Weekly Vulnerabilities Reports > July 20 to 26, 2020
Overview
197 new vulnerabilities reported during this period, including 35 critical vulnerabilities and 92 high severity vulnerabilities. This weekly summary report vulnerabilities in 351 products from 96 vendors including Debian, Google, Fedoraproject, Opensuse, and Adobe. Vulnerabilities are notably categorized as "Out-of-bounds Write", "Cross-site Scripting", "Path Traversal", "OS Command Injection", and "Out-of-bounds Read".
- 156 reported vulnerabilities are remotely exploitables.
- 69 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
- 140 reported vulnerabilities are exploitable by an anonymous user.
- Debian has the most reported vulnerabilities, with 30 reported vulnerabilities.
- AMD has the most reported critical vulnerabilities, with 4 reported vulnerabilities.
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
EXPLOITABLE
EXPLOITABLE
AVAILABLE
ANONYMOUSLY
WEB APPLICATION
Vulnerability Details
The following table list reported vulnerabilities for the period covered by this report:
35 Critical Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2020-07-24 | CVE-2020-15860 | Parallels | Unspecified vulnerability in Parallels Remote Application Server 17.1.1 Parallels Remote Application Server (RAS) 17.1.1 has a Business Logic Error causing remote code execution. | 9.9 |
2020-07-20 | CVE-2020-6103 | AMD | Out-of-bounds Write vulnerability in AMD Radeon Directx 11 Driver Atidxx64.Dll 26.20.15019.19000 An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.dll 26.20.15019.19000. | 9.9 |
2020-07-20 | CVE-2020-6102 | AMD | Out-of-bounds Write vulnerability in AMD Radeon Directx 11 Driver Atidxx64.Dll 26.20.15019.19000 An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.dll 26.20.15019.19000. | 9.9 |
2020-07-20 | CVE-2020-6101 | AMD | Out-of-bounds Write vulnerability in AMD Radeon Directx 11 Driver Atidxx64.Dll 26.20.15019.19000 An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.dll 26.20.15019.19000. | 9.9 |
2020-07-20 | CVE-2020-6100 | AMD | Out-of-bounds Write vulnerability in AMD Radeon Directx 11 Driver Atidxx64.Dll 26.20.15019.19000 An exploitable memory corruption vulnerability exists in AMD atidxx64.dll 26.20.15019.19000 graphics driver. | 9.9 |
2020-07-24 | CVE-2020-12812 | Fortinet | Improper Handling of Case Sensitivity vulnerability in Fortinet Fortios An improper authentication vulnerability in SSL VPN in FortiOS 6.4.0, 6.2.0 to 6.2.3, 6.0.9 and below may result in a user being able to log in successfully without being prompted for the second factor of authentication (FortiToken) if they changed the case of their username. | 9.8 |
2020-07-24 | CVE-2020-15922 | Midasolutions | OS Command Injection vulnerability in Midasolutions Eframework 2.8.0/2.8.9/2.9.0 There is an OS Command Injection in Mida eFramework 2.9.0 that allows an attacker to achieve Remote Code Execution (RCE) with administrative (root) privileges. | 9.8 |
2020-07-24 | CVE-2020-15921 | Midasolutions | Improper Authentication vulnerability in Midasolutions Eframework 2.8.0/2.8.9/2.9.0 Mida eFramework through 2.9.0 has a back door that permits a change of the administrative password and access to restricted functionalities, such as Code Execution. | 9.8 |
2020-07-24 | CVE-2020-15920 | Midasolutions | OS Command Injection vulnerability in Midasolutions Eframework 2.8.0/2.8.9/2.9.0 There is an OS Command Injection in Mida eFramework through 2.9.0 that allows an attacker to achieve Remote Code Execution (RCE) with administrative (root) privileges. | 9.8 |
2020-07-23 | CVE-2020-11624 | Avertx | Weak Password Requirements vulnerability in Avertx Hd438 Firmware and Hd838 Firmware An issue was discovered in AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 and Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438. | 9.8 |
2020-07-23 | CVE-2020-15492 | Inneo | Path Traversal vulnerability in Inneo Startup Tools 12.0.66.3784/13.0.70.3804 An issue was discovered in INNEO Startup TOOLS 2017 M021 12.0.66.3784 through 2018 M040 13.0.70.3804. | 9.8 |
2020-07-23 | CVE-2020-15477 | Raspberrytorte | OS Command Injection vulnerability in Raspberrytorte Raspberrytortoise 20121028 The WebControl in RaspberryTortoise through 2012-10-28 is vulnerable to remote code execution via shell metacharacters in a URI. | 9.8 |
2020-07-23 | CVE-2020-15391 | Devspace | Missing Authentication for Critical Function vulnerability in Devspace 4.13.0 The UI in DevSpace 4.13.0 allows web sites to execute actions on pods (on behalf of a victim) because of a lack of authentication for the WebSocket protocol. | 9.8 |
2020-07-23 | CVE-2020-15917 | Claws Mail Fedoraproject Opensuse | common/session.c in Claws Mail before 3.17.6 has a protocol violation because suffix data after STARTTLS is mishandled. | 9.8 |
2020-07-23 | CVE-2020-15916 | Tenda | OS Command Injection vulnerability in Tenda Ac15 Firmware 15.03.05.19 goform/AdvSetLanip endpoint on Tenda AC15 AC1900 15.03.05.19 devices allows remote attackers to execute arbitrary system commands via shell metacharacters in the lanIp POST parameter. | 9.8 |
2020-07-23 | CVE-2020-10921 | Automationdirect | Unspecified vulnerability in Automationdirect C-More HMI EA9 Firmware 6.52 This vulnerability allows remote attackers to issue commands on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. | 9.8 |
2020-07-23 | CVE-2020-10920 | Automationdirect | Unspecified vulnerability in Automationdirect C-More HMI EA9 Firmware 6.52 This vulnerability allows remote attackers to execute arbitrary code on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. | 9.8 |
2020-07-22 | CVE-2020-10917 | NEC | Unspecified vulnerability in NEC Esmpro Manager 6.42 This vulnerability allows remote attackers to execute arbitrary code on affected installations of NEC ESMPRO Manager 6.42. | 9.8 |
2020-07-22 | CVE-2020-4385 | IBM | Use of Hard-coded Credentials vulnerability in IBM Verify Gateway 1.0.0/1.0.1 IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 9.8 |
2020-07-22 | CVE-2020-9664 | Magento | Deserialization of Untrusted Data vulnerability in Magento Magento versions 1.14.4.5 and earlier, and 1.9.4.5 and earlier have a php object injection vulnerability. | 9.8 |
2020-07-22 | CVE-2020-15893 | Dlink | OS Command Injection vulnerability in Dlink Dir-816L Firmware 2.06/2.06.B09 An issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. | 9.8 |
