Weekly Vulnerabilities Reports > October 26 to November 1, 2020
Overview
320 new vulnerabilities reported during this period, including 52 critical vulnerabilities and 150 high severity vulnerabilities. This weekly summary report vulnerabilities in 148 products from 94 vendors including Apple, Pulsesecure, IBM, Synology, and Intel. Vulnerabilities are notably categorized as "Out-of-bounds Write", "Cross-site Scripting", "Out-of-bounds Read", "Improper Input Validation", and "OS Command Injection".
- 208 reported vulnerabilities are remotely exploitables.
- 6 reported vulnerabilities have public exploit available.
- 77 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
- 232 reported vulnerabilities are exploitable by an anonymous user.
- Apple has the most reported vulnerabilities, with 140 reported vulnerabilities.
- Apple has the most reported critical vulnerabilities, with 14 reported vulnerabilities.
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
EXPLOITABLE
EXPLOITABLE
AVAILABLE
ANONYMOUSLY
WEB APPLICATION
Vulnerability Details
The following table list reported vulnerabilities for the period covered by this report:
52 Critical Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2020-10-29 | CVE-2020-27655 | Synology | Improper Privilege Management vulnerability in Synology Router Manager Improper access control vulnerability in Synology Router Manager (SRM) before 1.2.4-8081 allows remote attackers to access restricted resources via inbound QuickConnect traffic. | 10.0 |
2020-10-30 | CVE-2020-7373 | Vbulletin | Code Injection vulnerability in Vbulletin vBulletin 5.5.4 through 5.6.2 allows remote command execution via crafted subWidgets data in an ajax/render/widget_tabbedcontainer_tab_panel request. | 9.8 |
2020-10-29 | CVE-2020-27886 | Eyesofnetwork | SQL Injection vulnerability in Eyesofnetwork 5.37/5.38 An issue was discovered in EyesOfNetwork eonweb 5.3-7 through 5.3-8. | 9.8 |
2020-10-29 | CVE-2020-27998 | Fast Report | Missing Authorization vulnerability in Fast-Report Fastreport An issue was discovered in FastReport before 2020.4.0. | 9.8 |
2020-10-29 | CVE-2020-27995 | Zohocorp | SQL Injection vulnerability in Zohocorp Manageengine Applications Manager 14.0 SQL Injection in Zoho ManageEngine Applications Manager 14 before 14560 allows an attacker to execute commands on the server via the MyPage.do template_resid parameter. | 9.8 |
2020-10-29 | CVE-2020-27744 | Westerndigital | OS Command Injection vulnerability in Westerndigital MY Cloud Firmware An issue was discovered on Western Digital My Cloud NAS devices before 5.04.114. | 9.8 |
2020-10-29 | CVE-2020-27654 | Synology | Improper Privilege Management vulnerability in Synology Router Manager Improper access control vulnerability in lbd in Synology Router Manager (SRM) before 1.2.4-8081 allows remote attackers to execute arbitrary commands via port (1) 7786/tcp or (2) 7787/tcp. | 9.8 |
2020-10-29 | CVE-2020-7746 | Chartjs | Unspecified vulnerability in Chartjs Chart.Js This affects the package chart.js before 2.9.4. | 9.8 |
2020-10-29 | CVE-2020-11486 | Intel | Unrestricted Upload of File with Dangerous Type vulnerability in Intel BMC Firmware 1.06.06/2.47 NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which software allows an attacker to upload or transfer files that can be automatically processed within the product's environment, which may lead to remote code execution. | 9.8 |
2020-10-29 | CVE-2020-11483 | Intel | Use of Hard-coded Credentials vulnerability in Intel BMC Firmware 1.06.06/2.47 NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contains a vulnerability in the AMI BMC firmware in which the firmware includes hard-coded credentials, which may lead to elevation of privileges or information disclosure. | 9.8 |
