VYPR

CVEs

101,975 total · page 1451 of 2,040

  • CVE-2020-4553HigAug 3, 2020
    risk 0.51cvss 7.8epss 0.00

    IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the…

  • CVE-2020-4552HigAug 3, 2020
    risk 0.51cvss 7.8epss 0.00

    IBM i2 Analyst Notebook 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM…

  • CVE-2020-4551HigAug 3, 2020
    risk 0.51cvss 7.8epss 0.00

    IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the…

  • CVE-2020-4550HigAug 3, 2020
    risk 0.51cvss 7.8epss 0.00

    IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the…

  • CVE-2020-4549HigAug 3, 2020
    risk 0.51cvss 7.8epss 0.00

    IBM i2 Analyst Notebook 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM…

  • CVE-2020-4534HigAug 3, 2020
    risk 0.57cvss 8.8epss 0.00

    IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper handling of UNC paths. By scheduling a task with a specially-crafted UNC path, an attacker could exploit this…

  • CVE-2020-8108HigAug 3, 2020
    risk 0.53cvss 8.2epss 0.00

    Improper Authentication vulnerability in Bitdefender Endpoint Security for Mac allows an unprivileged process to restart the main service and potentially inject third-party code into a trusted process. This issue affects: Bitdefender Endpoint Security for Mac versions prior to…

  • CVE-2020-5396HigJul 31, 2020
    risk 0.57cvss 8.8epss 0.02

    VMware GemFire versions prior to 9.10.0, 9.9.2, 9.8.7, and 9.7.6, and VMware Tanzu GemFire for VMs versions prior to 1.11.1 and 1.10.2, when deployed without a SecurityManager, contain a JMX service available which contains an insecure default configuration. This allows a…

  • CVE-2020-15871HigJul 31, 2020
    risk 0.57cvss 8.8epss 0.02

    Sonatype Nexus Repository Manager OSS/Pro version before 3.25.1 allows Remote Code Execution.

  • CVE-2020-5384HigJul 31, 2020
    risk 0.55cvss 8.4epss 0.00

    Authentication Bypass Vulnerability RSA MFA Agent 2.0 for Microsoft Windows contains an Authentication Bypass vulnerability. A local unauthenticated attacker could potentially exploit this vulnerability by using an alternate path to bypass authentication in order to gain full…

  • CVE-2020-15134HigJul 31, 2020
    risk 0.00cvss 8.0epss 0.01

    Faye before version 1.4.0, there is a lack of certification validation in TLS handshakes. Faye uses em-http-request and faye-websocket in the Ruby version of its client. Those libraries both use the `EM::Connection#start_tls` method in EventMachine to implement the TLS handshake…

  • CVE-2020-15133HigJul 31, 2020
    risk 0.00cvss 8.0epss 0.01

    In faye-websocket before version 0.11.0, there is a lack of certification validation in TLS handshakes. The `Faye::WebSocket::Client` class uses the `EM::Connection#start_tls` method in EventMachine to implement the TLS handshake whenever a `wss:` URL is used for the connection.…

  • CVE-2020-12081HigJul 31, 2020
    risk 0.49cvss 7.5epss 0.01

    An information disclosure vulnerability has been identified in FlexNet Publisher lmadmin.exe 11.14.0.2. The web portal link can be used to access to system files or other important files on the system.

  • CVE-2020-16136HigJul 31, 2020
    risk 0.50cvss 7.7epss 0.02

    In tgstation-server 4.4.0 and 4.4.1, an authenticated user with permission to download logs can download any file on the server machine (accessible by the owner of the server process) via directory traversal ../ sequences in /Administration/Logs/ requests. The attacker is unable…

  • CVE-2020-14520HigJul 31, 2020
    risk 0.49cvss 7.5epss 0.01

    The affected product is vulnerable to an information leak, which may allow an attacker to obtain sensitive information on the Ignition 8 (all versions prior to 8.0.13).

  • CVE-2020-14334HigJul 31, 2020
    risk 0.57cvss 8.8epss 0.00

    A flaw was found in Red Hat Satellite 6 which allows privileged attacker to read cache files. These cache credentials could help attacker to gain complete control of the Satellite instance.

  • CVE-2020-3386HigJul 31, 2020
    risk 0.57cvss 8.8epss 0.02

    A vulnerability in the REST API endpoint of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker with a low-privileged account to bypass authorization on the API of an affected device. The vulnerability is due to insufficient authorization of…

  • CVE-2020-3384HigJul 31, 2020
    risk 0.53cvss 8.2epss 0.01

    A vulnerability in specific REST API endpoints of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to inject arbitrary commands on the underlying operating system with the privileges of the logged-in user. The vulnerability is due to…

  • CVE-2020-3383HigJul 31, 2020
    risk 0.58cvss 8.8epss 0.07

    A vulnerability in the archive utility of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to conduct directory traversal attacks on an affected device. The vulnerability is due to a lack of proper input validation of paths that are embedded…

  • CVE-2020-3376HigJul 31, 2020
    risk 0.48cvss 7.3epss 0.01

    A vulnerability in the Device Manager application of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions on an affected device. The vulnerability is due to a failure in the software to…

  • CVE-2020-16164HigJul 30, 2020
    risk 0.48cvss 7.4epss 0.01

    An issue was discovered in RIPE NCC RPKI Validator 3.x through 3.1-2020.07.06.14.28. It allows remote attackers to bypass intended access restrictions or to cause a denial of service on dependent routing systems by strategically withholding RPKI Route Origin Authorisation ".roa"…

