VYPR

CVEs

101,975 total · page 1452 of 2,040

  • CVE-2020-5763HigJul 29, 2020
    risk 0.57cvss 8.8epss 0.03

    Grandstream HT800 series firmware version 1.0.17.5 and below contain a backdoor in the SSH service. An authenticated remote attacker can obtain a root shell by correctly answering a challenge prompt.

  • CVE-2020-5762HigJul 29, 2020
    risk 0.49cvss 7.5epss 0.03

    Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to a denial of service attack against the TR-069 service. An unauthenticated remote attacker can stop the service due to a NULL pointer dereference in the TR-069 service. This condition is triggered due…

  • CVE-2020-5761HigJul 29, 2020
    risk 0.49cvss 7.5epss 0.04

    Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to CPU exhaustion due to an infinite loop in the TR-069 service. Unauthenticated remote attackers can trigger this case by sending a one character TCP message to the TR-069 service.

  • CVE-2020-5760HigJul 29, 2020
    risk 0.51cvss 7.8epss 0.05

    Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote attackers can execute arbitrary commands as root by crafting a special configuration file and sending a crafted SIP message.

  • CVE-2020-16118HigJul 29, 2020
    risk 0.00cvss 7.5epss 0.02

    In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imap_mbox_connect in libbalsa/imap/imap-handle.c.

  • CVE-2019-20030HigJul 29, 2020
    risk 0.51cvss 7.8epss 0.00

    An attacker with knowledge of the modem access number on a NEC UM8000 voicemail system may use SSH tunneling or standard Linux utilities to gain access to the system's LAN port. All versions are affected.

  • CVE-2019-20029HigJul 29, 2020
    risk 0.57cvss 8.8epss 0.02

    An exploitable privilege escalation vulnerability exists in the WebPro functionality of Aspire-derived NEC PBXes, including all versions of SV8100, SV9100, SL1100 and SL2100 devices. A specially crafted HTTP POST can cause privilege escalation resulting in a higher privileged…

  • CVE-2019-20028HigJul 29, 2020
    risk 0.49cvss 7.5epss 0.01

    Aspire-derived NEC PBXes operating InMail software, including all versions of SV8100, SV9100, SL1100 and SL2100 devices allow unauthenticated read-only access to voicemails, greetings, and voice response system content through a system's WebPro administration interface.

  • CVE-2019-20026HigJul 29, 2020
    risk 0.49cvss 7.5epss 0.01

    The WebPro interface in NEC SV9100 software releases 7.0 or higher allows unauthenticated remote attackers to reset all existing usernames and passwords to default values via a crafted request.

  • CVE-2020-15125HigJul 29, 2020
    risk 0.00cvss 7.7epss 0.02

    In auth0 (npm package) versions before 2.27.1, a DenyList of specific keys that should be sanitized from the request object contained in the error object is used. The key for Authorization header is not sanitized and in certain cases the Authorization header value can be logged…

  • CVE-2020-15099HigJul 29, 2020
    risk 0.53cvss 8.1epss 0.02

    In TYPO3 CMS greater than or equal to 9.0.0 and less than 9.5.20, and greater than or equal to 10.0.0 and less than 10.4.6, in a case where an attacker manages to generate a valid cryptographic message authentication code (HMAC-SHA1) - either by using a different existing…

  • CVE-2020-15098HigJul 29, 2020
    risk 0.50cvss 8.8epss 0.02

    In TYPO3 CMS greater than or equal to 9.0.0 and less than 9.5.20, and greater than or equal to 10.0.0 and less than 10.4.6, it has been discovered that an internal verification mechanism can be used to generate arbitrary checksums. This allows to inject arbitrary data having a…

  • CVE-2020-11933HigJul 29, 2020
    risk 0.47cvss 7.3epss 0.00

    cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices was run without restrictions on every boot, which a physical attacker could exploit by crafting cloud-init user-data/meta-data via external media to perform arbitrary changes on the device to bypass…

  • CVE-2020-13699HigJul 29, 2020
    risk 0.62cvss 8.8epss 0.26

    TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A malicious website could launch TeamViewer with arbitrary parameters, as demonstrated by a teamviewer10: --play URL. An attacker could force a victim to send an NTLM authentication…

  • CVE-2020-4574HigJul 29, 2020
    risk 0.49cvss 7.5epss 0.02

    IBM Tivoli Key Lifecycle Manager does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 184181.

  • CVE-2020-4463HigJul 29, 2020
    risk 0.56cvss 8.2epss 0.32

    IBM Maximo Asset Management 7.6.0.1 and 7.6.0.2 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 181484.

  • CVE-2020-2077HigJul 29, 2020
    risk 0.49cvss 7.5epss 0.01

    SICK Package Analytics software up to and including version V04.0.0 are vulnerable due to incorrect default permissions settings. An unauthorized attacker could read sensitive data from the system by querying for known files using the REST API directly.

  • CVE-2020-14488HigJul 29, 2020
    risk 0.57cvss 8.8epss 0.02

    OpenClinic GA 5.09.02 and 5.89.05b does not properly verify uploaded files, which may allow a low-privilege user to upload and execute arbitrary files on the system.