2020-07-22 | CVE-2020-15892 | Dlink | Incorrect Resource Transfer Between Spheres vulnerability in Dlink Dap-1520 Firmware 1.0.8/1.10B04 An issue was discovered in apply.cgi on D-Link DAP-1520 devices before 1.10b04Beta02. | 9.8 |
2020-07-22 | CVE-2019-16244 | Openmicroscopy | Unspecified vulnerability in Openmicroscopy Omero.Server 5.0.0/5.6.0 OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden objects via a crafted query. | 9.8 |
2020-07-21 | CVE-2020-15889 | LUA | Out-of-bounds Read vulnerability in LUA 5.4.0 Lua 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members. | 9.8 |
2020-07-21 | CVE-2016-7063 | Pritunl | Path Traversal vulnerability in Pritunl Pritunl-Client A flaw was found in pritunl-client before version 1.0.1116.6. | 9.8 |
2020-07-21 | CVE-2020-15866 | Mruby Debian | Out-of-bounds Write vulnerability in multiple products mruby through 2.1.2-rc has a heap-based buffer overflow in the mrb_yield_with_class function in vm.c because of incorrect VM stack handling. | 9.8 |
2020-07-20 | CVE-2020-6871 | ZTE | Improper Authentication vulnerability in ZTE products The server management software module of ZTE has an authentication issue vulnerability, which allows users to skip the authentication of the server and execute some commands for high-level users. | 9.8 |
2020-07-20 | CVE-2020-14494 | Openclinic GA Project | Improper Restriction of Excessive Authentication Attempts vulnerability in Openclinic GA Project Openclinic GA 5.09.02/5.89.05B OpenClinic GA versions 5.09.02 and 5.89.05b contain an authentication mechanism within the system that does not provide sufficient complexity to protect against brute force attacks, which may allow unauthorized users to access the system after no more than a fixed maximum number of attempts. | 9.8 |
2020-07-20 | CVE-2020-14485 | Openclinic GA Project | Improper Authentication vulnerability in Openclinic GA Project Openclinic GA 5.09.02/5.89.05B OpenClinic GA versions 5.09.02 and 5.89.05b may allow an attacker to bypass client-side access controls or use a crafted request to initiate a session with limited functionality, which may allow execution of admin functions such as SQL queries. | 9.8 |
2020-07-20 | CVE-2020-14484 | Openclinic GA Project | Improper Restriction of Excessive Authentication Attempts vulnerability in Openclinic GA Project Openclinic GA 5.09.02/5.89.05B OpenClinic GA versions 5.09.02 and 5.89.05b may allow an attacker to bypass the system’s account lockout protection, which may allow brute force password attacks. | 9.8 |
2020-07-22 | CVE-2020-6522 | Google Debian Opensuse Fedoraproject | Inappropriate implementation in external protocol handlers in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |
2020-07-22 | CVE-2020-6509 | Use After Free vulnerability in Google Chrome Use after free in extensions in Google Chrome prior to 83.0.4103.116 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. | 9.6 | |
2020-07-22 | CVE-2020-6505 | Use After Free vulnerability in Google Chrome Use after free in speech in Google Chrome prior to 83.0.4103.106 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. | 9.6 | |
2020-07-20 | CVE-2020-15121 | Radare Fedoraproject | OS Command Injection vulnerability in multiple products In radare2 before version 4.5.0, malformed PDB file names in the PDB server path cause shell injection. | 9.6 |
2020-07-20 | CVE-2020-15123 | Codecov | OS Command Injection vulnerability in Codecov In codecov (npm package) before version 3.7.1 the upload method has a command injection vulnerability. | 9.3 |
92 High Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2020-07-24 | CVE-2020-8207 | Citrix | Improper Authentication vulnerability in Citrix Workspace 1912/2002 Improper access control in Citrix Workspace app for Windows 1912 CU1 and 2006.1 causes privilege escalation and code execution when the automatic updater service is running. | 8.8 |
2020-07-24 | CVE-2020-15932 | Overwolf | Link Following vulnerability in Overwolf Overwolf before 0.149.2.30 mishandles Symbolic Links during updates, causing elevation of privileges. | 8.8 |
2020-07-23 | CVE-2020-15633 | D Link | Unspecified vulnerability in D-Link products This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878, and DIR-882 routers with firmware 1.20B10_BETA. | 8.8 |
2020-07-23 | CVE-2020-15632 | Dlink | Unspecified vulnerability in Dlink Dir-842 Firmware This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-842 3.13B05 routers. | 8.8 |
2020-07-23 | CVE-2020-15887 | Softwareupdate Project | SQL Injection vulnerability in Softwareupdate Project Softwareupdate A SQL injection vulnerability in softwareupdate_controller.php in the Software Update module before 1.6 for MunkiReport allows attackers to execute arbitrary SQL commands via the last URL parameter of the /module/softwareupdate/get_tab_data/ endpoint. | 8.8 |
2020-07-23 | CVE-2020-15886 | Reportdata Project | SQL Injection vulnerability in Reportdata Project Reportdata A SQL injection vulnerability in reportdata_controller.php in the reportdata module before 3.5 for MunkiReport allows attackers to execute arbitrary SQL commands via the req parameter of the /module/reportdata/ip endpoint. | 8.8 |
2020-07-23 | CVE-2020-15884 | Munkireport Project | SQL Injection vulnerability in Munkireport Project Munkireport A SQL injection vulnerability in TableQuery.php in MunkiReport before 5.6.3 allows attackers to execute arbitrary SQL commands via the order[0][dir] field on POST requests to /datatables/data. | 8.8 |
2020-07-23 | CVE-2020-15688 | Embedthis | Authentication Bypass by Capture-replay vulnerability in Embedthis Goahead The HTTP Digest Authentication in the GoAhead web server before 5.1.2 does not completely protect against replay attacks. | 8.8 |
2020-07-22 | CVE-2020-15901 | Nagios | Unspecified vulnerability in Nagios XI In Nagios XI before 5.7.3, ajaxhelper.php allows remote authenticated attackers to execute arbitrary commands via cmdsubsys. | 8.8 |
2020-07-22 | CVE-2020-9687 | Adobe | Out-of-bounds Write vulnerability in Adobe Photoshop and Photoshop CC Adobe Photoshop versions Photoshop CC 2019, and Photoshop 2020 have an out-of-bounds write vulnerability. | 8.8 |
2020-07-22 | CVE-2020-9685 | Adobe | Out-of-bounds Write vulnerability in Adobe Photoshop and Photoshop CC Adobe Photoshop versions Photoshop CC 2019, and Photoshop 2020 have an out-of-bounds write vulnerability. | 8.8 |