  • CVE-2020-16162HigJul 30, 2020
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in RIPE NCC RPKI Validator 3.x through 3.1-2020.07.06.14.28. Missing validation checks on CRL presence or CRL staleness in the X509-based RPKI certificate-tree validation procedure allow remote attackers to bypass intended access restrictions by using…

  • CVE-2020-15131HigJul 30, 2020
    risk 0.42cvss 7.5epss 0.01

    In SLP Validate (npm package slp-validate) before version 1.2.2, there is a vulnerability to false-positive validation outcomes for the NFT1 Child Genesis transaction type. A poorly implemented SLP wallet or opportunistic attacker could create a seemingly valid NFT1 child token…

  • CVE-2020-15130HigJul 30, 2020
    risk 0.42cvss 7.5epss 0.01

    In SLPJS (npm package slpjs) before version 0.27.4, there is a vulnerability to false-positive validation outcomes for the NFT1 Child Genesis transaction type. A poorly implemented SLP wallet or opportunistic attacker could create a seemingly valid NFT1 child token without…

  • CVE-2020-7829HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.01

    DaviewIndy 8.98.4 and earlier version contain Heap-based overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.

  • CVE-2020-7828HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.01

    DaviewIndy 8.98.4 and earlier version contain Heap-based overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.

  • CVE-2020-7827HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.01

    DaviewIndy 8.98.7 and earlier version contain Use-After-Free vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.

  • CVE-2020-15957HigJul 30, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in DP3T-Backend-SDK before 1.1.1 for Decentralised Privacy-Preserving Proximity Tracing (DP3T). When it is configured to check JWT before uploading/publishing keys, it is possible to skip the signature check by providing a JWT token with alg=none.

  • CVE-2020-14162HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in Pi-Hole through 5.0. The local www-data user has sudo privileges to execute the pihole core script as root without a password, which could allow an attacker to obtain root access via shell metacharacters to this script's setdns command.

  • CVE-2020-12620HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.01

    Pi-hole 4.4 allows a user able to write to /etc/pihole/dns-servers.conf to escalate privileges through command injection (shell metacharacters after an IP address).

  • CVE-2020-8219HigJul 30, 2020
    risk 0.47cvss 7.2epss 0.02

    An insufficient permission check vulnerability exists in Pulse Connect Secure <9.1R8 that allows an attacker to change the password of a full administrator.

  • CVE-2020-8218HigKEVJul 30, 2020
    risk 0.61cvss 7.2epss 0.33

    A code injection vulnerability exists in Pulse Connect Secure <9.1R8 that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface.

  • CVE-2020-8206HigJul 30, 2020
    risk 0.53cvss 8.1epss 0.03

    An improper authentication vulnerability exists in Pulse Connect Secure <9.1RB that allows an attacker with a users primary credentials to bypass the Google TOTP.

  • CVE-2020-4185HigJul 30, 2020
    risk 0.49cvss 7.5epss 0.01

    IBM Security Guardium 10.5, 10.6, and 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 174803.

  • CVE-2020-10713HigJul 30, 2020
    risk 0.53cvss 8.2epss 0.01

    A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need…

  • CVE-2020-3701HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.00

    Use after free issue while processing error notification from camx driver due to not properly releasing the sequence data in Snapdragon Mobile in Saipan, SM8250, SXR2130

  • CVE-2020-3700HigJul 30, 2020
    risk 0.49cvss 7.5epss 0.01

    Possible out of bounds read due to a missing bounds check and could lead to local information disclosure in the wifi driver with no additional execution privileges needed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Mobile,…

  • CVE-2019-14130HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.00

    Memory corruption can occurs in trusted application if offset size from HLOS is more than actual mapped buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150,…

  • CVE-2019-14124HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.00

    Memory failure in content protection module due to not having pointer within the scope in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130

  • CVE-2019-14123HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.00

    Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404,…

  • CVE-2019-14101HigJul 30, 2020
    risk 0.46cvss 7.1epss 0.00

    Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer…

  • CVE-2019-14100HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.00

    Register write via debugfs is disabled by default to prevent register writing via debugfs. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9206, MDM9207C, MDM9607, Nicobar, QCS405,…

  • CVE-2019-14099HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.00

    Device misbehavior may be observed when incorrect offset, length or number of buffers is passed by user space in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053,…

  • CVE-2019-14093HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.00

    Array out of bound access can occur in display module due to lack of bound check on input parcel received in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon…

  • CVE-2019-14037HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.00

    Close and bind operations done on a socket can lead to a Use-After-Free condition. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon…

  • CVE-2019-10580HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.00

    When kernel thread unregistered listener, Use after free issue happened as the listener client`s private data has been already freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music,…

  • CVE-2020-7699HigJul 30, 2020
    risk 0.42cvss 7.5epss 0.05

    This affects the package express-fileupload before 1.1.8. If the parseNested option is enabled, sending a corrupt HTTP request can lead to denial of service or arbitrary code execution.

  • CVE-2020-5610HigJul 30, 2020
    risk 0.51cvss 7.8epss 0.01

    Global TechStream (GTS) for TOYOTA dealers version 15.10.032 and earlier allows an attacker to cause a denial-of-service (DoS) condition and execute arbitrary code via unspecified vectors.

  • CVE-2020-16143HigJul 29, 2020
    risk 0.51cvss 7.8epss 0.00

    The seafile-client client 7.0.8 for Seafile is vulnerable to DLL hijacking because it loads exchndl.dll from the current working directory.

  • CVE-2017-18923HigJul 29, 2020
    risk 0.49cvss 7.5epss 0.01

    beroNet VoIP Gateways before 3.0.16 have a PHP script that allows downloading arbitrary files, including ones with credentials.