2020-10-28 | CVE-2020-27739 | Citadel | Insufficient Session Expiration vulnerability in Citadel Webcit A Weak Session Management vulnerability in Citadel WebCit through 926 allows unauthenticated remote attackers to hijack recently logged-in users' sessions. | 9.8 |
2020-10-28 | CVE-2020-16259 | Winstonprivacy | Unspecified vulnerability in Winstonprivacy Winston Firmware 1.5.4 Winston 1.5.4 devices have an SSH user account with access from bastion hosts. | 9.8 |
2020-10-28 | CVE-2018-19949 | Qnap | Command Injection vulnerability in Qnap QTS If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. | 9.8 |
2020-10-28 | CVE-2020-16257 | Winstonprivacy | OS Command Injection vulnerability in Winstonprivacy Winston Firmware 1.5.4 Winston 1.5.4 devices are vulnerable to command injection via the API. | 9.8 |
2020-10-28 | CVE-2020-27976 | Oscommerce | OS Command Injection vulnerability in Oscommerce osCommerce Phoenix CE before 1.0.5.4 allows OS command injection remotely. | 9.8 |
2020-10-28 | CVE-2020-8239 | Pulsesecure | Unspecified vulnerability in Pulsesecure Pulse Secure Desktop Client 9.1 A vulnerability in the Pulse Secure Desktop Client < 9.1R9 is vulnerable to the client registry privilege escalation attack. | 9.8 |
2020-10-28 | CVE-2020-27956 | CAR Rental Management System Project | Unrestricted Upload of File with Dangerous Type vulnerability in CAR Rental Management System Project CAR Rental Management System 1.0 An Arbitrary File Upload in the Upload Image component in SourceCodester Car Rental Management System 1.0 allows the user to conduct remote code execution via admin/index.php?page=manage_car because .php files can be uploaded to admin/assets/uploads/ (under the web root). | 9.8 |
2020-10-27 | CVE-2020-9866 | Apple | Classic Buffer Overflow vulnerability in Apple mac OS X A buffer overflow was addressed with improved bounds checking. | 9.8 |
2020-10-27 | CVE-2019-8531 | Apple | Improper Certificate Validation vulnerability in Apple mac OS X A validation issue existed in Trust Anchor Management. | 9.8 |
2020-10-27 | CVE-2020-27160 | Westerndigital | Path Traversal vulnerability in Westerndigital MY Cloud Firmware Addressed remote code execution vulnerability in AvailableApps.php that allowed escalation of privileges in Western Digital My Cloud NAS devices prior to 5.04.114 (issue 3 of 3). | 9.8 |
2020-10-27 | CVE-2020-27159 | Westerndigital | OS Command Injection vulnerability in Westerndigital MY Cloud Firmware Addressed remote code execution vulnerability in DsdkProxy.php due to insufficient sanitization and insufficient validation of user input in Western Digital My Cloud NAS devices prior to 5.04.114 | 9.8 |
2020-10-27 | CVE-2020-27158 | Westerndigital | OS Command Injection vulnerability in Westerndigital MY Cloud Firmware Addressed remote code execution vulnerability in cgi_api.php that allowed escalation of privileges in Western Digital My Cloud NAS devices prior to 5.04.114. | 9.8 |
2020-10-27 | CVE-2020-25765 | Westerndigital | OS Command Injection vulnerability in Westerndigital MY Cloud Firmware Addressed remote code execution vulnerability in reg_device.php due to insufficient validation of user input.in Western Digital My Cloud Devices prior to 5.4.1140. | 9.8 |
2020-10-27 | CVE-2020-12830 | Westerndigital | Out-of-bounds Write vulnerability in Westerndigital MY Cloud Firmware Addressed multiple stack buffer overflow vulnerabilities that could allow an attacker to carry out escalation of privileges through unauthorized remote code execution in Western Digital My Cloud devices before 5.04.114. | 9.8 |
2020-10-27 | CVE-2019-8767 | Apple | Out-of-bounds Write vulnerability in Apple mac OS X A memory consumption issue was addressed with improved memory handling. | 9.8 |