2020-07-22 | CVE-2020-9684 | Adobe | Out-of-bounds Write vulnerability in Adobe Photoshop and Photoshop CC Adobe Photoshop versions Photoshop CC 2019, and Photoshop 2020 have an out-of-bounds write vulnerability. | 8.8 |
2020-07-22 | CVE-2020-9683 | Adobe | Out-of-bounds Read vulnerability in Adobe Photoshop and Photoshop CC Adobe Photoshop versions Photoshop CC 2019, and Photoshop 2020 have an out-of-bounds read vulnerability. | 8.8 |
2020-07-22 | CVE-2020-9680 | Adobe | Out-of-bounds Write vulnerability in Adobe Prelude 9.0 Adobe Prelude versions 9.0 and earlier have an out-of-bounds write vulnerability. | 8.8 |
2020-07-22 | CVE-2020-9678 | Adobe | Out-of-bounds Write vulnerability in Adobe Prelude 9.0 Adobe Prelude versions 9.0 and earlier have an out-of-bounds write vulnerability. | 8.8 |
2020-07-22 | CVE-2020-9677 | Adobe | Out-of-bounds Read vulnerability in Adobe Prelude 9.0 Adobe Prelude versions 9.0 and earlier have an out-of-bounds read vulnerability. | 8.8 |
2020-07-22 | CVE-2020-6534 | Google Opensuse Debian Fedoraproject | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in WebRTC in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-07-22 | CVE-2020-6533 | Google Opensuse Debian Fedoraproject | Type Confusion vulnerability in multiple products Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-07-22 | CVE-2020-6530 | Google Opensuse Fedoraproject Debian | Out-of-bounds Write vulnerability in multiple products Out of bounds memory access in developer tools in Google Chrome prior to 84.0.4147.89 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. | 8.8 |
2020-07-22 | CVE-2020-6525 | Google Debian Opensuse Fedoraproject | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in Skia in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-07-22 | CVE-2020-6524 | Google Debian Opensuse Fedoraproject | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in WebAudio in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-07-22 | CVE-2020-6523 | Google Debian Opensuse Fedoraproject | Integer Overflow or Wraparound vulnerability in multiple products Out of bounds write in Skia in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-07-22 | CVE-2020-6520 | Google Debian Opensuse Fedoraproject | Out-of-bounds Write vulnerability in multiple products Buffer overflow in Skia in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-07-22 | CVE-2020-6518 | Google Debian Opensuse Fedoraproject | Use After Free vulnerability in multiple products Use after free in developer tools in Google Chrome prior to 84.0.4147.89 allowed a remote attacker who had convinced the user to use developer tools to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-07-22 | CVE-2020-6517 | Google Debian Opensuse Fedoraproject | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in history in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-07-22 | CVE-2020-6515 | Google Debian Opensuse Fedoraproject | Use After Free vulnerability in multiple products Use after free in tab strip in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-07-22 | CVE-2020-6513 | Google Opensuse Fedoraproject Debian | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in PDFium in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. | 8.8 |
2020-07-22 | CVE-2020-6512 | Google Debian Opensuse Fedoraproject | Type Confusion vulnerability in multiple products Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-07-22 | CVE-2020-6507 | Out-of-bounds Write vulnerability in Google Chrome Out of bounds write in V8 in Google Chrome prior to 83.0.4103.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 | |
2020-07-21 | CVE-2020-15888 | LUA | Use After Free vulnerability in LUA 5.4.0 Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based buffer overflow, heap-based buffer over-read, or use-after-free. | 8.8 |
2020-07-21 | CVE-2020-15877 | Librenms | Unspecified vulnerability in Librenms An issue was discovered in LibreNMS before 1.65.1. | 8.8 |
2020-07-20 | CVE-2020-8215 | Automattic | Classic Buffer Overflow vulnerability in Automattic Canvas A buffer overflow is present in canvas version <= 1.6.9, which could lead to a Denial of Service or execution of arbitrary code when it processes a user-provided image. | 8.8 |
2020-07-20 | CVE-2020-15841 | Liferay | Unspecified vulnerability in Liferay Portal Liferay Portal before 7.3.0, and Liferay DXP 7.0 before fix pack 89, 7.1 before fix pack 17, and 7.2 before fix pack 4, does not safely test a connection to a LDAP server, which allows remote attackers to obtain the LDAP server's password via the Test LDAP Connection feature. | 8.8 |
2020-07-24 | CVE-2020-8174 | Nodejs Oracle Netapp | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0. | 8.1 |
2020-07-23 | CVE-2020-15882 | Munkireport Project | Cross-Site Request Forgery (CSRF) vulnerability in Munkireport Project Munkireport A CSRF issue in manager/delete_machine/{id} in MunkiReport before 5.6.3 allows attackers to delete arbitrary machines from the MunkiReport database. | 8.1 |
2020-07-20 | CVE-2020-4125 | IBM | Download of Code Without Integrity Check vulnerability in IBM Marketing Operations Using HCL Marketing Operations 9.1.2.4, 10.1.x, 11.1.0.x, a malicious attacker could download files from the RHEL environment by doing some modification in the link, giving the attacker access to confidential information. | 8.1 |
2020-07-20 | CVE-2020-12028 | Rockwellautomation | Missing Authentication for Critical Function vulnerability in Rockwellautomation Factorytalk View In all versions of FactoryTalk View SEA remote, an authenticated attacker may be able to utilize certain handlers to interact with the data on the remote endpoint since those handlers do not enforce appropriate permissions. | 8.1 |
2020-07-20 | CVE-2020-15842 | Liferay | Deserialization of Untrusted Data vulnerability in Liferay Portal Liferay Portal before 7.3.0, and Liferay DXP 7.0 before fix pack 90, 7.1 before fix pack 17, and 7.2 before fix pack 5, allows man-in-the-middle attackers to execute arbitrary code via crafted serialized payloads, because of insecure deserialization. | 8.1 |
2020-07-23 | CVE-2020-15631 | Dlink | Unspecified vulnerability in Dlink Dap-1860 Firmware This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1860 1.04B03_HOTFIX WiFi extenders. | 8.0 |
