VYPR

CVEs

101,963 total · page 1405 of 2,040

  • CVE-2020-7550HigNov 19, 2020
    risk 0.51cvss 7.8epss 0.02

    A CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 and prior that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS…

  • CVE-2020-7544HigNov 19, 2020
    risk 0.51cvss 7.8epss 0.00

    A CWE-269 Improper Privilege Management vulnerability exists in EcoStruxureª Operator Terminal Expert runtime (Vijeo XD) that could cause privilege escalation on the workstation when interacting directly with a driver installed by the runtime software of EcoStruxureª Operator…

  • CVE-2020-7538HigNov 19, 2020
    risk 0.49cvss 7.5epss 0.01

    A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause a crash of the PLC simulator present in EcoStruxureª Control Expert software when receiving a…

  • CVE-2020-28213HigNov 19, 2020
    risk 0.57cvss 8.8epss 0.01

    A CWE-494: Download of Code Without Integrity Check vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause unauthorized command execution when sending specially crafted requests over Modbus.

  • CVE-2020-28211HigNov 19, 2020
    risk 0.51cvss 7.8epss 0.00

    A CWE-863: Incorrect Authorization vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause bypass of authentication when overwriting memory using a debugger.

  • CVE-2020-28209HigNov 19, 2020
    risk 0.46cvss 7.0epss 0.00

    A CWE-428 Windows Unquoted Search Path vulnerability exists in EcoStruxure Building Operation Enterprise Server installer V1.9 - V3.1 and Enterprise Central installer V2.0 - V3.1 that could cause any local Windows user who has write permission on at least one of the subfolders…

  • CVE-2020-25989HigNov 19, 2020
    risk 0.00cvss 7.8epss 0.01

    Privilege escalation via arbitrary file write in pritunl electron client 1.0.1116.6 through v1.2.2550.20. Successful exploitation of the issue may allow an attacker to execute code on the effected system with root privileges.

  • CVE-2020-28924HigNov 19, 2020
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Rclone before 1.53.3. Due to the use of a weak random number generator, the password generator has been producing weak passwords with much less entropy than advertised. The suggested passwords depend deterministically on the time the second rclone was…

  • CVE-2020-28949HigKEVNov 19, 2020
    risk 0.15cvss 7.8epss 0.85

    Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed.

  • CVE-2020-28948HigNov 19, 2020
    risk 0.47cvss 7.8epss 0.47

    Archive_Tar through 1.4.10 allows an unserialization attack because phar: is blocked but PHAR: is not blocked.

  • CVE-2020-12510HigNov 19, 2020
    risk 0.48cvss 7.3epss 0.01

    The default installation path of the TwinCAT XAR 3.1 software in all versions is underneath C:\TwinCAT. If the directory does not exist it and further subdirectories are created with permissions which allow every local user to modify the content. The default installation…

  • CVE-2020-25699HigNov 19, 2020
    risk 0.42cvss 7.5epss 0.02

    In moodle, insufficient capability checks could lead to users with the ability to course restore adding additional capabilities to roles within that course. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5, 3.7 to 3.7.8, 3.5 to 3.5.14 and earlier unsupported versions. This is fixed…

  • CVE-2020-25698HigNov 19, 2020
    risk 0.42cvss 7.5epss 0.02

    Users' enrollment capabilities were not being sufficiently checked in Moodle when they are restored into an existing course. This could lead to them unenrolling users without having permission to do so. Versions affected: 3.5 to 3.5.14, 3.7 to 3.7.8, 3.8 to 3.8.5, 3.9 to 3.9.2…

  • CVE-2020-9049HigNov 19, 2020
    risk 0.46cvss 7.1epss 0.01

    A vulnerability in specified versions of American Dynamics victor Web Client and Software House C•CURE Web Client could allow an unauthenticated attacker on the network to create and sign their own JSON Web Token and use it to execute an HTTP API Method without the need for…

  • CVE-2020-4701HigNov 19, 2020
    risk 0.51cvss 7.8epss 0.00

    IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privileges.

  • CVE-2020-28054HigNov 19, 2020
    risk 0.49cvss 7.5epss 0.02

    JamoDat TSMManager Collector version up to 6.5.0.21 is vulnerable to an Authorization Bypass because the Collector component is not properly validating an authenticated session with the Viewer. If the Viewer has been modified (binary patched) and the Bypass Login functionality…

  • CVE-2020-8279HigNov 19, 2020
    risk 0.48cvss 7.4epss 0.01

    Missing validation of server certificates for out-going connections in Nextcloud Social < 0.4.0 allowed a man-in-the-middle attack.