2020-10-27 | CVE-2019-8756 | Apple | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved input validation. | 9.8 |
2020-10-27 | CVE-2019-8749 | Apple | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved input validation. | 9.8 |
2020-10-27 | CVE-2019-8746 | Apple | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved input validation. | 9.8 |
2020-10-27 | CVE-2019-8716 | Apple | Out-of-bounds Write vulnerability in Apple mac OS X A memory corruption issue was addressed with improved memory handling. | 9.8 |
2020-10-27 | CVE-2019-8712 | Apple | Out-of-bounds Write vulnerability in Apple Tvos A memory corruption issue was addressed with improved memory handling. | 9.8 |
2020-10-27 | CVE-2019-8581 | Apple | Out-of-bounds Read vulnerability in Apple Airport Base Station Firmware An out-of-bounds read was addressed with improved input validation. | 9.8 |
2020-10-27 | CVE-2019-8578 | Apple | Use After Free vulnerability in Apple Airport Base Station Firmware A use after free issue was addressed with improved memory management. | 9.8 |
2020-10-27 | CVE-2019-8572 | Apple | NULL Pointer Dereference vulnerability in Apple Airport Base Station Firmware A null pointer dereference was addressed with improved input validation. | 9.8 |
2020-10-27 | CVE-2019-8547 | Apple | Out-of-bounds Read vulnerability in Apple Iphone OS An out-of-bounds read issue existed that led to the disclosure of kernel memory. | 9.8 |
2020-10-27 | CVE-2019-7288 | Apple | Unspecified vulnerability in Apple mac OS X The issue was addressed with improved validation on the FaceTime server. | 9.8 |
2020-10-27 | CVE-2018-4296 | Apple | Unspecified vulnerability in Apple mac OS X 10.14 This issue is fixed in macOS Mojave 10.14. | 9.8 |
2020-10-27 | CVE-2020-27853 | Wire | Use of Externally-Controlled Format String vulnerability in Wire products Wire before 2020-10-16 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a format string. | 9.8 |
2020-10-27 | CVE-2020-11854 | Microfocus | Use of Hard-coded Credentials vulnerability in Microfocus products Arbitrary code execution vlnerability in Operation bridge Manager, Application Performance Management and Operations Bridge (containerized) vulnerability in Micro Focus products products Operation Bridge Manager, Operation Bridge (containerized) and Application Performance Management. | 9.8 |
2020-10-27 | CVE-2020-10256 | 1Password | Unspecified vulnerability in 1Password Command Line Interface and Scim An issue was discovered in beta versions of the 1Password command-line tool prior to 0.5.5 and in beta versions of the 1Password SCIM bridge prior to 0.7.3. | 9.8 |
2020-10-27 | CVE-2020-27183 | Konzept IX | Unspecified vulnerability in Konzept-Ix Publixone A RemoteFunctions endpoint with missing access control in konzept-ix publiXone before 2020.015 allows attackers to disclose sensitive user information, send arbitrary e-mails, escalate the privileges of arbitrary user accounts, and have unspecified other impact. | 9.8 |
2020-10-27 | CVE-2020-27179 | Konzept IX | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Konzept-Ix Publixone konzept-ix publiXone before 2020.015 allows attackers to take over arbitrary user accounts by crafting password-reset tokens. | 9.8 |
2020-10-26 | CVE-2020-27743 | PAM Tacplus Project | Use of Insufficiently Random Values vulnerability in PAM Tacplus Project PAM Tacplus libtac in pam_tacplus through 1.5.1 lacks a check for a failure of RAND_bytes()/RAND_pseudo_bytes(). | 9.8 |
2020-10-26 | CVE-2020-26879 | Commscope | Use of Hard-coded Credentials vulnerability in Commscope Ruckus Vriot 1.5.1.0.21 Ruckus vRioT through 1.5.1.0.21 has an API backdoor that is hardcoded into validate_token.py. | 9.8 |
2020-10-26 | CVE-2020-7197 | HP | Improper Authentication vulnerability in HP Storeserv Management Console 3.4/3.4.1/3.5.0 SSMC3.7.0.0 is vulnerable to remote authentication bypass. | 9.8 |
