Vulnerabilities > Files or Directories Accessible to External Parties

DATE CVE VULNERABILITY TITLE RISK
2020-07-06 CVE-2020-5356 Files or Directories Accessible to External Parties vulnerability in Dell products
Dell PowerProtect Data Manager (PPDM) versions prior to 19.4 and Dell PowerProtect X400 versions prior to 3.2 contain an improper authorization vulnerability.
network
low complexity
dell CWE-552
6.5
2020-06-03 CVE-2020-3267 Files or Directories Accessible to External Parties vulnerability in Cisco Unified Contact Center Express
A vulnerability in the API subsystem of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to change the availability state of any agent.
network
low complexity
cisco CWE-552
7.1
2020-06-03 CVE-2020-10516 Files or Directories Accessible to External Parties vulnerability in Github
An improper access control vulnerability was identified in the GitHub Enterprise Server API that allowed an organization member to escalate permissions and gain access to unauthorized repositories within an organization.
network
low complexity
github CWE-552
critical
9.8
2020-05-11 CVE-2020-12743 Files or Directories Accessible to External Parties vulnerability in Gazie Project Gazie
An issue was discovered in Gazie 7.32.
network
low complexity
gazie-project CWE-552
critical
9.8
2020-04-29 CVE-2020-12470 Files or Directories Accessible to External Parties vulnerability in Mono Monox 5.1.40.5152
MonoX through 5.1.40.5152 allows administrators to execute arbitrary code by modifying an ASPX template.
network
low complexity
mono CWE-552
7.2
2020-04-17 CVE-2019-7306 Files or Directories Accessible to External Parties vulnerability in multiple products
Byobu Apport hook may disclose sensitive information since it automatically uploads the local user's .screenrc which may contain private hostnames, usernames and passwords.
network
low complexity
byobu canonical CWE-552
7.5
2020-04-10 CVE-2019-7305 Files or Directories Accessible to External Parties vulnerability in Extplorer 1.0.0/2.0.0/2.1.0
Information Exposure vulnerability in eXtplorer makes the /usr/ and /etc/extplorer/ system directories world-accessible over HTTP.
network
low complexity
extplorer CWE-552
critical
9.8
2020-04-01 CVE-2020-11469 Files or Directories Accessible to External Parties vulnerability in Zoom Meetings 4.6.8
Zoom Client for Meetings through 4.6.8 on macOS copies runwithroot to a user-writable temporary directory during installation, which allows a local process (with the user's privileges) to obtain root access by replacing runwithroot.
local
low complexity
zoom CWE-552
7.8
2020-03-30 CVE-2020-5289 Files or Directories Accessible to External Parties vulnerability in Elide
In Elide before 4.5.14, it is possible for an adversary to "guess and check" the value of a model field they do not have access to assuming they can read at least one other field in the model.
network
low complexity
elide CWE-552
6.5
2020-03-24 CVE-2019-20593 Files or Directories Accessible to External Parties vulnerability in Google Android
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.x) software.
network
low complexity
google CWE-552
5.3