VYPR

CVEs

31,781 total · page 431 of 636

  • CVE-2020-25259CriSep 11, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. It uses XML deserialization libraries in an unsafe manner.

  • CVE-2020-25258CriSep 11, 2020
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. It uses ASP.NET BinaryFormatter.Deserialize in a manner that allows attackers to transmit and execute bytecode in SOAP…

  • CVE-2020-25257CriSep 11, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. It allows XXE attacks for read/write access to arbitrary files.

  • CVE-2020-25256CriSep 11, 2020
    risk 0.59cvss 9.1epss 0.01

    An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. PKI certificates have a private key that is the same across different customers' installations.

  • CVE-2020-25254CriSep 11, 2020
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. It allows SQL injection, as demonstrated by TestConnection_LocalOrLinkedServer, CreateFilterFriendlyView, or…

  • CVE-2020-25253CriSep 11, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. It allows SQL injection, as demonstrated by the TableName, ColumnName, Name, UserId, or Password parameter.

  • CVE-2020-25251CriSep 11, 2020
    risk 0.59cvss 9.1epss 0.01

    An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. Client-side authentication is used for critical functions such as adding users or retrieving sensitive information.

  • CVE-2020-11998CriSep 10, 2020
    risk 0.61cvss 9.8epss 0.51

    A regression has been introduced in the commit preventing JMX re-bind. By passing an empty environment map to RMIConnectorServer, instead of the map that contains the authentication credentials, it leaves ActiveMQ open to the following attack:…

  • CVE-2020-9742CriSep 10, 2020
    risk 0.59cvss 9.0epss 0.02

    AEM versions 6.5.5.0 (and below), 6.4.8.1 (and below) and 6.3.3.8 (and below) are affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Inbox calendar feature. These scripts may be executed in a…

  • CVE-2020-9741CriSep 10, 2020
    risk 0.59cvss 9.0epss 0.02

    The AEM forms add-on for versions 6.5.5.0 (and below) and 6.4.8.2 (and below) is affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Forms component. These scripts may be executed in a…

  • CVE-2020-9740CriSep 10, 2020
    risk 0.59cvss 9.0epss 0.02

    AEM versions 6.5.5.0 (and below), 6.4.8.1 (and below), 6.3.3.8 (and below) and 6.2 SP1-CFP20 (and below) are affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Design Importer. These scripts…

  • CVE-2020-9734CriSep 10, 2020
    risk 0.59cvss 9.0epss 0.02

    The AEM Forms add-on for versions 6.5.5.0 (and below) and 6.4.8.1 (and below) is affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Forms component. These scripts may be executed in a…

  • CVE-2020-9732CriSep 10, 2020
    risk 0.59cvss 9.0epss 0.03

    The AEM Forms add-on for versions 6.5.5.0 (and below) and 6.4.8.2 (and below) are affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Sites component. These scripts may be executed in a…

  • CVE-2020-8758CriSep 10, 2020
    risk 0.64cvss 9.8epss 0.02

    Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to potentially enable escalation of privilege via network access. On un-provisioned…

  • CVE-2020-15903CriSep 9, 2020
    risk 0.64cvss 9.8epss 0.05

    An issue was found in Nagios XI before 5.7.3. There is a privilege escalation vulnerability in backend scripts that ran as root where some included files were editable by nagios user. This issue was fixed in version 5.7.3.

  • CVE-2020-24916CriSep 9, 2020
    risk 0.65cvss 9.8epss 0.17

    CGI implementation in Yaws web server versions 1.81 to 2.0.7 is vulnerable to OS command injection.

  • CVE-2020-24379CriSep 9, 2020
    risk 0.64cvss 9.8epss 0.03

    WebDAV implementation in Yaws web server versions 1.81 to 2.0.7 is vulnerable to XXE injection.