2020-10-26 | CVE-2020-7127 | Arubanetworks | Unspecified vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote unauthenticated arbitrary code execution vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 9.8 |
2020-10-26 | CVE-2020-7124 | Arubanetworks | Unspecified vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote unauthorized access vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 9.8 |
2020-10-26 | CVE-2020-27678 | Joyent Omniosce Illumos | Classic Buffer Overflow vulnerability in multiple products An issue was discovered in illumos before 2020-10-22, as used in OmniOS before r151030by, r151032ay, and r151034y and SmartOS before 20201022. | 9.8 |
2020-10-26 | CVE-2020-15272 | GIT TAG Annotation Action Project | Unspecified vulnerability in Git-Tag-Annotation-Action Project Git-Tag-Annotation-Action 1.0.0 In the git-tag-annotation-action (open source GitHub Action) before version 1.0.1, an attacker can execute arbitrary (*) shell commands if they can control the value of [the `tag` input] or manage to alter the value of [the `GITHUB_REF` environment variable]. | 9.6 |
2020-10-26 | CVE-2020-18766 | Antsword Project | Cross-site Scripting vulnerability in Antsword Project Antsword 2.0.7 A cross-site scripting (XSS) vulnerability AntSword v2.0.7 can remotely execute system commands. | 9.6 |
2020-10-28 | CVE-2020-16263 | Winstonprivacy | Exposure of Resource to Wrong Sphere vulnerability in Winstonprivacy Winston Firmware 1.5.4 Winston 1.5.4 devices have a CORS configuration that trusts arbitrary origins. | 9.1 |
2020-10-29 | CVE-2020-27649 | Synology | Improper Certificate Validation vulnerability in Synology Router Manager Improper certificate validation vulnerability in OpenVPN client in Synology Router Manager (SRM) before 1.2.4-8081 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 9.0 |
2020-10-29 | CVE-2020-27648 | Synology | Improper Certificate Validation vulnerability in Synology Diskstation Manager and Skynas Firmware Improper certificate validation vulnerability in OpenVPN client in Synology DiskStation Manager (DSM) before 6.2.3-25426-2 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 9.0 |
150 High Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2020-11-01 | CVE-2020-25849 | Openfind | OS Command Injection vulnerability in Openfind Mailaudit and Mailgates MailGates and MailAudit products contain Command Injection flaw, which can be used to inject and execute system commands from the cgi parameter after attackers obtain the user’s access token. | 8.8 |
2020-10-29 | CVE-2020-27887 | Eyesofnetwork | OS Command Injection vulnerability in Eyesofnetwork An issue was discovered in EyesOfNetwork 5.3 through 5.3-8. | 8.8 |
2020-10-29 | CVE-2020-27996 | Smartstore | Unspecified vulnerability in Smartstore Smartstorenet An issue was discovered in SmartStoreNET before 4.0.1. | 8.8 |
2020-10-29 | CVE-2020-11485 | Intel | Cross-Site Request Forgery (CSRF) vulnerability in Intel BMC Firmware 1.06.06/2.47 NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contains a Cross-Site Request Forgery (CSRF) vulnerability in the AMI BMC firmware in which the web application does not sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request, which can lead to information disclosure or code execution. | 8.8 |
2020-10-28 | CVE-2020-16256 | Winstonprivacy | Cross-Site Request Forgery (CSRF) vulnerability in Winstonprivacy Winston Firmware 1.5.4 The API on Winston 1.5.4 devices is vulnerable to CSRF. | 8.8 |
2020-10-28 | CVE-2020-27975 | Oscommerce | Cross-Site Request Forgery (CSRF) vulnerability in Oscommerce osCommerce Phoenix CE before 1.0.5.4 allows admin/define_language.php CSRF. | 8.8 |
