VYPR

CVEs

101,975 total · page 1447 of 2,040

  • CVE-2020-3433HigKEVAug 17, 2020
    risk 0.73cvss 7.8epss 0.10

    A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack. To exploit this vulnerability, the attacker would need to have valid credentials…

  • CVE-2020-3411HigAug 17, 2020
    risk 0.49cvss 7.5epss 0.02

    A vulnerability in Cisco DNA Center software could allow an unauthenticated remote attacker access to sensitive information on an affected system. The vulnerability is due to improper handling of authentication tokens by the affected software. An attacker could exploit this…

  • CVE-2020-3363HigAug 17, 2020
    risk 0.56cvss 8.6epss 0.02

    A vulnerability in the IPv6 packet processing engine of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient validation of…

  • CVE-2020-24372HigAug 17, 2020
    risk 0.49cvss 7.5epss 0.01

    LuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in lj_err.c.

  • CVE-2020-24369HigAug 17, 2020
    risk 0.00cvss 7.5epss 0.02

    ldebug.c in Lua 5.4.0 attempts to access debug information via the line hook of a stripped function, leading to a NULL pointer dereference.

  • CVE-2020-24220HigAug 17, 2020
    risk 0.57cvss 8.8epss 0.02

    ShopXO v1.8.1 has a command execution vulnerability. Attackers can use this vulnerability to execute arbitrary commands and gain control of the server.

  • CVE-2020-9241HigAug 17, 2020
    risk 0.46cvss 7.0epss 0.00

    Huawei 5G Mobile WiFi E6878-370 with versions of 10.0.3.1(H563SP1C00),10.0.3.1(H563SP21C233) have an improper authorization vulnerability. The device does not restrict certain data received from WAN port. Successful exploit could allow an attacker at WAN side to manage certain…

  • CVE-2020-8233HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.04

    A command injection vulnerability exists in EdgeSwitch firmware <v1.9.0 that allowed an authenticated read-only user to execute arbitrary shell commands over the HTTP interface, allowing them to escalate privileges.

  • CVE-2020-8210HigAug 17, 2020
    risk 0.49cvss 7.5epss 0.02

    Insufficient protection of secrets in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server before 10.9 RP5 discloses credentials of a service account.

  • CVE-2020-8209HigAug 17, 2020
    risk 0.53cvss 7.5epss 0.49

    Improper access control in Citrix XenMobile Server 10.12 before RP2, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.10 before RP6 and Citrix XenMobile Server before 10.9 RP5 and leads to the ability to read arbitrary files.

  • CVE-2020-13122HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.07

    The novish command-line interface, included in NoviFlow NoviWare before NW500.2.12 and deployed on NoviSwitch devices, is vulnerable to command injection in the "show status destination ipaddr" command. This could be used by a read-only user (monitoring group) or admin to…

  • CVE-2020-9242HigAug 17, 2020
    risk 0.57cvss 8.8epss 0.01

    FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently validate certain parameters post from user, successful exploit could allow an authenticated attacker to launch a command injection attack.

  • CVE-2020-4686HigAug 17, 2020
    risk 0.53cvss 8.1epss 0.02

    IBM Spectrum Virtualize 8.3.1 could allow a remote user authenticated via LDAP to escalate their privileges and perform actions they should not have access to. IBM X-Force ID: 186678.

  • CVE-2020-13941HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.04

    Reported in SOLR-14515 (private) and fixed in SOLR-14561 (public), released in Solr version 8.6.0. The Replication handler (https://lucene.apache.org/solr/guide/8_6/index-replication.html#http-api-commands-for-the-replicationhandler) allows commands backup, restore and…

  • CVE-2020-17475HigAug 14, 2020
    risk 0.49cvss 7.5epss 0.01

    Lack of authentication in the network relays used in MEGVII Koala 2.9.1-c3s allows attackers to grant physical access to anyone by sending packet data to UDP port 5000.

  • CVE-2020-15694HigAug 14, 2020
    risk 0.49cvss 7.5epss 0.02

    In Nim 1.2.4, the standard library httpClient fails to properly validate the server response. For example, httpClient.get().contentLength() does not raise any error if a malicious server provides a negative Content-Length.