2020-07-24 | CVE-2020-10610 | Osisoft | Untrusted Search Path vulnerability in Osisoft products In OSIsoft PI System multiple products and versions, a local attacker can modify a search path and plant a binary to exploit the affected PI System software to take control of the local computer at Windows system privilege level, resulting in unauthorized information disclosure, deletion, or modification. | 7.8 |
2020-07-24 | CVE-2020-10608 | Osisoft | Improper Verification of Cryptographic Signature vulnerability in Osisoft products In OSIsoft PI System multiple products and versions, a local attacker can plant a binary and bypass a code integrity check for loading PI System libraries. | 7.8 |
2020-07-24 | CVE-2020-10606 | Osisoft | Incorrect Default Permissions vulnerability in Osisoft products In OSIsoft PI System multiple products and versions, a local attacker can exploit incorrect permissions set by affected PI System software. | 7.8 |
2020-07-24 | CVE-2020-8326 | Lenovo | Unquoted Search Path or Element vulnerability in Lenovo Drivers Management An unquoted service path vulnerability was reported in Lenovo Drivers Management prior to version 2.7.1128.1046 that could allow an authenticated user to execute code with elevated privileges. | 7.8 |
2020-07-24 | CVE-2020-8317 | Lenovo | Untrusted Search Path vulnerability in Lenovo Drivers Management A DLL search path vulnerability was reported in Lenovo Drivers Management prior to version 2.7.1128.1046 that could allow an authenticated user to execute code with elevated privileges. | 7.8 |
2020-07-24 | CVE-2020-15778 | Openbsd Netapp Broadcom | OS Command Injection vulnerability in multiple products scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. | 7.8 |
2020-07-23 | CVE-2020-7516 | Schneider Electric | Unspecified vulnerability in Schneider-Electric Easergy Builder 1.4.7.2 A CWE-316: Cleartext Storage of Sensitive Information in Memory vulnerability exists in Easergy Builder V1.4.7.2 and prior which could allow an attacker access to login credentials. | 7.8 |
2020-07-23 | CVE-2020-7515 | Schneider Electric | Unspecified vulnerability in Schneider-Electric Easergy Builder 1.4.7.2 A CWE-321: Use of hard-coded cryptographic key stored in cleartext vulnerability exists in Easergy Builder V1.4.7.2 and prior which could allow an attacker to decrypt a password. | 7.8 |
2020-07-23 | CVE-2020-7514 | Schneider Electric | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Schneider-Electric Easergy Builder 1.4.7.2 A CWE-327: Use of a Broken or Risky Cryptographic Algorithm vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker access to the authorization credentials for a device and gain full access. | 7.8 |
2020-07-22 | CVE-2020-15904 | Pypi | Out-of-bounds Write vulnerability in Pypi Bsdiff4 A buffer overflow in the patching routine of bsdiff4 before 1.2.0 allows an attacker to write to heap memory (beyond allocated bounds) via a crafted patch file. | 7.8 |
2020-07-22 | CVE-2020-4372 | IBM | Insufficiently Protected Credentials vulnerability in IBM Verify Gateway 1.0.0/1.0.1 IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 stores user credentials in plain in clear text which can be read by a local user. | 7.8 |
2020-07-22 | CVE-2020-9676 | Adobe | Out-of-bounds Write vulnerability in Adobe Bridge Adobe Bridge versions 10.0.3 and earlier have an out-of-bounds write vulnerability. | 7.8 |
2020-07-22 | CVE-2020-9675 | Adobe | Out-of-bounds Read vulnerability in Adobe Bridge Adobe Bridge versions 10.0.3 and earlier have an out-of-bounds read vulnerability. | 7.8 |
2020-07-22 | CVE-2020-9674 | Adobe | Out-of-bounds Write vulnerability in Adobe Bridge Adobe Bridge versions 10.0.3 and earlier have an out-of-bounds write vulnerability. | 7.8 |
2020-07-22 | CVE-2020-6510 | Google Debian Opensuse Fedoraproject | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in background fetch in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 7.8 |
2020-07-22 | CVE-2019-18619 | Synaptics Lenovo HP | Release of Invalid Pointer or Reference vulnerability in multiple products Incorrect parameter validation in the synaTee component of Synaptics WBF drivers using an SGX enclave (all versions prior to 2019-11-15) allows a local user to execute arbitrary code in the enclave (that can compromise confidentiality of enclave data) via APIs that accept invalid pointers. | 7.8 |
2020-07-21 | CVE-2020-15724 | 360Totalsecurity | Uncontrolled Search Path Element vulnerability in 360Totalsecurity 360 Total Security In the version 12.1.0.1005 and below of 360 Total Security, when the Gamefolde calls GameChrome.exe, there exists a local privilege escalation vulnerability. | 7.8 |
2020-07-21 | CVE-2020-15723 | 360Totalsecurity | Uncontrolled Search Path Element vulnerability in 360Totalsecurity 360 Total Security In the version 12.1.0.1004 and below of 360 Total Security, when the main process of 360 Total Security calls GameChrome.exe, there exists a local privilege escalation vulnerability. | 7.8 |
2020-07-21 | CVE-2020-15722 | 360Totalsecurity | Uncontrolled Search Path Element vulnerability in 360Totalsecurity 360 Total Security In version 12.1.0.1004 and below of 360 Total Security,when TPI calls the browser process, there exists a local privilege escalation vulnerability. | 7.8 |
2020-07-20 | CVE-2020-15852 | Linux XEN Netapp | Incorrect Default Permissions vulnerability in multiple products An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for x86 PV guests. | 7.8 |
2020-07-20 | CVE-2020-12031 | Rockwellautomation | Out-of-bounds Write vulnerability in Rockwellautomation Factorytalk View In all versions of FactoryTalk View SE, after bypassing memory corruption mechanisms found in the operating system, a local, authenticated attacker may corrupt the associated memory space allowing for arbitrary code execution. | 7.8 |
2020-07-20 | CVE-2020-12029 | Rockwellautomation | Unspecified vulnerability in Rockwellautomation Factorytalk View All versions of FactoryTalk View SE do not properly validate input of filenames within a project directory. | 7.8 |
2020-07-20 | CVE-2020-15009 | Asus | Untrusted Search Path vulnerability in Asus Screenpad2 Upgrade Tool 1.0.3 AsusScreenXpertServicec.exe and ScreenXpertUpgradeServiceManager.exe in ScreenPad2_Upgrade_Tool.msi V1.0.3 for ASUS PCs with ScreenPad 1.0 (UX450FDX, UX550GDX and UX550GEX) could lead to unsigned code execution with no additional restrictions when a user puts an application at a particular path with a particular file name. | 7.8 |
2020-07-25 | CVE-2020-7687 | Fast Http Project | Path Traversal vulnerability in Fast-Http Project Fast-Http This affects all versions of package fast-http. | 7.5 |