2020-10-28 | CVE-2020-8254 | Pulsesecure | Path Traversal vulnerability in Pulsesecure Pulse Secure Desktop Client A vulnerability in the Pulse Secure Desktop Client < 9.1R9 has Remote Code Execution (RCE) if users can be convinced to connect to a malicious server. | 8.8 |
2020-10-27 | CVE-2020-9932 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved validation. | 8.8 |
2020-10-27 | CVE-2019-8846 | Apple Redhat | Use After Free vulnerability in multiple products A use after free issue was addressed with improved memory management. | 8.8 |
2020-10-27 | CVE-2019-8844 | Apple Redhat | Out-of-bounds Write vulnerability in multiple products Multiple memory corruption issues were addressed with improved memory handling. | 8.8 |
2020-10-27 | CVE-2019-8840 | Apple | Out-of-bounds Read vulnerability in Apple Xcode An out-of-bounds read was addressed with improved bounds checking. | 8.8 |
2020-10-27 | CVE-2019-8835 | Apple Redhat | Out-of-bounds Write vulnerability in multiple products Multiple memory corruption issues were addressed with improved memory handling. | 8.8 |
2020-10-27 | CVE-2019-8830 | Apple | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved input validation. | 8.8 |
2020-10-27 | CVE-2019-8826 | Apple | Out-of-bounds Write vulnerability in Apple mac OS X A memory corruption issue was addressed with improved state management. | 8.8 |
2020-10-27 | CVE-2019-8825 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved state management. | 8.8 |
2020-10-27 | CVE-2019-8773 | Apple | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved memory handling. | 8.8 |
2020-10-27 | CVE-2019-8752 | Apple | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved memory handling. | 8.8 |
2020-10-27 | CVE-2019-8751 | Apple | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved memory handling. | 8.8 |
2020-10-27 | CVE-2019-8734 | Apple | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved memory handling. | 8.8 |
2020-10-27 | CVE-2019-8728 | Apple | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved memory handling. | 8.8 |
2020-10-27 | CVE-2019-8696 | Apple | Classic Buffer Overflow vulnerability in Apple mac OS X A buffer overflow issue was addressed with improved memory handling. | 8.8 |
2020-10-27 | CVE-2019-8675 | Apple | Classic Buffer Overflow vulnerability in Apple mac OS X A buffer overflow issue was addressed with improved memory handling. | 8.8 |
2020-10-27 | CVE-2019-8639 | Apple | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved memory handling. | 8.8 |
2020-10-27 | CVE-2019-8638 | Apple | Out-of-bounds Write vulnerability in Apple products Multiple memory corruption issues were addressed with improved memory handling. | 8.8 |
2020-10-26 | CVE-2020-26878 | Commscope | OS Command Injection vulnerability in Commscope Ruckus Vriot 1.5.1.0.21 Ruckus through 1.5.1.0.21 is affected by remote command injection. | 8.8 |
2020-10-26 | CVE-2020-15271 | Lookatme Project | OS Command Injection vulnerability in Lookatme Project Lookatme In lookatme (python/pypi package) versions prior to 2.3.0, the package automatically loaded the built-in "terminal" and "file_loader" extensions. | 8.8 |
2020-10-26 | CVE-2020-7125 | Arubanetworks | Improper Privilege Management vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote escalation of privilege vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 8.8 |
2020-10-30 | CVE-2020-15276 | Basercms | Unspecified vulnerability in Basercms baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. | 8.7 |
2020-10-28 | CVE-2020-5145 | Sonicwall | Uncontrolled Search Path Element vulnerability in Sonicwall Global VPN Client 4.10.4.0314 SonicWall Global VPN client version 4.10.4.0314 and earlier have an insecure library loading (DLL hijacking) vulnerability. | 8.6 |
