VYPR

CVEs

101,975 total · page 1449 of 2,040

  • CVE-2020-0242HigAug 11, 2020
    risk 0.51cvss 7.8epss 0.00

    In reset of NuPlayerDriver.cpp, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the media server with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2020-0241HigAug 11, 2020
    risk 0.51cvss 7.8epss 0.00

    In NuPlayerStreamListener of NuPlayerStreamListener.cpp, there is possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2020-0240HigAug 11, 2020
    risk 0.57cvss 8.8epss 0.02

    In NewFixedDoubleArray of factory.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:…

  • CVE-2020-0238HigAug 11, 2020
    risk 0.46cvss 7.0epss 0.00

    In updatePreferenceIntents of AccountTypePreferenceLoader, there is a possible confused deputy attack due to a race condition. This could lead to local escalation of privilege and launching privileged activities with no additional execution privileges needed. User interaction is…

  • CVE-2020-0108HigAug 11, 2020
    risk 0.51cvss 7.8epss 0.01

    In postNotification of ServiceRecord.java, there is a possible bypass of foreground process restrictions due to an uncaught exception. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2020-9404HigAug 11, 2020
    risk 0.46cvss 7.1epss 0.00

    In PACTware before 4.1 SP6 and 5.x before 5.0.5.31, passwords are stored in an insecure manner, and may be modified by an attacker with no knowledge of the current passwords.

  • CVE-2020-11976HigAug 11, 2020
    risk 0.49cvss 7.5epss 0.04

    By crafting a special URL it is possible to make Wicket deliver unprocessed HTML templates. This would allow an attacker to see possibly sensitive information inside a HTML template that is usually removed during rendering. Affected are Apache Wicket versions 7.16.0, 8.8.0 and…

  • CVE-2020-14979HigAug 11, 2020
    risk 0.51cvss 7.8epss 0.01

    The WinRing0.sys and WinRing0x64.sys drivers 1.2.0 in EVGA Precision X1 through 1.0.6 allow local users, including low integrity processes, to read and write to arbitrary memory locations. This allows any user to gain NT AUTHORITY\SYSTEM privileges by mapping…

  • CVE-2020-13177HigAug 11, 2020
    risk 0.51cvss 7.8epss 0.00

    The support bundler in Teradici PCoIP Standard Agent for Windows and Graphics Agent for Windows versions prior to 20.04.1 and 20.07.0 does not use hard coded paths for certain Windows binaries, which allows an attacker to gain elevated privileges via execution of a malicious…

  • CVE-2020-13175HigAug 11, 2020
    risk 0.49cvss 7.5epss 0.02

    The Management Interface of the Teradici Cloud Access Connector and Cloud Access Connector Legacy for releases prior to April 20, 2020 (v15 and earlier for Cloud Access Connector) contains a local file inclusion vulnerability which allows an unauthenticated remote attacker to…

  • CVE-2020-17448HigAug 11, 2020
    risk 0.51cvss 7.8epss 0.02

    Telegram Desktop through 2.1.13 allows a spoofed file type to bypass the Dangerous File Type Execution protection mechanism, as demonstrated by use of the chat window with a filename that lacks an extension.

  • CVE-2020-17367HigAug 11, 2020
    risk 0.51cvss 7.8epss 0.01

    Firejail through 0.9.62 does not honor the -- end-of-options indicator after the --output option, which may lead to command injection.

  • CVE-2020-13124HigAug 11, 2020
    risk 0.58cvss 8.8epss 0.05

    SABnzbd 2.3.9 and 3.0.0Alpha2 has a command injection vulnerability in the web configuration interface that permits an authenticated user to execute arbitrary Python commands on the underlying operating system.

  • CVE-2020-14296HigAug 11, 2020
    risk 0.46cvss 7.1epss 0.01

    Red Hat CloudForms 4.7 and 5 was vulnerable to Server-Side Request Forgery (SSRF) flaw. With the access to add Ansible Tower provider, an attacker could scan and attack systems from the internal network which are not normally accessible.

  • CVE-2020-10783HigAug 11, 2020
    risk 0.54cvss 8.3epss 0.01

    Red Hat CloudForms 4.7 and 5 is affected by a role-based privilege escalation flaw. An attacker with EVM-Operator group can perform actions restricted only to EVM-Super-administrator group, leads to, exporting or importing administrator files.