  • CVE-2020-7698HigJul 29, 2020
    risk 0.46cvss 8.1epss 0.02

    This affects the package Gerapy from 0 and before 0.9.3. The input being passed to Popen, via the project_configure endpoint, isn’t being sanitized.

  • CVE-2020-14493HigJul 29, 2020
    risk 0.57cvss 8.8epss 0.02

    A low-privilege user may use SQL syntax to write arbitrary files to the OpenClinic GA 5.09.02 and 5.89.05b server, which may allow the execution of arbitrary commands.

  • CVE-2020-14490HigJul 29, 2020
    risk 0.57cvss 8.8epss 0.02

    OpenClinic GA 5.09.02 and 5.89.05b includes arbitrary local files specified within its parameter and executes some files, which may allow disclosure of sensitive files or the execution of malicious uploaded files.

  • CVE-2020-6098HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.02

    An exploitable denial of service vulnerability exists in the freeDiameter functionality of freeDiameter 1.3.2. A specially crafted Diameter request can trigger a memory corruption resulting in denial-of-service. An attacker can send a malicious packet to trigger this…

  • CVE-2020-13997HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.01

    In Shopware before 6.2.3, the database password is leaked to an unauthenticated user when a DriverException occurs and verbose error handling is enabled.

  • CVE-2020-13970HigJul 28, 2020
    risk 0.57cvss 8.8epss 0.01

    Shopware before 6.2.3 is vulnerable to a Server-Side Request Forgery (SSRF) in its "Mediabrowser upload by URL" feature. This allows an authenticated user to send HTTP, HTTPS, FTP, and SFTP requests on behalf of the Shopware platform server.

  • CVE-2020-11476HigJul 28, 2020
    risk 0.40cvss 7.2epss 0.03

    Concrete5 before 8.5.3 allows Unrestricted Upload of File with Dangerous Type such as a .phar file.

  • CVE-2020-11474HigJul 28, 2020
    risk 0.51cvss 7.8epss 0.01

    NCP Secure Enterprise Client before 10.15 r47589 allows a symbolic link attack on enumusb.reg via Support Assistant.

  • CVE-2020-10984HigJul 28, 2020
    risk 0.57cvss 8.8epss 0.01

    Gambio GX before 4.0.1.0 allows admin/admin.php CSRF.

  • CVE-2020-16094HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.02

    In imap_scan_tree_recursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree.

  • CVE-2020-15899HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.01

    Grin 3.0.0 before 4.0.0 has insufficient validation of data related to Mimblewimble.

  • CVE-2020-15419HigJul 28, 2020
    risk 0.54cvss 7.5epss 0.64

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of Veeam ONE 10.0.0.750_20200415. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Reporter_ImportLicense class. Due to the…

  • CVE-2020-15418HigJul 28, 2020
    risk 0.50cvss 7.5epss 0.09

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of Veeam ONE 10.0.0.750_20200415. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SSRSReport class. Due to the improper…

  • CVE-2020-15416HigJul 28, 2020
    risk 0.58cvss 8.8epss 0.06

    This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on…

  • CVE-2020-10929HigJul 28, 2020
    risk 0.57cvss 8.8epss 0.02

    This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file…

  • CVE-2020-10928HigJul 28, 2020
    risk 0.55cvss 8.4epss 0.01

    This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file…

  • CVE-2020-10927HigJul 28, 2020
    risk 0.57cvss 8.8epss 0.01

    This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the encryption of firmware update…

  • CVE-2020-10926HigJul 28, 2020
    risk 0.57cvss 8.8epss 0.01

    This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of firmware updates.…

  • CVE-2020-10925HigJul 28, 2020
    risk 0.57cvss 8.8epss 0.01

    This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded information on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the…

  • CVE-2020-10924HigJul 28, 2020
    risk 0.67cvss 8.8epss 0.87

    This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The…

  • CVE-2020-10923HigJul 28, 2020
    risk 0.67cvss 8.8epss 0.85

    This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the UPnP service, which listens on…

  • CVE-2020-15628HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.04

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_mail_autoreply.php. When parsing the…

  • CVE-2020-15627HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.04

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_mail_autoreply.php. When parsing the…

  • CVE-2020-15626HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.04

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_dashboard.php. When parsing the term…

  • CVE-2020-15625HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.04

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_add_mailbox.php. When parsing the…

  • CVE-2020-15624HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.04

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_new_account.php. When parsing the…

  • CVE-2020-15622HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.04

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_mail_autoreply.php. When parsing the…

  • CVE-2020-15621HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.04

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_mail_autoreply.php. When parsing the…

  • CVE-2020-15620HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.04

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_list_accounts.php. When parsing the id…

  • CVE-2020-15619HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.04

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_list_accounts.php. When parsing the…

  • CVE-2020-15618HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.04

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_list_accounts.php. When parsing the…

  • CVE-2020-15617HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.04

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_list_accounts.php. When parsing the…