2020-10-29 | CVE-2020-27653 | Synology | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Synology Diskstation Manager and Router Manager Algorithm downgrade vulnerability in QuickConnect in Synology Router Manager (SRM) before 1.2.4-8081 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via unspecified vectors. | 8.3 |
2020-10-29 | CVE-2020-27652 | Synology | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Synology Diskstation Manager and Skynas Firmware Algorithm downgrade vulnerability in QuickConnect in Synology DiskStation Manager (DSM) before 6.2.3-25426-2 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via unspecified vectors. | 8.3 |
2020-10-27 | CVE-2020-27890 | TI | Unspecified vulnerability in TI Z-Stack 3.0.1 The Zigbee protocol implementation on Texas Instruments CC2538 devices with Z-Stack 3.0.1 does not properly process a ZCL Write Attributes No Response message. | 8.2 |
2020-10-30 | CVE-2020-15273 | Basercms | Unspecified vulnerability in Basercms baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. | 8.1 |
2020-10-29 | CVE-2020-27651 | Synology | Missing Encryption of Sensitive Data vulnerability in Synology Router Manager Synology Router Manager (SRM) before 1.2.4-8081 does not set the Secure flag for the session cookie in an HTTPS session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an HTTP session. | 8.1 |
2020-10-31 | CVE-2020-5425 | Vmware | Improper Authentication vulnerability in VMWare Single Sign-On for Tanzu 1.12.0/1.13.0 Single Sign-On for Vmware Tanzu all versions prior to 1.11.3 ,1.12.x versions prior to 1.12.4 and 1.13.x prior to 1.13.1 are vulnerable to user impersonation attack.If two users are logged in to the SSO operator dashboard at the same time, with the same username, from two different identity providers, one can acquire the token of the other and thus operate with their permissions. | 7.9 |
2020-10-30 | CVE-2020-5991 | Nvidia | Out-of-bounds Write vulnerability in Nvidia Cuda Toolkit NVIDIA CUDA Toolkit, all versions prior to 11.1.1, contains a vulnerability in the NVJPEG library in which an out-of-bounds read or write operation may lead to code execution, denial of service, or information disclosure. | 7.8 |
2020-10-30 | CVE-2020-4588 | IBM | Unrestricted Upload of File with Dangerous Type vulnerability in IBM I2 Ibase 8.9.13 IBM i2 iBase 8.9.13 could allow an attacker to upload arbitrary executable files which, when executed by an unsuspecting victim could result in code execution. | 7.8 |
2020-10-29 | CVE-2020-4724 | IBM | Out-of-bounds Write vulnerability in IBM I2 Analysts Notebook 9.2.0/9.2.1 IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. | 7.8 |
2020-10-29 | CVE-2020-4723 | IBM | Out-of-bounds Write vulnerability in IBM I2 Analysts Notebook 9.2.0/9.2.1 IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. | 7.8 |
2020-10-29 | CVE-2020-4722 | IBM | Out-of-bounds Write vulnerability in IBM I2 Analysts Notebook 9.2.0/9.2.1 IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. | 7.8 |
2020-10-29 | CVE-2020-4721 | IBM | Out-of-bounds Write vulnerability in IBM I2 Analysts Notebook 9.2.0/9.2.1 IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. | 7.8 |
2020-10-29 | CVE-2020-7384 | Rapid7 | Command Injection vulnerability in Rapid7 Metasploit Rapid7's Metasploit msfvenom framework handles APK files in a way that allows for a malicious user to craft and publish a file that would execute arbitrary commands on a victim's machine. | 7.8 |
2020-10-28 | CVE-2020-24707 | Getgophish | Improper Neutralization of Formula Elements in a CSV File vulnerability in Getgophish Gophish Gophish before 0.11.0 allows the creation of CSV sheets that contain malicious content. | 7.8 |