  • CVE-2020-4486HigAug 11, 2020
    risk 0.53cvss 8.1epss 0.02

    IBM QRadar 7.2.0 thorugh 7.2.9 could allow an authenticated user to overwrite or delete arbitrary files due to a flaw after WinCollect installation. IBM X-Force ID: 181861.

  • CVE-2020-9079HigAug 11, 2020
    risk 0.57cvss 8.8epss 0.00

    FusionSphere OpenStack 8.0.0 have a protection mechanism failure vulnerability. The product incorrectly uses a protection mechanism. An attacker has to find a way to exploit the vulnerability to conduct directed attacks against the affected product.

  • CVE-2020-16277HigAug 10, 2020
    risk 0.57cvss 8.8epss 0.01

    An SQL injection vulnerability in the Analytics component of SAINT Security Suite 8.0 through 9.8.20 allows a remote, authenticated attacker to gain unauthorized access to the database.

  • CVE-2020-16276HigAug 10, 2020
    risk 0.57cvss 8.8epss 0.01

    An SQL injection vulnerability in the Assets component of SAINT Security Suite 8.0 through 9.8.20 allows a remote, authenticated attacker to gain unauthorized access to the database.

  • CVE-2020-15139HigAug 10, 2020
    risk 0.00cvss 8.8epss 0.01

    In MyBB before version 1.8.24, the custom MyCode (BBCode) for the visual editor doesn't escape input properly when rendering HTML, resulting in a DOM-based XSS vulnerability. The weakness can be exploited by pointing a victim to a page where the visual editor is active (e.g. as…

  • CVE-2020-9078HigAug 10, 2020
    risk 0.51cvss 7.8epss 0.00

    FusionCompute 8.0.0 have local privilege escalation vulnerability. A local, authenticated attacker could perform specific operations to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege and compromise the service.

  • CVE-2020-17478HigAug 10, 2020
    risk 0.49cvss 7.5epss 0.01

    ECDSA/EC/Point.pm in Crypt::Perl before 0.33 does not properly consider timing attacks against the EC point multiplication algorithm.

  • CVE-2020-15659HigAug 10, 2020
    risk 0.57cvss 8.8epss 0.02

    Mozilla developers and community members reported memory safety bugs present in Firefox 78 and Firefox ESR 78.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This…

  • CVE-2020-15657HigAug 10, 2020
    risk 0.51cvss 7.8epss 0.00

    Firefox could be made to load attacker-supplied DLL files from the installation directory. This required an attacker that is already capable of placing files in the installation directory. *Note: This issue only affected Windows operating systems. Other operating systems are…

  • CVE-2020-15656HigAug 10, 2020
    risk 0.57cvss 8.8epss 0.02

    JIT optimizations involving the Javascript arguments object could confuse later optimizations. This risk was already mitigated by various precautions in the code, resulting in this bug rated at only moderate severity. This vulnerability affects Firefox ESR < 78.1, Firefox < 79,…

  • CVE-2020-15647HigAug 10, 2020
    risk 0.48cvss 7.4epss 0.01

    A Content Provider in Firefox for Android allowed local files accessible by the browser to be read by a remote webpage, leading to sensitive data disclosure, including cookies for other origins. This vulnerability affects Firefox for < Android.

  • CVE-2020-9528HigAug 10, 2020
    risk 0.49cvss 7.5epss 0.01

    Firmware developed by Shenzhen Hichip Vision Technology (V6 through V20), as used by many different vendors in millions of Internet of Things devices, suffers from cryptographic issues that allow remote attackers to access user session data, as demonstrated by eavesdropping on…

  • CVE-2020-9525HigAug 10, 2020
    risk 0.53cvss 8.1epss 0.02

    CS2 Network P2P through 3.x, as used in millions of Internet of Things devices, suffers from an authentication flaw that allows remote attackers to perform a man-in-the-middle attack, as demonstrated by eavesdropping on user video/audio streams, capturing credentials, and…

  • CVE-2020-8224HigAug 10, 2020
    risk 0.51cvss 7.8epss 0.01

    A code injection in Nextcloud Desktop Client 2.6.4 allowed to load arbitrary code when placing a malicious OpenSSL config into a fixed directory.

  • CVE-2020-6145HigAug 10, 2020
    risk 0.57cvss 8.8epss 0.02

    An SQL injection vulnerability exists in the frappe.desk.reportview.get functionality of ERPNext 11.1.38. A specially crafted HTTP request can cause an SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.

