| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-17064 | Hig | 0.51 | 7.8 | 0.03 | Nov 11, 2020 | Microsoft Excel Remote Code Execution Vulnerability | ||
| CVE-2020-17062 | Hig | 0.51 | 7.8 | 0.04 | Nov 11, 2020 | Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability | ||
| CVE-2020-17061 | Hig | 0.58 | 8.8 | 0.04 | Nov 11, 2020 | Microsoft SharePoint Remote Code Execution Vulnerability | ||
| CVE-2020-17058 | Hig | 0.49 | 7.5 | 0.03 | Nov 11, 2020 | Microsoft Browser Memory Corruption Vulnerability | ||
| CVE-2020-17057 | Hig | 0.46 | 7.0 | 0.02 | Nov 11, 2020 | Windows Win32k Elevation of Privilege Vulnerability | ||
| CVE-2020-17055 | Hig | 0.51 | 7.8 | 0.03 | Nov 11, 2020 | Windows Remote Access Elevation of Privilege Vulnerability | ||
| CVE-2020-17053 | Hig | 0.49 | 7.5 | 0.03 | Nov 11, 2020 | Internet Explorer Memory Corruption Vulnerability | ||
| CVE-2020-17052 | Hig | 0.49 | 7.5 | 0.02 | Nov 11, 2020 | Scripting Engine Memory Corruption Vulnerability | ||
| CVE-2020-17047 | Hig | 0.51 | 7.5 | 0.25 | Nov 11, 2020 | Windows Network File System Denial of Service Vulnerability | ||
| CVE-2020-17044 | Hig | 0.51 | 7.8 | 0.03 | Nov 11, 2020 | Windows Remote Access Elevation of Privilege Vulnerability | ||
| CVE-2020-17043 | Hig | 0.51 | 7.8 | 0.03 | Nov 11, 2020 | Windows Remote Access Elevation of Privilege Vulnerability | ||
| CVE-2020-17042 | Hig | 0.58 | 8.8 | 0.05 | Nov 11, 2020 | Windows Print Spooler Remote Code Execution Vulnerability | ||
| CVE-2020-17041 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Print Configuration Elevation of Privilege Vulnerability | ||
| CVE-2020-17038 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Win32k Elevation of Privilege Vulnerability | ||
| CVE-2020-17037 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows WalletService Elevation of Privilege Vulnerability | ||
| CVE-2020-17035 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Kernel Elevation of Privilege Vulnerability | ||
| CVE-2020-17034 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Remote Access Elevation of Privilege Vulnerability | ||
| CVE-2020-17033 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Remote Access Elevation of Privilege Vulnerability | ||
| CVE-2020-17032 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Remote Access Elevation of Privilege Vulnerability | ||
| CVE-2020-17031 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Remote Access Elevation of Privilege Vulnerability | ||
| CVE-2020-17028 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Remote Access Elevation of Privilege Vulnerability | ||
| CVE-2020-17027 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Remote Access Elevation of Privilege Vulnerability | ||
| CVE-2020-17026 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Remote Access Elevation of Privilege Vulnerability | ||
| CVE-2020-17025 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Remote Access Elevation of Privilege Vulnerability | ||
| CVE-2020-17024 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Client Side Rendering Print Provider Elevation of Privilege Vulnerability | ||
| CVE-2020-17019 | Hig | 0.51 | 7.8 | 0.03 | Nov 11, 2020 | Microsoft Excel Remote Code Execution Vulnerability | ||
| CVE-2020-17016 | Hig | 0.52 | 8.0 | 0.03 | Nov 11, 2020 | Microsoft SharePoint Server Spoofing Vulnerability | ||
| CVE-2020-17014 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Print Spooler Elevation of Privilege Vulnerability | ||
| CVE-2020-17012 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Bind Filter Driver Elevation of Privilege Vulnerability | ||
| CVE-2020-17011 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Port Class Library Elevation of Privilege Vulnerability | ||
| CVE-2020-17010 | Hig | 0.51 | 7.8 | 0.02 | Nov 11, 2020 | Win32k Elevation of Privilege Vulnerability | ||
| CVE-2020-17007 | Hig | 0.46 | 7.0 | 0.01 | Nov 11, 2020 | Windows Error Reporting Elevation of Privilege Vulnerability | ||
| CVE-2020-17001 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2020 | Windows Print Spooler Elevation of Privilege Vulnerability | ||