  • CVE-2020-15787CriSep 9, 2020
    risk 0.64cvss 9.8epss 0.01

    A vulnerability has been identified in SIMATIC HMI Unified Comfort Panels (All versions <= V16). Affected devices insufficiently validate authentication attempts as the information given can be truncated to match only a set number of characters versus the whole provided string.…

  • CVE-2020-15786CriSep 9, 2020
    risk 0.64cvss 9.8epss 0.01

    A vulnerability has been identified in SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) (All versions < V16), SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions <= V16), SIMATIC HMI Mobile Panels (All versions <= V16), SIMATIC HMI Unified Comfort…

  • CVE-2020-2040CriSep 9, 2020
    risk 0.64cvss 9.8epss 0.04

    A buffer overflow vulnerability in PAN-OS allows an unauthenticated attacker to disrupt system processes and potentially execute arbitrary code with root privileges by sending a malicious request to the Captive Portal or Multi-Factor Authentication interface. This issue impacts:…

  • CVE-2020-25213CriKEVSep 9, 2020
    risk 0.81cvss 10.0epss 0.97

    The File Manager (wp-file-manager) plugin before 6.9 for WordPress allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to have the .php extension. This, for example, allows attackers to run the elFinder…

  • CVE-2020-11986CriSep 9, 2020
    risk 0.64cvss 9.8epss 0.10

    To be able to analyze gradle projects, the build scripts need to be executed. Apache NetBeans follows this pattern. This causes the code of the build script to be invoked at load time of the project. Apache NetBeans up to and including 12.0 did not request consent from the user…

  • CVE-2020-24199CriSep 9, 2020
    risk 0.64cvss 9.8epss 0.04

    Arbitrary File Upload in the Vehicle Image Upload component in Project Worlds Car Rental Management System v1.0 allows attackers to conduct remote code execution.

  • CVE-2020-24195CriSep 9, 2020
    risk 0.59cvss 9.1epss 0.03

    An Arbitrary File Upload in the Upload Image component in Sourcecodester Online Bike Rental v1.0 allows authenticated administrator to conduct remote code execution.

  • CVE-2020-24197CriSep 9, 2020
    risk 0.64cvss 9.8epss 0.01

    A SQL injection vulnerability in the login component in Stock Management System v1.0 allows remote attacker to execute arbitrary SQL commands via the username parameter.

  • CVE-2020-24074CriSep 9, 2020
    risk 0.00cvss 9.8epss 0.02

    The decode program in silk-v3-decoder Version:20160922 Build By kn007 does not strictly check data, resulting in a buffer overflow.

  • CVE-2020-3634CriSep 9, 2020
    risk 0.59cvss 9.1epss 0.01

    u'Multiple Read overflows issue due to improper length check while decoding Generic NAS transport/EMM info' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098,…

  • CVE-2020-3675CriSep 8, 2020
    risk 0.64cvss 9.8epss 0.01

    u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile,…

  • CVE-2020-3669CriSep 8, 2020
    risk 0.64cvss 9.8epss 0.01

    u'Buffer Overflow issue in WLAN tcp ip verification due to usage of out of range pointer offset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,…

  • CVE-2020-3668CriSep 8, 2020
    risk 0.64cvss 9.8epss 0.01

    u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon…

  • CVE-2020-3667CriSep 8, 2020
    risk 0.64cvss 9.8epss 0.01

    u'Buffer Overflow in mic calculation for WPA due to copying data into buffer without validating the length of buffer' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music,…

  • CVE-2020-11117CriSep 8, 2020
    risk 0.65cvss 9.8epss 0.20

    u'In the lbd service, an external user can issue a specially crafted debug command to overwrite arbitrary files with arbitrary content resulting in remote code execution.' in Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Wired Infrastructure and Networking in…

  • CVE-2020-11116CriSep 8, 2020
    risk 0.64cvss 9.8epss 0.01

    u'Possible out of bound write while processing association response received from host due to lack of check of IE length' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,…

  • CVE-2019-14052CriSep 8, 2020
    risk 0.64cvss 9.8epss 0.01

    u'Accessing an uninitialized data structure could result in partially copying of contents and thus incorrect processing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables…

  • CVE-2020-24987CriSep 4, 2020
    risk 0.64cvss 9.8epss 0.03

    Tenda AC18 Router through V15.03.05.05_EN and through V15.03.05.19(6318) CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck() function in /usr/lib/lua/ngx_authserver/ngx_wdas.lua file if the administrator UI Interface…

  • CVE-2019-19723criSep 4, 2020
    risk 0.59cvss epss 0.00

    All versions of `passport-cognito` are vulnerable to Improper Authorization. The package fails to properly scope the variables containing authorization information, such as access token, refresh token and ID token. This causes a race condition where simultaneous authenticated…

  • CVE-2020-7730CriSep 4, 2020
    risk 0.57cvss 9.8epss 0.03

    The package bestzip before 2.1.7 are vulnerable to Command Injection via the options param.