2020-07-25 | CVE-2020-7686 | Rollup Plugin DEV Server Project | Path Traversal vulnerability in Rollup-Plugin-Dev-Server Project Rollup-Plugin-Dev-Server This affects all versions of package rollup-plugin-dev-server. | 7.5 |
2020-07-25 | CVE-2020-7683 | Rollup Plugin Server Project | Path Traversal vulnerability in Rollup-Plugin-Server Project Rollup-Plugin-Server This affects all versions of package rollup-plugin-server. | 7.5 |
2020-07-25 | CVE-2020-7682 | Marked Tree Project | Path Traversal vulnerability in Marked-Tree Project Marked-Tree This affects all versions of package marked-tree. | 7.5 |
2020-07-25 | CVE-2020-7681 | Indo Mars | Path Traversal vulnerability in Indo-Mars Marscode This affects all versions of package marscode. | 7.5 |
2020-07-25 | CVE-2020-10604 | Osisoft | Improper Handling of Exceptional Conditions vulnerability in Osisoft PI Data Archive 2018 In OSIsoft PI System multiple products and versions, a remote, unauthenticated attacker could crash PI Network Manager service through specially crafted requests. | 7.5 |
2020-07-24 | CVE-2020-15924 | Midasolutions | SQL Injection vulnerability in Midasolutions Eframework 2.8.0/2.8.9/2.9.0 There is a SQL Injection in Mida eFramework through 2.9.0 that leads to Information Disclosure. | 7.5 |
2020-07-24 | CVE-2020-15923 | Midasolutions | Path Traversal vulnerability in Midasolutions Eframework 2.8.0/2.8.9/2.9.0 Mida eFramework through 2.9.0 allows unauthenticated ../ directory traversal. | 7.5 |
2020-07-23 | CVE-2020-7519 | Schneider Electric | Weak Password Requirements vulnerability in Schneider-Electric Easergy Builder 1.4.7.2 A CWE-521: Weak Password Requirements vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker to compromise a user account. | 7.5 |
2020-07-23 | CVE-2020-7518 | Schneider Electric | Improper Input Validation vulnerability in Schneider-Electric Easergy Builder 1.4.7.2 A CWE-20: Improper input validation vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker to modify project configuration files. | 7.5 |
2020-07-23 | CVE-2020-7491 | Schneider Electric | Unspecified vulnerability in Schneider-Electric products **VERSION NOT SUPPORTED WHEN ASSIGNED** A legacy debug port account in TCMs installed in Tricon system versions 10.2.0 through 10.5.3 is visible on the network and could allow inappropriate access. | 7.5 |
2020-07-23 | CVE-2020-10922 | Automationdirect | Improper Input Validation vulnerability in Automationdirect C-More HMI EA9 Firmware 6.52 This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. | 7.5 |
2020-07-23 | CVE-2020-10918 | Automationdirect | Unspecified vulnerability in Automationdirect C-More HMI EA9 Firmware 6.52 This vulnerability allows remote attackers to bypass authentication on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. | 7.5 |
2020-07-23 | CVE-2020-11440 | Windriver | Unspecified vulnerability in Windriver Vxworks httpRpmFs in WebCLI in Wind River VxWorks 5.5 through 7 SR0640 has no check for an escape from the web root. | 7.5 |
2020-07-23 | CVE-2020-15908 | Cauldrondevelopment | Path Traversal vulnerability in Cauldrondevelopment C! tar/TarFileReader.cpp in Cauldron cbang (aka C-Bang or C!) before 1.6.0 allows Directory Traversal during extraction from a TAR archive. | 7.5 |
2020-07-22 | CVE-2020-4400 | IBM | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Verify Gateway 1.0.0/1.0.1 IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. | 7.5 |
2020-07-22 | CVE-2020-3452 | Cisco | Path Traversal vulnerability in Cisco Adaptive Security Appliance Software A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct directory traversal attacks and read sensitive files on a targeted system. | 7.5 |
2020-07-22 | CVE-2020-15896 | Dlink | Improper Authentication vulnerability in Dlink Dap-1522 Firmware 1.41/1.42 An authentication-bypass issue was discovered on D-Link DAP-1522 devices 1.4x before 1.10b04Beta02. | 7.5 |
2020-07-22 | CVE-2020-15894 | Dlink | Missing Authentication for Critical Function vulnerability in Dlink Dir-816L Firmware 2.06/2.06.B09 An issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. | 7.5 |
2020-07-22 | CVE-2020-15806 | Codesys | Memory Leak vulnerability in Codesys products CODESYS Control runtime system before 3.5.16.10 allows Uncontrolled Memory Allocation. | 7.5 |
2020-07-21 | CVE-2020-15890 | Luajit Debian Canonical | Out-of-bounds Read vulnerability in multiple products LuaJit through 2.1.0-beta3 has an out-of-bounds read because __gc handler frame traversal is mishandled. | 7.5 |
2020-07-21 | CVE-2020-15879 | Bitwarden | Server-Side Request Forgery (SSRF) vulnerability in Bitwarden Server 1.35.1 Bitwarden Server 1.35.1 allows SSRF because it does not consider certain IPv6 addresses (ones beginning with fc, fd, fe, or ff, and the :: address) and certain IPv4 addresses (0.0.0.0/8, 127.0.0.0/8, and 169.254.0.0/16). | 7.5 |
2020-07-21 | CVE-2016-7064 | Pritunl | Improper Verification of Cryptographic Signature vulnerability in Pritunl Pritunl-Client A flaw was found in pritunl-client before version 1.0.1116.6. | 7.5 |
2020-07-21 | CVE-2018-21036 | Sailsjs | Improper Input Validation vulnerability in Sailsjs Sails Sails.js before v1.0.0-46 allows attackers to cause a denial of service with a single request because there is no error handler in sails-hook-sockets to handle an empty pathname in a WebSocket request. | 7.5 |
2020-07-20 | CVE-2020-3481 | Clamav Debian Canonical Fedoraproject | NULL Pointer Dereference vulnerability in multiple products A vulnerability in the EGG archive parsing module in Clam AntiVirus (ClamAV) Software versions 0.102.0 - 0.102.3 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. | 7.5 |
2020-07-20 | CVE-2020-15052 | Articatech | SQL Injection vulnerability in Articatech Artica Proxy An issue was discovered in Artica Proxy CE before 4.28.030.418. | 7.5 |
2020-07-20 | CVE-2020-8214 | Servey Project | Path Traversal vulnerability in Servey Project Servey 2.2.0 A path traversal vulnerability in servey version < 3 allows an attacker to read content of any arbitrary file. | 7.5 |
2020-07-20 | CVE-2020-8205 | Transloadit | Server-Side Request Forgery (SSRF) vulnerability in Transloadit Uppy The uppy npm package < 1.13.2 and < 2.0.0-alpha.5 is vulnerable to a Server-Side Request Forgery (SSRF) vulnerability, which allows an attacker to scan local or external networks or otherwise interact with internal systems. | 7.5 |