  • CVE-2020-9767HigAug 14, 2020
    risk 0.51cvss 7.8epss 0.01

    A vulnerability related to Dynamic-link Library (“DLL”) loading in the Zoom Sharing Service would allow an attacker who had local access to a machine on which the service was running with elevated privileges to elevate their system privileges as well through use of a…

  • CVE-2020-15142HigAug 14, 2020
    risk 0.45cvss 8.0epss 0.02

    In openapi-python-client before version 0.5.3, clients generated with a maliciously crafted OpenAPI Document can generate arbitrary Python code. Subsequent execution of this malicious client is arbitrary code execution.

  • CVE-2020-7583HigAug 14, 2020
    risk 0.51cvss 7.8epss 0.00

    A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0.8). The application does not properly validate the users' privileges when executing some operations, which could allow a user with low…

  • CVE-2020-22722HigAug 14, 2020
    risk 0.51cvss 7.8epss 0.00

    Rapid Software LLC Rapid SCADA 5.8.0 is affected by a local privilege escalation vulnerability in the ScadaAgentSvc.exe executable file. An attacker can obtain admin privileges by placing a malicious .exe file in the application and renaming it ScadaAgentSvc.exe, which would…

  • CVE-2020-22721HigAug 14, 2020
    risk 0.51cvss 7.8epss 0.00

    A File Upload Vulnerability in PNotes - Andrey Gruber PNotes.NET v3.8.1.2 allows a local attacker to execute arbitrary code via the Miscellaneous " External Programs by uploading the malicious .exe file to the external program.

  • CVE-2020-9228HigAug 14, 2020
    risk 0.49cvss 7.5epss 0.01

    FusionCompute 8.0.0 has an information disclosure vulnerability. Due to the properly protection of certain information, attackers may exploit this vulnerability to obtain certain information.

  • CVE-2020-17462HigAug 14, 2020
    risk 0.51cvss 7.8epss 0.01

    CMS Made Simple 2.2.14 allows Authenticated Arbitrary File Upload because the File Manager does not block .ptar files, a related issue to CVE-2017-16798.

  • CVE-2019-19643HigAug 14, 2020
    risk 0.49cvss 7.5epss 0.01

    ise smart connect KNX Vaillant 1.2.839 contain a Denial of Service.

  • CVE-2020-16205HigAug 14, 2020
    risk 0.55cvss 7.2epss 0.60

    Using a specially crafted URL command, a remote authenticated user can execute commands as root on the G-Cam and G-Code (Firmware Versions 1.12.0.25 and prior as well as the limited Versions 1.12.13.2 and 1.12.14.5).

  • CVE-2020-4662HigAug 14, 2020
    risk 0.57cvss 8.8epss 0.01

    IBM Event Streams 10.0.0 could allow an authenticated user to perform tasks to a schema due to improper authentication validation. IBM X-Force ID: 186233.

  • CVE-2019-20383HigAug 13, 2020
    risk 0.51cvss 7.8epss 0.00

    ABBYY network license server in ABBYY FineReader 15 before Release 4 (aka 15.0.112.2130) allows escalation of privileges by local users via manipulations involving files and using symbolic links.

  • CVE-2020-7360HigAug 13, 2020
    risk 0.48cvss 7.4epss 0.00

    An Uncontrolled Search Path Element (CWE-427) vulnerability in SmartControl version 4.3.15 and versions released before April 15, 2020 may allow an authenticated user to escalate privileges by placing a specially crafted DLL file in the search path. This issue was fixed in…

  • CVE-2020-24346HigAug 13, 2020
    risk 0.51cvss 7.8epss 0.01

    njs through 0.4.3, used in NGINX, has a use-after-free in njs_json_parse_iterator_call in njs_json.c.

  • CVE-2020-24345HigAug 13, 2020
    risk 0.51cvss 7.8epss 0.01

    JerryScript through 2.3.0 allows stack consumption via function a(){new new Proxy(a,{})}JSON.parse("[]",a). NOTE: the vendor states that the problem is the lack of the --stack-limit option

  • CVE-2020-24344HigAug 13, 2020
    risk 0.46cvss 7.1epss 0.01

    JerryScript through 2.3.0 has a (function({a=arguments}){const arguments}) buffer over-read.