| CVE-2020-16998 | Hig | 0.46 | 7.0 | 0.01 | Nov 11, 2020 | DirectX Elevation of Privilege Vulnerability | ||
| CVE-2020-16997 | Hig | 0.50 | 7.7 | 0.04 | Nov 11, 2020 | Remote Desktop Protocol Server Information Disclosure Vulnerability | ||
| CVE-2020-16994 | Hig | 0.48 | 7.3 | 0.02 | Nov 11, 2020 | Azure Sphere Unsigned Code Execution Vulnerability | ||
| CVE-2020-16992 | Hig | 0.49 | 7.5 | 0.01 | Nov 11, 2020 | Azure Sphere Elevation of Privilege Vulnerability | ||
| CVE-2020-16991 | Hig | 0.48 | 7.3 | 0.02 | Nov 11, 2020 | Azure Sphere Unsigned Code Execution Vulnerability | ||
| CVE-2020-16987 | Hig | 0.48 | 7.3 | 0.01 | Nov 11, 2020 | Azure Sphere Unsigned Code Execution Vulnerability | ||
| CVE-2020-16984 | Hig | 0.48 | 7.3 | 0.01 | Nov 11, 2020 | Azure Sphere Unsigned Code Execution Vulnerability | ||
| CVE-2020-16970 | Hig | 0.53 | 8.1 | 0.01 | Nov 11, 2020 | Azure Sphere Unsigned Code Execution Vulnerability | ||
| CVE-2020-25268 | Hig | 0.57 | 8.8 | 0.02 | Nov 10, 2020 | Remote Code Execution can occur via the external news feed in ILIAS 6.4 because of incorrect parameter sanitization for Magpie RSS data. | ||
| CVE-2020-24367 | Hig | 0.51 | 7.8 | 0.00 | Nov 10, 2020 | Incorrect file permissions in BlueStacks 4 through 4.230 on Windows allow a local attacker to escalate privileges by modifying a file that is later executed by a higher-privileged user. | ||
| CVE-2020-24063 | Hig | 0.47 | 7.2 | 0.01 | Nov 10, 2020 | The Canto plugin 1.3.0 for WordPress allows includes/lib/download.php?subdomain= SSRF. | ||
| CVE-2020-23968 | Hig | 0.51 | 7.8 | 0.01 | Nov 10, 2020 | Ilex International Sign&go Workstation Security Suite 7.1 allows elevation of privileges via a symlink attack on ProgramData\Ilex\S&G\Logs\000-sngWSService1.log. | ||
| CVE-2019-7357 | — | Hig | 0.57 | 8.8 | 0.01 | Nov 10, 2020 | Subrion CMS 4.2.1 has CSRF in panel/modules/plugins/. The attacker can remotely activate/deactivate the plugins. | |
| CVE-2020-28055 | Hig | 0.51 | 7.8 | 0.01 | Nov 10, 2020 | A vulnerability in the TCL Android Smart TV series V8-R851T02-LF1 V295 and below and V8-T658T01-LF1 V373 and below by TCL Technology Group Corporation allows a local unprivileged attacker, such as a malicious App, to read & write to the /data/vendor/tcl, /data/vendor/upgrade,… | ||
| CVE-2020-26820 | Hig | 0.47 | 7.2 | 0.04 | Nov 10, 2020 | SAP NetWeaver AS JAVA, versions - 7.20, 7.30, 7.31, 7.40, 7.50, allows an attacker who is authenticated as an administrator to use the administrator console, to expose unauthenticated access to the file system and upload a malicious file. The attacker or another user can then… | ||
| CVE-2020-26819 | Hig | 0.57 | 8.8 | 0.01 | Nov 10, 2020 | SAP NetWeaver AS ABAP (Web Dynpro), versions - 731, 740, 750, 751, 752, 753, 754, 755, 782, allows an authenticated user to access Web Dynpro components, that allows them to read and delete database logfiles because of Improper Access Control. | ||
| CVE-2020-26818 | Hig | 0.57 | 8.8 | 0.01 | Nov 10, 2020 | SAP NetWeaver AS ABAP (Web Dynpro), versions - 731, 740, 750, 751, 752, 753, 754, 755, 782, allows an authenticated user to access Web Dynpro components, which reveals sensitive system information that would otherwise be restricted to highly privileged users because of missing… |
- risk 0.51cvss 7.8epss 0.03
Microsoft Excel Remote Code Execution Vulnerability
- risk 0.51cvss 7.8epss 0.04
Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
- risk 0.58cvss 8.8epss 0.04
Microsoft SharePoint Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.03
Microsoft Browser Memory Corruption Vulnerability
- risk 0.46cvss 7.0epss 0.02
Windows Win32k Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.03
Windows Remote Access Elevation of Privilege Vulnerability
- risk 0.49cvss 7.5epss 0.03
Internet Explorer Memory Corruption Vulnerability
- risk 0.49cvss 7.5epss 0.02
Scripting Engine Memory Corruption Vulnerability
- risk 0.51cvss 7.5epss 0.25
Windows Network File System Denial of Service Vulnerability
- risk 0.51cvss 7.8epss 0.03
Windows Remote Access Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.03
Windows Remote Access Elevation of Privilege Vulnerability
- risk 0.58cvss 8.8epss 0.05