  • CVE-2020-6070HigAug 10, 2020
    risk 0.51cvss 7.8epss 0.02

    An exploitable code execution vulnerability exists in the file system checking functionality of fsck.f2fs 1.12.0. A specially crafted f2fs file can cause a logic flaw and out-of-bounds heap operations, resulting in code execution. An attacker can provide a malicious file to…

  • CVE-2020-12780HigAug 10, 2020
    risk 0.49cvss 7.5epss 0.01

    A security misconfiguration exists in Combodo iTop, which can expose sensitive information.

  • CVE-2020-12778HigAug 10, 2020
    risk 0.48cvss 7.4epss 0.01

    Combodo iTop does not validate inputted parameters, attackers can inject malicious commands and launch XSS attack.

  • CVE-2020-12777HigAug 10, 2020
    risk 0.49cvss 7.5epss 0.01

    A function in Combodo iTop contains a vulnerability of Broken Access Control, which allows unauthorized attacker to inject command and disclose system information.

  • CVE-2020-17452HigAug 9, 2020
    risk 0.47cvss 7.2epss 0.02

    flatCore before 1.5.7 allows upload and execution of a .php file by an admin.

  • CVE-2020-15827HigAug 8, 2020
    risk 0.49cvss 7.5epss 0.01

    In JetBrains ToolBox version 1.17 before 1.17.6856, the set of signature verifications omitted the jetbrains-toolbox.exe file.

  • CVE-2020-15825HigAug 8, 2020
    risk 0.57cvss 8.8epss 0.01

    In JetBrains TeamCity before 2020.1, users with the Modify Group permission can elevate other users' privileges.

  • CVE-2020-15824HigAug 8, 2020
    risk 0.57cvss 8.8epss 0.02

    In JetBrains Kotlin from 1.4-M1 to 1.4-RC (as Kotlin 1.3.7x is not affected by the issue. Fixed version is 1.4.0) there is a script-cache privilege escalation vulnerability due to kotlin-main-kts cached scripts in the system temp directory, which is shared by all users by…

  • CVE-2020-15823HigAug 8, 2020
    risk 0.49cvss 7.5epss 0.02

    JetBrains YouTrack before 2020.2.8873 is vulnerable to SSRF in the Workflow component.

  • CVE-2020-15817HigAug 8, 2020
    risk 0.57cvss 8.8epss 0.02

    In JetBrains YouTrack before 2020.1.1331, an external user could execute commands against arbitrary issues.

  • CVE-2019-19704HigAug 8, 2020
    risk 0.49cvss 7.5epss 0.01

    In JetBrains Upsource before 2020.1, information disclosure is possible because of an incorrect user matching algorithm.

  • CVE-2020-15063HigAug 7, 2020
    risk 0.57cvss 8.8epss 0.01

    DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to bypass authentication via a web-administration request that lacks a password parameter.

  • CVE-2020-15062HigAug 7, 2020
    risk 0.57cvss 8.8epss 0.00

    DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic.

  • CVE-2020-15059HigAug 7, 2020
    risk 0.57cvss 8.8epss 0.01

    Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 devices allow an attacker on the same network to bypass authentication via a web-administration request that lacks a password parameter.

  • CVE-2020-15058HigAug 7, 2020
    risk 0.57cvss 8.8epss 0.00

    Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 devices allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic.

  • CVE-2020-15055HigAug 7, 2020
    risk 0.57cvss 8.8epss 0.01

    TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to bypass authentication via a web-administration request that lacks a password parameter.

  • CVE-2020-15054HigAug 7, 2020
    risk 0.57cvss 8.8epss 0.00

    TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic.

  • CVE-2019-7005HigAug 7, 2020
    risk 0.49cvss 7.5epss 0.01

    A vulnerability was discovered in the web interface component of IP Office that may potentially allow a remote, unauthenticated user with network access to gain sensitive information. Affected versions of IP Office include: 9.x, 10.0 through 10.1.0.7 and 11.0 through 11.0.4.2.

  • CVE-2020-15480HigAug 7, 2020
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in PassMark BurnInTest through 9.1, OSForensics through 7.1, and PerformanceTest through 10. The kernel driver exposes IOCTL functionality that allows low-privilege users to read and write to arbitrary Model Specific Registers (MSRs). This could lead to…

  • CVE-2020-15479HigAug 7, 2020
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in PassMark BurnInTest through 9.1, OSForensics through 7.1, and PerformanceTest through 10. The driver's IOCTL request handler attempts to copy the input buffer onto the stack without checking its size and can cause a buffer overflow. This could lead to…