2020-07-21 | CVE-2020-12499 | Phoenixcontact | Path Traversal vulnerability in Phoenixcontact Plcnext Engineer 202031 In PHOENIX CONTACT PLCnext Engineer version 2020.3.1 and earlier an improper path sanitation vulnerability exists on import of project files. | 7.3 |
2020-07-24 | CVE-2020-10600 | Osisoft | NULL Pointer Dereference vulnerability in Osisoft PI Data Archive 2018/2019/3.4.430.460 An authenticated remote attacker could crash PI Archive Subsystem when the subsystem is working under memory pressure. | 7.1 |
68 Medium Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2020-07-23 | CVE-2020-11623 | Avertx | Unspecified vulnerability in Avertx Hd438 Firmware and Hd838 Firmware An issue was discovered in AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 and Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438. | 6.8 |
2020-07-23 | CVE-2020-12638 | Espressif | Cleartext Transmission of Sensitive Information vulnerability in Espressif Esp-Idf, Esp8266 Nonos SDK and Esp8266 Rtos SDK An encryption-bypass issue was discovered on Espressif ESP-IDF devices through 4.2, ESP8266_NONOS_SDK devices through 3.0.3, and ESP8266_RTOS_SDK devices through 3.3. | 6.8 |
2020-07-22 | CVE-2020-8559 | Kubernetes | Open Redirect vulnerability in Kubernetes The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise. | 6.8 |
2020-07-22 | CVE-2020-12774 | Dlink | OS Command Injection vulnerability in Dlink Dsl-7740C Firmware V6.Tr069.20180723 D-Link DSL-7740C does not properly validate user input, which allows an authenticated LAN user to inject arbitrary command. | 6.7 |
2020-07-24 | CVE-2020-14307 | Redhat | Unspecified vulnerability in Redhat products A vulnerability was found in Wildfly's Enterprise Java Beans (EJB) versions shipped with Red Hat JBoss EAP 7, where SessionOpenInvocations are never removed from the remote InvocationTracker after a response is received in the EJB Client, as well as the server. | 6.5 |
2020-07-24 | CVE-2020-14297 | Redhat | Unspecified vulnerability in Redhat products A flaw was discovered in Wildfly's EJB Client as shipped with Red Hat JBoss EAP 7, where some specific EJB transaction objects may get accumulated over the time and can cause services to slow down and eventaully unavailable. | 6.5 |
2020-07-23 | CVE-2020-15912 | Tesla | Unspecified vulnerability in Tesla Model 3 Firmware Tesla Model 3 vehicles allow attackers to open a door by leveraging access to a legitimate key card, and then using NFC Relay. | 6.5 |
2020-07-23 | CVE-2019-11252 | Kubernetes | Information Exposure Through an Error Message vulnerability in Kubernetes The Kubernetes kube-controller-manager in versions v1.0-v1.17 is vulnerable to a credential leakage via error messages in mount failure logs and events for AzureFile and CephFS volumes. | 6.5 |
2020-07-22 | CVE-2020-15126 | Parseplatform | Incorrect Authorization vulnerability in Parseplatform Parse Server In parser-server from version 3.5.0 and before 4.3.0, an authenticated user using the viewer GraphQL query can by pass all read security on his User object and can also by pass all objects linked via relation or Pointer on his User object. | 6.5 |
2020-07-22 | CVE-2020-4399 | IBM | Unspecified vulnerability in IBM Verify Gateway 1.0.0/1.0.1 IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 could allow an authenticated user to send malformed requests to cause a denial of service against the server. | 6.5 |
2020-07-22 | CVE-2020-9686 | Adobe | Out-of-bounds Read vulnerability in Adobe Photoshop and Photoshop CC Adobe Photoshop versions Photoshop CC 2019, and Photoshop 2020 have an out-of-bounds read vulnerability. | 6.5 |
2020-07-22 | CVE-2020-9679 | Adobe | Out-of-bounds Read vulnerability in Adobe Prelude 9.0 Adobe Prelude versions 9.0 and earlier have an out-of-bounds read vulnerability. | 6.5 |
2020-07-22 | CVE-2020-15124 | Intranda | Path Traversal vulnerability in Intranda Goobi Viewer Core In Goobi Viewer Core before version 4.8.3, a path traversal vulnerability allows for remote attackers to access files on the server via the application. | 6.5 |
2020-07-22 | CVE-2020-6526 | Google Debian Opensuse Fedoraproject | Inappropriate implementation in iframe sandbox in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. | 6.5 |
2020-07-22 | CVE-2020-6521 | Google Debian Opensuse Fedoraproject | Side-channel information leakage in autofill in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. | 6.5 |
2020-07-22 | CVE-2020-6519 | Google Debian Opensuse Fedoraproject | Policy bypass in CSP in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to bypass content security policy via a crafted HTML page. | 6.5 |
2020-07-22 | CVE-2020-6514 | Google Opensuse Fedoraproject Debian Canonical Apple | Information Exposure vulnerability in multiple products Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream. | 6.5 |
2020-07-22 | CVE-2020-6511 | Google Debian Opensuse Fedoraproject | Information Exposure Through an Error Message vulnerability in multiple products Information leak in content security policy in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 6.5 |
2020-07-22 | CVE-2020-6506 | Unspecified vulnerability in Google Chrome Insufficient policy enforcement in WebView in Google Chrome on Android prior to 83.0.4103.106 allowed a remote attacker to bypass site isolation via a crafted HTML page. | 6.5 | |
2020-07-21 | CVE-2020-15102 | Prestashop | Missing Authorization vulnerability in Prestashop Dashboard products In PrestaShop Dashboard Productions before version 2.1.0, there is improper authorization which enables an attacker to change the configuration. | 6.5 |
2020-07-21 | CVE-2020-15873 | Librenms | SQL Injection vulnerability in Librenms In LibreNMS before 1.65.1, an authenticated attacker can achieve SQL Injection via the customoid.inc.php device_id POST parameter to ajax_form.php. | 6.5 |
2020-07-20 | CVE-2020-14491 | Openclinic GA Project | Missing Authorization vulnerability in Openclinic GA Project Openclinic GA 5.09.02/5.89.05B OpenClinic GA versions 5.09.02 and 5.89.05b do not properly check permissions before executing SQL queries, which may allow a low-privilege user to access privileged information. | 6.5 |
2020-07-20 | CVE-2020-4466 | IBM | Unspecified vulnerability in IBM MQ for HPE Nonstop 8.0.4/8.1.0 IBM MQ for HPE NonStop 8.0.4 and 8.1.0 could allow a remote authenticated attacker could cause a denial of service due to an error within the Queue processing function. | 6.5 |
