    risk 0.23cvss epss 0.99

    A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests, aka 'Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability'.

  • CVE-2019-19356KEVFeb 7, 2020
    risk 0.19cvss epss 0.28

    Netis WF2419 is vulnerable to authenticated Remote Code Execution (RCE) as root through the router Web management page. The vulnerability has been found in firmware version V1.2.31805 and V2.2.36123. After one is connected to this page, it is possible to execute system commands…

  • CVE-2019-18988KEVFeb 7, 2020
    risk 0.16cvss epss 0.05

    TeamViewer Desktop through 14.7.1965 allows a bypass of remote-login access control because the same key is used for different customers' installations. It used a shared AES key for all installations since at least as far back as v7.0.43148, and used it for at least…

  • CVE-2020-8655KEVFeb 6, 2020
    risk 0.22cvss epss 0.58

    An issue was discovered in EyesOfNetwork 5.3. The sudoers configuration is prone to a privilege escalation vulnerability, allowing the apache user to run arbitrary commands as root via a crafted NSE script for nmap 7.

  • CVE-2020-8657KEVFeb 6, 2020
    risk 0.22cvss epss 0.92

    An issue was discovered in EyesOfNetwork 5.3. The installation uses the same API key (hardcoded as EONAPI_KEY in include/api_functions.php for API version 2.4.2) by default for all installations, hence allowing an attacker to calculate/guess the admin access token.

  • CVE-2020-8644KEVFeb 5, 2020
    risk 0.23cvss epss 0.87

    PlaySMS before 1.4.3 does not sanitize inputs from a malicious string.

  • CVE-2020-3118KEVFeb 5, 2020
    risk 0.12cvss epss 0.12

    A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a reload on an affected device. The vulnerability is due to improper validation of string input from…

  • CVE-2020-8515KEVFeb 1, 2020
    risk 0.23cvss epss 1.00

    DrayTek Vigor2960 1.3.1_Beta, Vigor3900 1.4.4_Beta, and Vigor300B 1.3.3_Beta, 1.4.2.1_Beta, and 1.4.4_Beta devices allow remote code execution as root (without authentication) via shell metacharacters to the cgi-bin/mainfunction.cgi URI. This issue has been fixed in…

  • CVE-2020-7247KEVJan 29, 2020
    risk 0.23cvss epss 0.99

    smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session, as demonstrated by shell metacharacters in a MAIL FROM field. This affects the "uncommented"…

  • CVE-2019-18426KEVJan 21, 2020
    risk 0.20cvss epss 0.68

    A vulnerability in WhatsApp Desktop versions prior to 0.3.9309 when paired with WhatsApp for iPhone versions prior to 2.20.10 allows cross-site scripting and local file reading. Exploiting the vulnerability requires the victim to click a link preview from a specially crafted…

  • CVE-2020-2555KEVJan 15, 2020
    risk 0.22cvss epss 0.97

    Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching,CacheStore,Invocation). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with…

  • CVE-2020-2551KEVJan 15, 2020
    risk 0.20cvss epss 0.93

    Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: WLS Core Components). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with…

  • CVE-2020-0646KEVJan 14, 2020
    risk 0.23cvss epss 0.99

    A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka '.NET Framework Remote Code Execution Injection Vulnerability'.

  • CVE-2020-0638KEVJan 14, 2020
    risk 0.18cvss epss 0.03

    An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Update Notification Manager Elevation of Privilege Vulnerability'.

  • CVE-2020-0601KEVJan 14, 2020
    risk 0.16cvss epss 0.89

    A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file…

  • CVE-2019-17558KEVDec 30, 2019
    risk 0.16cvss epss 0.99

    Apache Solr 5.0.0 to Apache Solr 8.3.1 are vulnerable to a Remote Code Execution through the VelocityResponseWriter. A Velocity template can be provided through Velocity templates in a configset `velocity/` directory or as a parameter. A user defined configset could contain…

  • CVE-2019-17621KEVDec 30, 2019
    risk 0.22cvss epss 0.90

    The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands as root, by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when connecting to the local network.

  • CVE-2019-20085KEVDec 30, 2019
    risk 0.23cvss epss 0.96

    TVT NVMS-1000 devices allow GET /.. Directory Traversal

  • CVE-2019-19781KEVDec 27, 2019
    risk 0.29cvss epss 1.00

    An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal.

  • CVE-2019-10758KEVDec 24, 2019
    risk 0.12cvss epss 0.85

    mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the `toBSON` method. A misuse of the `vm` dependency to perform `exec` commands in a non-safe environment.

  • CVE-2019-7483KEVDec 19, 2019
    risk 0.16cvss epss 0.04

    In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect CGI allows the user to test for the presence of a file on the server.

  • CVE-2019-8605KEVDec 18, 2019
    risk 0.16cvss epss 0.17

    A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to execute arbitrary code with system privileges.

  • CVE-2019-8526KEVDec 18, 2019
    risk 0.12cvss epss 0.01

    A use after free issue was addressed with improved memory management. This issue is fixed in macOS Mojave 10.14.4. An application may be able to gain elevated privileges.

  • CVE-2019-8506KEVDec 18, 2019
    risk 0.16cvss epss 0.18

    A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.