Vulnerabilities > Download of Code Without Integrity Check
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-22 | CVE-2020-7813 | Download of Code Without Integrity Check vulnerability in Kaoni Ezhttptrans 1.0.0.70 Ezhttptrans.ocx ActiveX Control in Kaoni ezHTTPTrans 1.0.0.70 and prior versions contain a vulnerability that could allow remote attacker to download and execute arbitrary file by setting the arguments to the activex method. | 9.8 |
| 2020-05-07 | CVE-2020-9474 | Download of Code Without Integrity Check vulnerability in Siedle SG 150-0 Firmware 1.1.0 The S. | 8.8 |
| 2020-05-06 | CVE-2020-7806 | Download of Code Without Integrity Check vulnerability in Tobesoft Xplatform Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. | 9.8 |
| 2020-04-29 | CVE-2019-19165 | Download of Code Without Integrity Check vulnerability in Inogard Activex AxECM.cab(ActiveX Control) in Inogard Ebiz4u contains a vulnerability that could allow remote files to be downloaded and executed by setting arguments to the activeX method. | 7.2 |
| 2020-04-23 | CVE-2020-5867 | Download of Code Without Integrity Check vulnerability in multiple products In versions prior to 3.3.0, the NGINX Controller Agent installer script 'install.sh' uses HTTP instead of HTTPS to check and install packages | 8.1 |
| 2020-03-23 | CVE-2020-9759 | Download of Code Without Integrity Check vulnerability in LG Webos A Vulnerability of LG Electronic web OS TV Emulator could allow an attacker to escalate privileges and overwrite certain files. | 7.8 |
| 2020-03-03 | CVE-2020-9751 | Download of Code Without Integrity Check vulnerability in Naver Cloud Explorer Naver Cloud Explorer before 2.2.2.11 allows the system to download an arbitrary file from the attacker's server and execute it during the upgrade. | 9.1 |
| 2020-02-25 | CVE-2020-8809 | Download of Code Without Integrity Check vulnerability in Gurux Device Language Message Specification Director 8.0.7/8.2.2002.1201/8.5.1803.0601 Gurux GXDLMS Director prior to 8.5.1905.1301 downloads updates to add-ins and OBIS code over an unencrypted HTTP connection. | 8.1 |
| 2020-01-17 | CVE-2020-5398 | Download of Code Without Integrity Check vulnerability in multiple products In Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and versions 5.0.x prior to 5.0.16, an application is vulnerable to a reflected file download (RFD) attack when it sets a "Content-Disposition" header in the response where the filename attribute is derived from user supplied input. | 7.5 |
| 2019-11-12 | CVE-2010-3440 | Download of Code Without Integrity Check vulnerability in multiple products babiloo 2.0.9 before 2.0.11 creates temporary files with predictable names when downloading and unpacking dictionary files, allowing a local attacker to overwrite arbitrary files. | 5.5 |