2020-07-24 | CVE-2020-15919 | Midasolutions | Cross-site Scripting vulnerability in Midasolutions Eframework 2.8.0/2.8.9/2.9.0 A Reflected Cross Site Scripting (XSS) vulnerability was discovered in Mida eFramework through 2.9.0. | 6.1 |
2020-07-23 | CVE-2019-18834 | Woocommerce | Cross-site Scripting vulnerability in Woocommerce Subscriptions Persistent XSS in the WooCommerce Subscriptions plugin before 2.6.3 for WordPress allows remote attackers to execute arbitrary JavaScript because Billing Details are mishandled in WCS_Admin_Post_Types in class-wcs-admin-post-types.php. | 6.1 |
2020-07-23 | CVE-2020-15883 | Managedinstalls Project | Cross-site Scripting vulnerability in Managedinstalls Project Managedinstalls A Cross-Site Scripting (XSS) vulnerability in the managedinstalls module before 2.6 for MunkiReport allows remote attackers to inject arbitrary web script or HTML via the last two URL parameters (through which installed packages names and versions are reported). | 6.1 |
2020-07-23 | CVE-2020-15881 | Munki Facts Project | Cross-site Scripting vulnerability in Munki Facts Project Munki Facts A Cross-Site Scripting (XSS) vulnerability in the munki_facts (aka Munki Conditions) module before 1.5 for MunkiReport allows remote attackers to inject arbitrary web script or HTML via the key name. | 6.1 |
2020-07-22 | CVE-2020-15902 | Nagios | Cross-site Scripting vulnerability in Nagios XI Graph Explorer in Nagios XI before 5.7.2 allows XSS via the link url option. | 6.1 |
2020-07-22 | CVE-2020-9665 | Magento | Cross-site Scripting vulnerability in Magento Magento versions 1.14.4.5 and earlier, and 1.9.4.5 and earlier have a stored cross-site scripting vulnerability. | 6.1 |
2020-07-22 | CVE-2020-15895 | Dlink | Cross-site Scripting vulnerability in Dlink Dir-816L Firmware 2.06/2.06.B09 An XSS issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. | 6.1 |
2020-07-22 | CVE-2020-6535 | Google Opensuse Debian Fedoraproject | Cross-site Scripting vulnerability in multiple products Insufficient data validation in WebUI in Google Chrome prior to 84.0.4147.89 allowed a remote attacker who had compromised the renderer process to inject scripts or HTML into a privileged page via a crafted HTML page. | 6.1 |
2020-07-21 | CVE-2020-14063 | TC Custom Javascript Project | Cross-site Scripting vulnerability in TC Custom Javascript Project TC Custom Javascript A stored Cross-Site Scripting (XSS) vulnerability in the TC Custom JavaScript plugin before 1.2.2 for WordPress allows unauthenticated remote attackers to inject arbitrary JavaScript via the tccj-content parameter. | 6.1 |
2020-07-21 | CVE-2020-12432 | Collaboraoffice | Cross-site Scripting vulnerability in Collaboraoffice Collabora Online Development Edition The WOPI API integration for Vereign Collabora CODE through 4.2.2 does not properly restrict delivery of JavaScript to a victim's browser, and lacks proper MIME type access control, which could lead to XSS that steals account credentials via cookies or local storage. | 6.1 |
2020-07-20 | CVE-2020-13932 | Apache | Cross-site Scripting vulnerability in Apache Activemq Artemis In Apache ActiveMQ Artemis 2.5.0 to 2.13.0, a specially crafted MQTT packet which has an XSS payload as client-id or topic name can exploit this vulnerability. | 6.1 |
2020-07-20 | CVE-2020-6872 | ZTE | Cross-site Scripting vulnerability in ZTE products The server management software module of ZTE has a storage XSS vulnerability. | 6.1 |
2020-07-20 | CVE-2020-15053 | Articatech | Cross-site Scripting vulnerability in Articatech Artica Proxy An issue was discovered in Artica Proxy CE before 4.28.030.418. | 6.1 |
2020-07-20 | CVE-2020-7680 | Docsifyjs | Cross-site Scripting vulnerability in Docsifyjs Docsify docsify prior to 4.11.4 is susceptible to Cross-site Scripting (XSS). | 6.1 |
2020-07-22 | CVE-2019-18618 | Synaptics Lenovo HP | Incorrect access control in the firmware of Synaptics VFS75xx family fingerprint sensors that include external flash (all versions prior to 2019-11-15) allows a local administrator or physical attacker to compromise the confidentiality of sensor data via injection of an unverified partition table. | 6.0 |
2020-07-23 | CVE-2020-10919 | Automationdirect | Inadequate Encryption Strength vulnerability in Automationdirect C-More HMI EA9 Firmware 6.52 This vulnerability allows remote attackers to disclose sensitive information on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. | 5.9 |
2020-07-22 | CVE-2020-4397 | IBM | Cleartext Transmission of Sensitive Information vulnerability in IBM Verify Gateway 1.0.0/1.0.1 IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 transmits sensitive information in plain text which could be obtained by an attacker using man in the middle techniques. | 5.9 |
2020-07-20 | CVE-2020-4527 | IBM | Session Fixation vulnerability in IBM Planning Analytics 2.0 IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information, caused by the failure to set the Secure flag for the session cookie in TLS mode. | 5.9 |
2020-07-20 | CVE-2020-3442 | DUO | Cleartext Transmission of Sensitive Information vulnerability in DUO Duoconnect 1.0.0/1.1.0 The DuoConnect client enables users to establish SSH connections to hosts protected by a DNG instance. | 5.7 |
2020-07-24 | CVE-2020-8175 | Jpeg JS Project | Resource Exhaustion vulnerability in Jpeg-Js Project Jpeg-Js Uncontrolled resource consumption in `jpeg-js` before 0.4.0 may allow attacker to launch denial of service attacks using specially a crafted JPEG image. | 5.5 |
2020-07-24 | CVE-2020-15945 | LUA | Unspecified vulnerability in LUA Lua through 5.4.0 has a segmentation fault in changedline in ldebug.c (e.g., when called by luaG_traceexec) because it incorrectly expects that an oldpc value is always updated upon a return of the flow of control to a function. | 5.5 |
2020-07-23 | CVE-2020-7517 | Schneider Electric | Cleartext Storage of Sensitive Information vulnerability in Schneider-Electric Easergy Builder 1.4.7.2 A CWE-312: Cleartext Storage of Sensitive Information vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker to read user credentials. | 5.5 |
2020-07-23 | CVE-2020-8557 | Kubernetes | Resource Exhaustion vulnerability in Kubernetes The Kubernetes kubelet component in versions 1.1-1.16.12, 1.17.0-1.17.8 and 1.18.0-1.18.5 do not account for disk usage by a pod which writes to its own /etc/hosts file. | 5.5 |
