Vulnerabilities > High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-06-04	CVE-2020-13814	Use After Free vulnerability in Foxitsoftware Phantompdf An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. network low complexity foxitsoftware CWE-416	7.5
2020-06-04	CVE-2020-13692	XXE vulnerability in multiple products PostgreSQL JDBC Driver (aka PgJDBC) before 42.2.13 allows XXE. network high complexity postgresql quarkus netapp fedoraproject debian CWE-611	7.7
2020-06-04	CVE-2019-20822	Out-of-bounds Write vulnerability in Foxitsoftware 3D An issue was discovered in the 3D Plugin Beta for Foxit Reader and PhantomPDF before 9.7.0.29430. foxitsoftware microsoft CWE-787	7.5
2020-06-04	CVE-2020-13822	Integer Overflow or Wraparound vulnerability in Indutny Elliptic 6.5.2 The Elliptic package 6.5.2 for Node.js allows ECDSA signature malleability via variations in encoding, leading '\0' bytes, or integer overflows. network high complexity indutny CWE-190	7.7
2020-06-04	CVE-2020-9292	Unquoted Search Path or Element vulnerability in Fortinet Fortisiem Windows Agent 3.0/3.1.2 An unquoted service path vulnerability in the FortiSIEM Windows Agent component may allow an attacker to gain elevated privileges via the AoWinAgt executable service path. network low complexity fortinet CWE-428	7.5
2020-06-04	CVE-2020-13777	Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products GnuTLS 3.6.x before 3.6.14 uses incorrect cryptography for encrypting a session ticket (a loss of confidentiality in TLS 1.2, and an authentication bypass in TLS 1.3). network high complexity gnu fedoraproject canonical debian CWE-327	7.4
2020-06-04	CVE-2020-10549	SQL Injection vulnerability in Rconfig rConfig 3.9.4 and previous versions has unauthenticated snippets.inc.php SQL injection. network low complexity rconfig CWE-89	7.5
2020-06-04	CVE-2020-10548	SQL Injection vulnerability in Rconfig rConfig 3.9.4 and previous versions has unauthenticated devices.inc.php SQL injection. network low complexity rconfig CWE-89	7.5
2020-06-04	CVE-2020-10547	SQL Injection vulnerability in Rconfig rConfig 3.9.4 and previous versions has unauthenticated compliancepolicyelements.inc.php SQL injection. network low complexity rconfig CWE-89	7.5
2020-06-04	CVE-2020-10546	SQL Injection vulnerability in Rconfig rConfig 3.9.4 and previous versions has unauthenticated compliancepolicies.inc.php SQL injection. network low complexity rconfig CWE-89	7.5

Vulnerabilities > High {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"High"}]}

Vulnerabilities > High