  • CVE-2020-8277HigNov 19, 2020
    risk 0.53cvss 7.5epss 0.54

    A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1, < 14.15.1, and < 12.19.1 by getting the application to resolve a DNS record with a larger number of responses. This is fixed…

  • CVE-2020-13359HigNov 19, 2020
    risk 0.49cvss 7.6epss 0.01

    The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are >=12.10, <13.3.9,>=13.4,…

  • CVE-2020-13356HigNov 19, 2020
    risk 0.53cvss 8.2epss 0.02

    An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.8.9. A specially crafted request could bypass Multipart protection and read files in certain specific paths on the server. Affected versions are: >=8.8.9, <13.3.9,>=13.4, <13.4.5,>=13.5, <13.5.2.

  • CVE-2020-13355HigNov 19, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14. A path traversal is found in LFS Upload that allows attacker to overwrite certain specific paths on the server. Affected versions are: >=8.14, <13.3.9,>=13.4, <13.4.5,>=13.5, <13.5.2.

  • CVE-2019-12412HigNov 19, 2020
    risk 0.49cvss 7.5epss 0.04

    A flaw in the libapreq2 v2.07 to v2.13 multipart parser can deference a null pointer leading to a process crash. A remote attacker could send a request causing a process crash which could lead to a denial of service attack.

  • CVE-2020-12593HigNov 18, 2020
    risk 0.49cvss 7.5epss 0.02

    Symantec Endpoint Detection & Response, prior to 4.5, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data.

  • CVE-2020-26226HigNov 18, 2020
    risk 0.46cvss 8.1epss 0.01

    In the npm package semantic-release before version 17.2.3, secrets that would normally be masked by `semantic-release` can be accidentally disclosed if they contain characters that become encoded when included in a URL. Secrets that do not contain characters that become encoded…

  • CVE-2020-15301HigNov 18, 2020
    risk 0.51cvss 7.8epss 0.01

    SuiteCRM through 7.11.13 allows CSV Injection via registration fields in the Accounts, Contacts, Opportunities, and Leads modules. These fields are mishandled during a Download Import File Template operation.

  • CVE-2020-28581HigNov 18, 2020
    risk 0.50cvss 7.2epss 0.45

    A command injection vulnerability in ModifyVLANItem of Trend Micro InterScan Web Security Virtual Appliance 6.5 SP2 could allow an authenticated, remote attacker to send specially crafted HTTP messages and execute arbitrary OS commands with elevated privileges.

  • CVE-2020-28580HigNov 18, 2020
    risk 0.50cvss 7.2epss 0.45

    A command injection vulnerability in AddVLANItem of Trend Micro InterScan Web Security Virtual Appliance 6.5 SP2 could allow an authenticated, remote attacker to send specially crafted HTTP messages and execute arbitrary OS commands with elevated privileges.

  • CVE-2020-28579HigNov 18, 2020
    risk 0.61cvss 8.8epss 0.49

    A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 SP2 could allow an authenticated, remote attacker to send a specially crafted HTTP message and achieve remote code execution with elevated privileges.

  • CVE-2020-28574HigNov 18, 2020
    risk 0.49cvss 7.5epss 0.03

    A unauthenticated path traversal arbitrary remote file deletion vulnerability in Trend Micro Worry-Free Business Security 10 SP1 could allow an unauthenticated attacker to exploit the vulnerability and modify or delete arbitrary files on the product's management console.

  • CVE-2020-28572HigNov 18, 2020
    risk 0.51cvss 7.8epss 0.00

    A vulnerability in Trend Micro Apex One could allow an unprivileged user to abuse the product installer to reinstall the agent with additional malicious code in the context of a higher privilege.

  • CVE-2020-27697HigNov 18, 2020
    risk 0.51cvss 7.8epss 0.01

    Trend Micro Security 2020 (Consumer) contains a vulnerability in the installer package that could be exploited by placing a malicious DLL in a non-protected location with high privileges (symlink attack) which can lead to obtaining administrative privileges during the…

  • CVE-2020-27696HigNov 18, 2020
    risk 0.51cvss 7.8epss 0.00

    Trend Micro Security 2020 (Consumer) contains a vulnerability in the installer package that could be exploited by placing a specific Windows system directory which can lead to obtaining administrative privileges during the installation of the product.