Windows Print Spooler Remote Code Execution Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Print Configuration Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Win32k Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows WalletService Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Kernel Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Remote Access Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Remote Access Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Remote Access Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Remote Access Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Remote Access Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Remote Access Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Remote Access Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Remote Access Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Client Side Rendering Print Provider Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.03
Microsoft Excel Remote Code Execution Vulnerability
- risk 0.52cvss 8.0epss 0.03
Microsoft SharePoint Server Spoofing Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Print Spooler Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Bind Filter Driver Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Port Class Library Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.02
Win32k Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
Windows Error Reporting Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Windows Print Spooler Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
DirectX Elevation of Privilege Vulnerability
- risk 0.50cvss 7.7epss 0.04
Remote Desktop Protocol Server Information Disclosure Vulnerability
- risk 0.48cvss 7.3epss 0.02
Azure Sphere Unsigned Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.01
Azure Sphere Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.02
Azure Sphere Unsigned Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Azure Sphere Unsigned Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Azure Sphere Unsigned Code Execution Vulnerability
- risk 0.53cvss 8.1epss 0.01
Azure Sphere Unsigned Code Execution Vulnerability
- risk 0.57cvss 8.8epss 0.02
Remote Code Execution can occur via the external news feed in ILIAS 6.4 because of incorrect parameter sanitization for Magpie RSS data.
- risk 0.51cvss 7.8epss 0.00
Incorrect file permissions in BlueStacks 4 through 4.230 on Windows allow a local attacker to escalate privileges by modifying a file that is later executed by a higher-privileged user.
- risk 0.47cvss 7.2epss 0.01
The Canto plugin 1.3.0 for WordPress allows includes/lib/download.php?subdomain= SSRF.
- risk 0.51cvss 7.8epss 0.01
Ilex International Sign&go Workstation Security Suite 7.1 allows elevation of privileges via a symlink attack on ProgramData\Ilex\S&G\Logs\000-sngWSService1.log.
- risk 0.57cvss 8.8epss 0.01
Subrion CMS 4.2.1 has CSRF in panel/modules/plugins/. The attacker can remotely activate/deactivate the plugins.
- risk 0.51cvss 7.8epss 0.01
A vulnerability in the TCL Android Smart TV series V8-R851T02-LF1 V295 and below and V8-T658T01-LF1 V373 and below by TCL Technology Group Corporation allows a local unprivileged attacker, such as a malicious App, to read & write to the /data/vendor/tcl, /data/vendor/upgrade,…
- risk 0.47cvss 7.2epss 0.04
SAP NetWeaver AS JAVA, versions - 7.20, 7.30, 7.31, 7.40, 7.50, allows an attacker who is authenticated as an administrator to use the administrator console, to expose unauthenticated access to the file system and upload a malicious file. The attacker or another user can then…
- risk 0.57cvss 8.8epss 0.01
SAP NetWeaver AS ABAP (Web Dynpro), versions - 731, 740, 750, 751, 752, 753, 754, 755, 782, allows an authenticated user to access Web Dynpro components, that allows them to read and delete database logfiles because of Improper Access Control.
- risk 0.57cvss 8.8epss 0.01
SAP NetWeaver AS ABAP (Web Dynpro), versions - 731, 740, 750, 751, 752, 753, 754, 755, 782, allows an authenticated user to access Web Dynpro components, which reveals sensitive system information that would otherwise be restricted to highly privileged users because of missing…