2020-10-28 | CVE-2020-26133 | Dual Dhcp DNS Server Project | Incorrect Permission Assignment for Critical Resource vulnerability in Dual Dhcp DNS Server Project Dual Dhcp DNS Server 7.40 An issue was discovered in Dual DHCP DNS Server 7.40. | 7.8 |
2020-10-28 | CVE-2020-26132 | Home DNS Server Project | Incorrect Permission Assignment for Critical Resource vulnerability in Home DNS Server Project Home DNS Server 0.10 An issue was discovered in Home DNS Server 0.10. | 7.8 |
2020-10-28 | CVE-2020-26131 | Open Dhcp Server Project | Incorrect Permission Assignment for Critical Resource vulnerability in Open Dhcp Server Project Open Dhcp Server 0.1/1.75 Issues were discovered in Open DHCP Server (Regular) 1.75 and Open DHCP Server (LDAP Based) 0.1Beta. | 7.8 |
2020-10-28 | CVE-2020-26130 | Open Tftp Server Project | Incorrect Permission Assignment for Critical Resource vulnerability in Open Tftp Server Project Open Tftp Server 1.66 Issues were discovered in Open TFTP Server multithreaded 1.66 and Open TFTP Server single port 1.66. | 7.8 |
2020-10-28 | CVE-2020-16262 | Winstonprivacy | Improper Privilege Management vulnerability in Winstonprivacy Winston Firmware 1.5.4 Winston 1.5.4 devices have a local www-data user that is overly permissioned, resulting in root privilege escalation. | 7.8 |
2020-10-28 | CVE-2020-8250 | Pulsesecure | Unspecified vulnerability in Pulsesecure Pulse Secure Desktop Client 9.1 A vulnerability in the Pulse Secure Desktop Client (Linux) < 9.1R9 could allow local attackers to escalate privilege. | 7.8 |
2020-10-28 | CVE-2020-8249 | Pulsesecure | Classic Buffer Overflow vulnerability in Pulsesecure Pulse Secure Desktop Client 9.1 A vulnerability in the Pulse Secure Desktop Client (Linux) < 9.1R9 could allow local attackers to perform buffer overflow. | 7.8 |
2020-10-28 | CVE-2020-8248 | Pulsesecure | Unspecified vulnerability in Pulsesecure Pulse Secure Desktop Client 9.1 A vulnerability in the Pulse Secure Desktop Client (Linux) < 9.1R9 could allow local attackers to escalate privilege. | 7.8 |
2020-10-28 | CVE-2020-8240 | Pulsesecure | Unspecified vulnerability in Pulsesecure Pulse Secure Desktop Client A vulnerability in the Pulse Secure Desktop Client < 9.1R9 allows a restricted user on an endpoint machine can use system-level privileges if the Embedded Browser is configured with Credential Provider. | 7.8 |
2020-10-28 | CVE-2020-5144 | Sonicwall | Untrusted Search Path vulnerability in Sonicwall Global VPN Client 4.10.4.0314 SonicWall Global VPN client version 4.10.4.0314 and earlier allows unprivileged windows user to elevate privileges to SYSTEM through loaded process hijacking vulnerability. | 7.8 |
2020-10-27 | CVE-2020-9973 | Apple | Out-of-bounds Read vulnerability in Apple Iphone OS An out-of-bounds read was addressed with improved bounds checking. | 7.8 |
2020-10-27 | CVE-2020-9961 | Apple | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved input validation. | 7.8 |
2020-10-27 | CVE-2020-3880 | Apple | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved input validation. | 7.8 |
2020-10-27 | CVE-2020-3864 | Apple Redhat | Origin Validation Error vulnerability in multiple products A logic issue was addressed with improved validation. | 7.8 |
2020-10-27 | CVE-2020-3863 | Apple | Out-of-bounds Write vulnerability in Apple mac OS X A memory corruption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2020-3851 | Apple | Use After Free vulnerability in Apple mac OS X A use after free issue was addressed with improved memory management. | 7.8 |
2020-10-27 | CVE-2019-8852 | Apple | Out-of-bounds Write vulnerability in Apple mac OS X A memory corruption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8848 | Apple | Unspecified vulnerability in Apple products This issue was addressed with improved checks. | 7.8 |