2020-07-22 | CVE-2020-4369 | IBM | Cleartext Storage of Sensitive Information vulnerability in IBM Verify Gateway 1.0.0/1.0.1 IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 stores highly sensitive information in cleartext that could be obtained by a user. | 5.5 |
2020-07-24 | CVE-2020-14175 | Atlassian | Cross-site Scripting vulnerability in Atlassian Confluence Server Affected versions of Atlassian Confluence Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in user macro parameters. | 5.4 |
2020-07-24 | CVE-2020-15918 | Midasolutions | Cross-site Scripting vulnerability in Midasolutions Eframework 2.8.0/2.8.9/2.9.0 Multiple Stored Cross Site Scripting (XSS) vulnerabilities were discovered in Mida eFramework through 2.9.0. | 5.4 |
2020-07-23 | CVE-2020-4447 | IBM | Cross-site Scripting vulnerability in IBM Filenet Content Manager 5.5.3/5.5.4 IBM FileNet Content Manager 5.5.3 and 5.5.4 is vulnerable to cross-site scripting. | 5.4 |
2020-07-23 | CVE-2020-15885 | Munkireport Project | Cross-site Scripting vulnerability in Munkireport Project Comment A Cross-Site Scripting (XSS) vulnerability in the comment module before 4.0 for MunkiReport allows remote attackers to inject arbitrary web script or HTML by posting a new comment. | 5.4 |
2020-07-20 | CVE-2020-15118 | Torchbox | Cross-site Scripting vulnerability in Torchbox Wagtail In Wagtail before versions 2.7.4 and 2.9.3, when a form page type is made available to Wagtail editors through the `wagtail.contrib.forms` app, and the page template is built using Django's standard form rendering helpers such as form.as_p, any HTML tags used within a form field's help text will be rendered unescaped in the page. | 5.4 |
2020-07-20 | CVE-2020-15111 | Gofiber | Injection vulnerability in Gofiber Fiber In Fiber before version 1.12.6, the filename that is given in c.Attachment() (https://docs.gofiber.io/ctx#attachment) is not escaped, and therefore vulnerable for a CRLF injection attack. | 5.4 |
2020-07-24 | CVE-2020-10602 | PI | NULL Pointer Dereference vulnerability in PI Data Archive 2018 In OSIsoft PI System multiple products and versions, an authenticated remote attacker could crash PI Network Manager due to a race condition. | 5.3 |
2020-07-23 | CVE-2020-11625 | Avertx | Information Exposure Through Discrepancy vulnerability in Avertx Hd438 Firmware and Hd838 Firmware An issue was discovered in AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 and Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438. | 5.3 |
2020-07-22 | CVE-2020-9663 | Adobe | Path Traversal vulnerability in Adobe Reader Adobe Reader Mobile versions 20.0.1 and earlier have a directory traversal vulnerability. | 5.3 |
2020-07-22 | CVE-2014-1422 | Canonical | Incorrect Permission Assignment for Critical Resource vulnerability in Canonical Trust-Store (Ubuntu) and Trust-Store (Ubuntu Rtm) In Ubuntu's trust-store, if a user revokes location access from an application, the location is still available to the application because the application will honour incorrect, cached permissions. | 5.0 |
2020-07-25 | CVE-2020-10614 | Osisoft | Cross-site Scripting vulnerability in Osisoft PI Vision 2017/2019 In OSIsoft PI System multiple products and versions, an authenticated remote attacker with write access to PI Vision databases could inject code into a display. | 4.8 |
2020-07-23 | CVE-2020-7520 | Schneider Electric | Open Redirect vulnerability in Schneider-Electric Software Update Utility A CWE-601: URL Redirection to Untrusted Site ('Open Redirect') vulnerability exists in Schneider Electric Software Update (SESU), V2.4.0 and prior, which could cause execution of malicious code on the victim's machine. | 4.7 |
2020-07-22 | CVE-2020-6536 | Google Debian Opensuse Fedoraproject | Incorrect security UI in PWAs in Google Chrome prior to 84.0.4147.89 allowed a remote attacker who had persuaded the user to install a PWA to spoof the contents of the Omnibox (URL bar) via a crafted PWA. | 4.3 |
2020-07-22 | CVE-2020-6531 | Google Debian Opensuse Fedoraproject | Information Exposure Through Discrepancy vulnerability in multiple products Side-channel information leakage in scroll to text in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 4.3 |
2020-07-22 | CVE-2020-6529 | Google Debian Opensuse Fedoraproject | Improper Certificate Validation vulnerability in multiple products Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to leak cross-origin data via a crafted HTML page. | 4.3 |
2020-07-22 | CVE-2020-6528 | Google Debian Opensuse Fedoraproject | Incorrect security UI in basic auth in Google Chrome on iOS prior to 84.0.4147.89 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. | 4.3 |
2020-07-22 | CVE-2020-6527 | Google Debian Opensuse Fedoraproject | Incorrect Default Permissions vulnerability in multiple products Insufficient policy enforcement in CSP in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to bypass content security policy via a crafted HTML page. | 4.3 |
2020-07-22 | CVE-2020-6516 | Google Debian Opensuse Fedoraproject | Policy bypass in CORS in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 4.3 |
2020-07-20 | CVE-2020-1776 | Otrs | Insufficient Session Expiration vulnerability in Otrs When an agent user is renamed or set to invalid the session belonging to the user is keept active. | 4.3 |
2020-07-20 | CVE-2020-12027 | Rockwellautomation | Unspecified vulnerability in Rockwellautomation Factorytalk View All versions of FactoryTalk View SE disclose the hostnames and file paths for certain files within the system. | 4.3 |
2020-07-20 | CVE-2020-4361 | IBM | Information Exposure vulnerability in IBM Planning Analytics 2.0 IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information by disclosing private IP addresses in HTTP responses. | 4.3 |
2 Low Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2020-07-22 | CVE-2020-4371 | IBM | Insecure Storage of Sensitive Information vulnerability in IBM Verify Gateway 1.0.0/1.0.1 IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 contains sensitive information in leftover debug code that could be used aid a local user in further attacks against the system. | 3.3 |
2020-07-21 | CVE-2020-15859 | Qemu Debian | Use After Free vulnerability in multiple products QEMU 4.2.0 has a use-after-free in hw/net/e1000e_core.c because a guest OS user can trigger an e1000e packet with the data's address set to the e1000e's MMIO address. | 3.3 |