  • CVE-2020-27695HigNov 18, 2020
    risk 0.51cvss 7.8epss 0.00

    Trend Micro Security 2020 (Consumer) contains a vulnerability in the installer package that could be exploited by placing a malicious DLL in a local directory which can lead to obtaining administrative privileges during the installation of the product.

  • CVE-2020-3392HigNov 18, 2020
    risk 0.49cvss 7.5epss 0.02

    A vulnerability in the API of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to view sensitive information on an affected system. The vulnerability exists because the affected software does not properly authenticate API calls. An attacker…

  • CVE-2020-3367HigNov 18, 2020
    risk 0.51cvss 7.8epss 0.01

    A vulnerability in the log subscription subsystem of Cisco AsyncOS for the Cisco Secure Web Appliance (formerly Web Security Appliance) could allow an authenticated, local attacker to perform command injection and elevate privileges to root. This vulnerability is due to…

  • CVE-2020-26076HigNov 18, 2020
    risk 0.49cvss 7.5epss 0.01

    A vulnerability in Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to view sensitive database information on an affected device. The vulnerability is due to the absence of authentication for sensitive information. An attacker could exploit…

  • CVE-2020-26075HigNov 18, 2020
    risk 0.57cvss 8.8epss 0.02

    A vulnerability in the REST API of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to gain access to the back-end database of an affected device. The vulnerability is due to insufficient input validation of REST API requests that are made to…

  • CVE-2020-26072HigNov 18, 2020
    risk 0.57cvss 8.7epss 0.01

    A vulnerability in the SOAP API of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to access and modify information on devices that belong to a different domain. The vulnerability is due to insufficient authorization in the SOAP API. An…

  • CVE-2020-28367HigNov 18, 2020
    risk 0.42cvss 7.5epss 0.02

    Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via malicious gcc flags specified via a #cgo directive.

  • CVE-2020-28366HigNov 18, 2020
    risk 0.42cvss 7.5epss 0.02

    Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file.

  • CVE-2020-28362HigNov 18, 2020
    risk 0.49cvss 7.5epss 0.04

    Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service.

  • CVE-2020-28091HigNov 18, 2020
    risk 0.52cvss 7.5epss 0.04

    cxuucms v3 has a SQL injection vulnerability, which can lead to the leakage of all database data via the keywords parameter via search.php.

  • CVE-2020-26933HigNov 18, 2020
    risk 0.47cvss 7.2epss 0.00

    Trusted Computing Group (TCG) Trusted Platform Module Library Family 2.0 Library Specification Revisions 1.38 through 1.59 has Incorrect Access Control during a non-orderly TPM shut-down that uses USE_DA_USED. Improper initialization of this shut-down may result in…

  • CVE-2020-25406HigNov 18, 2020
    risk 0.48cvss 7.3epss 0.01

    app\admin\controller\sys\Uploads.php in lemocms 1.8.x allows users to upload files to upload executable files.

  • CVE-2020-24297HigNov 18, 2020
    risk 0.57cvss 8.8epss 0.04

    httpd on TP-Link TL-WPA4220 devices (versions 2 through 4) allows remote authenticated users to execute arbitrary OS commands by sending crafted POST requests to the endpoint /admin/powerline. Fixed version: TL-WPA4220(EU)_V4_201023

  • CVE-2020-7564HigNov 18, 2020
    risk 0.57cvss 8.8epss 0.01

    A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause write…

  • CVE-2020-7563HigNov 18, 2020
    risk 0.57cvss 8.8epss 0.01

    A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause corruption of data, a crash, or code execution when uploading…

  • CVE-2020-7562HigNov 18, 2020
    risk 0.53cvss 8.1epss 0.01

    A CWE-125: Out-of-Bounds Read vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause a segmentation fault or a buffer overflow when uploading a…

  • CVE-2020-28914HigNov 17, 2020
    risk 0.00cvss 7.1epss 0.00

    An improper file permissions vulnerability affects Kata Containers prior to 1.11.5. When using a Kubernetes hostPath volume and mounting either a file or directory into a container as readonly, the file/directory is mounted as readOnly inside the container, but is still writable…

  • CVE-2020-26552HigNov 17, 2020
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Aviatrix Controller before R6.0.2483. Multiple executable files, that implement API endpoints, do not require a valid session ID for access.