  • CVE-2020-25023CriSep 4, 2020
    risk 0.00cvss 9.8epss 0.03

    An issue was discovered in Noise-Java through 2020-08-27. AESGCMOnCtrCipherState.encryptWithAd() allows out-of-bounds access.

  • CVE-2020-25022CriSep 4, 2020
    risk 0.00cvss 9.8epss 0.03

    An issue was discovered in Noise-Java through 2020-08-27. AESGCMFallbackCipherState.encryptWithAd() allows out-of-bounds access.

  • CVE-2020-25021CriSep 4, 2020
    risk 0.00cvss 9.8epss 0.03

    An issue was discovered in Noise-Java through 2020-08-27. ChaChaPolyCipherState.encryptWithAd() allows out-of-bounds access.

  • CVE-2020-3495CriSep 4, 2020
    risk 0.69cvss 9.9epss 0.62

    A vulnerability in Cisco Jabber for Windows could allow an authenticated, remote attacker to execute arbitrary code. The vulnerability is due to improper validation of message contents. An attacker could exploit this vulnerability by sending specially crafted Extensible…

  • CVE-2020-1911CriSep 4, 2020
    risk 0.57cvss 9.8epss 0.02

    A type confusion vulnerability when resolving properties of JavaScript objects with specially-crafted prototype chains in Facebook Hermes prior to commit fe52854cdf6725c2eaa9e125995da76e6ceb27da allows attackers to potentially execute arbitrary code via crafted JavaScript. Note…

  • CVE-2020-24978CriSep 4, 2020
    risk 0.64cvss 9.8epss 0.01

    In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.

  • CVE-2020-25006CriSep 3, 2020
    risk 0.64cvss 9.8epss 0.02

    Heybbs v1.2 has a SQL injection vulnerability in login.php file via the username parameter which may allow a remote attacker to execute arbitrary code.

  • CVE-2020-25005CriSep 3, 2020
    risk 0.64cvss 9.8epss 0.02

    Heybbs v1.2 has a SQL injection vulnerability in msg.php file via the ID parameter which may allow a remote attacker to execute arbitrary code.

  • CVE-2020-25004CriSep 3, 2020
    risk 0.64cvss 9.8epss 0.02

    Heybbs v1.2 has a SQL injection vulnerability in user.php file via the ID parameter which may allow a remote attacker to execute arbitrary code.

  • CVE-2020-1891CriSep 3, 2020
    risk 0.64cvss 9.8epss 0.01

    A user controlled parameter used in video call in WhatsApp for Android prior to v2.20.17, WhatsApp Business for Android prior to v2.20.7, WhatsApp for iPhone prior to v2.20.20, and WhatsApp Business for iPhone prior to v2.20.20 could have allowed an out-of-bounds write on 32-bit…

  • CVE-2020-1889CriSep 3, 2020
    risk 0.65cvss 10.0epss 0.05

    A security feature bypass issue in WhatsApp Desktop versions prior to v0.3.4932 could have allowed for sandbox escape in Electron and escalation of privilege if combined with a remote code execution vulnerability inside the sandboxed renderer process.

  • CVE-2020-24193CriSep 3, 2020
    risk 0.64cvss 9.8epss 0.03

    A SQL injection vulnerability in login in Sourcecodetester Daily Tracker System 1.0 allows unauthenticated user to execute authentication bypass with SQL injection via the email parameter.

  • CVE-2020-24876CriSep 3, 2020
    risk 0.64cvss 9.8epss 0.02

    Use of a hard-coded cryptographic key in Pancake versions < 4.13.29 allows an attacker to forge session cookies, which may lead to remote privilege escalation.