  • CVE-2020-24343HigAug 13, 2020
    risk 0.51cvss 7.8epss 0.01

    Artifex MuJS through 1.0.7 has a use-after-free in jsrun.c because of unconditional marking in jsgc.c.

  • CVE-2020-24342HigAug 13, 2020
    risk 0.00cvss 7.8epss 0.01

    Lua through 5.4.0 allows a stack redzone cross in luaO_pushvfstring because a protection mechanism wrongly calls luaD_callnoyield twice in a row.

  • CVE-2020-24331HigAug 13, 2020
    risk 0.51cvss 7.8epss 0.00

    An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the tss user still has read and write access to the /etc/tcsd.conf file (which contains various settings related to this daemon).

  • CVE-2020-24330HigAug 13, 2020
    risk 0.51cvss 7.8epss 0.00

    An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed.

  • CVE-2020-0261HigAug 13, 2020
    risk 0.51cvss 7.8epss 0.00

    In C2 flame devices, there is a possible bypass of seccomp due to a missing configuration file. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android…

  • CVE-2020-15947HigAug 13, 2020
    risk 0.57cvss 8.8epss 0.01

    A SQL injection vulnerability in the qm_adm/qm_export_stats_run.do endpoint of Loway QueueMetrics before 19.10.21 allows remote authenticated users to execute arbitrary SQL commands via the exportId parameter.

  • CVE-2020-15925HigAug 13, 2020
    risk 0.57cvss 8.8epss 0.01

    A SQL injection vulnerability at a tpf URI in Loway QueueMetrics before 19.10.21 allows remote authenticated attackers to execute arbitrary SQL commands via the TPF_XPAR1 parameter.

  • CVE-2020-16087HigAug 13, 2020
    risk 0.56cvss 8.6epss 0.01

    An issue was discovered in Zalo.exe in VNG Zalo Desktop 19.8.1.0. An attacker can run arbitrary commands on a remote Windows machine running the Zalo client by sending the user of the device a crafted file.

  • CVE-2020-13285HigAug 13, 2020
    risk 0.48cvss 7.3epss 0.01

    For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting (XSS) vulnerability exists in the issue reference number tooltip.

  • CVE-2020-13283HigAug 13, 2020
    risk 0.48cvss 7.3epss 0.01

    For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulnerability exists in the issues list via milestone title.

  • CVE-2020-8688HigAug 13, 2020
    risk 0.49cvss 7.5epss 0.02

    Improper input validation in the Intel(R) RAID Web Console 3 for Windows* may allow an unauthenticated user to potentially enable denial of service via network access.

  • CVE-2020-8687HigAug 13, 2020
    risk 0.51cvss 7.8epss 0.00

    Uncontrolled search path in the installer for Intel(R) RSTe Software RAID Driver for the Intel(R) Server Board M10JNP2SB before version 4.7.0.1119 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2020-8681HigAug 13, 2020
    risk 0.51cvss 7.8epss 0.00

    Out of bounds write in system driver for some Intel(R) Graphics Drivers before version 15.33.50.5129 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2020-8680HigAug 13, 2020
    risk 0.46cvss 7.0epss 0.00

    Race condition in some Intel(R) Graphics Drivers before version 15.40.45.5126 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2020-12301HigAug 13, 2020
    risk 0.53cvss 8.2epss 0.00

    Improper initialization in BIOS firmware for Intel(R) Server Board Families S2600ST, S2600BP and S2600WF may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2020-12300HigAug 13, 2020
    risk 0.53cvss 8.2epss 0.00

    Uninitialized pointer in BIOS firmware for Intel(R) Server Board Families S2600CW, S2600KP, S2600TP, and S2600WT may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2020-12299HigAug 13, 2020
    risk 0.53cvss 8.2epss 0.00

    Improper input validation in BIOS firmware for Intel(R) Server Board Families S2600ST, S2600BP and S2600WF may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2020-0559HigAug 13, 2020
    risk 0.51cvss 7.8epss 0.00

    Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8.1 before version 21.40.5.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2020-0555HigAug 13, 2020
    risk 0.51cvss 7.8epss 0.00

    Improper input validation for some Intel(R) Wireless Bluetooth(R) products may allow an authenticated user to potentially enable escalation of privilege via local access.