2020-10-27 | CVE-2019-8847 | Apple | Out-of-bounds Write vulnerability in Apple mac OS X A memory corruption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8841 | Apple | Unspecified vulnerability in Apple Iphone OS An information disclosure issue was addressed by removing the vulnerable code. | 7.8 |
2020-10-27 | CVE-2019-8838 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8837 | Apple | Unspecified vulnerability in Apple mac OS X A logic issue was addressed with improved restrictions. | 7.8 |
2020-10-27 | CVE-2019-8836 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8833 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed by removing the vulnerable code. | 7.8 |
2020-10-27 | CVE-2019-8832 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8831 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8829 | Apple | Improper Locking vulnerability in Apple products A memory corruption vulnerability was addressed with improved locking. | 7.8 |
2020-10-27 | CVE-2019-8828 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8824 | Apple | Out-of-bounds Write vulnerability in Apple mac OS X A memory corruption issue was addressed with improved state management. | 7.8 |
2020-10-27 | CVE-2019-8776 | Apple | Out-of-bounds Write vulnerability in Apple mac OS X A memory corruption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8740 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption vulnerability was addressed with improved locking. | 7.8 |
2020-10-27 | CVE-2019-8718 | Apple | Out-of-bounds Write vulnerability in Apple Tvos A memory corruption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8715 | Apple | Out-of-bounds Write vulnerability in Apple Iphone OS A memory corruption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8709 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved state management. | 7.8 |
2020-10-27 | CVE-2019-8706 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved state management. | 7.8 |
2020-10-27 | CVE-2019-8592 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved input validation. | 7.8 |
2020-10-27 | CVE-2019-8579 | Apple | Improper Input Validation vulnerability in Apple mac OS X An input validation issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8539 | Apple | Unspecified vulnerability in Apple mac OS X 10.14.5 A memory initialization issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2019-8509 | Apple | Unspecified vulnerability in Apple mac OS X This issue was addressed by removing the vulnerable code. | 7.8 |
2020-10-27 | CVE-2019-6238 | Apple | Improper Input Validation vulnerability in Apple mac OS X A validation issue existed in the handling of symlinks. | 7.8 |
2020-10-27 | CVE-2018-4467 | Apple | Unspecified vulnerability in Apple mac OS X A memory corruption issue was addressed with improved state management. | 7.8 |
2020-10-27 | CVE-2018-4452 | Apple | Unspecified vulnerability in Apple mac OS X A memory consumption issue was addressed with improved memory handling. | 7.8 |
2020-10-27 | CVE-2018-4451 | Apple | Unspecified vulnerability in Apple mac OS X This issue is fixed in macOS Mojave 10.14. | 7.8 |
2020-10-27 | CVE-2020-11858 | Microfocus | Unspecified vulnerability in Microfocus Operations Bridge and Operations Bridge Manager Code execution with escalated privileges vulnerability in Micro Focus products Operation Bridge Manager and Operation Bridge (containerized). | 7.8 |
2020-10-27 | CVE-2020-6023 | Checkpoint | Unspecified vulnerability in Checkpoint Zonealarm Check Point ZoneAlarm before version 15.8.139.18543 allows a local actor to escalate privileges while restoring files in Anti-Ransomware. | 7.8 |
2020-10-27 | CVE-2020-23864 | Iobit | Unspecified vulnerability in Iobit Malware Fighter 8.0.2.547 An issue exits in IOBit Malware Fighter version 8.0.2.547. | 7.8 |
2020-10-26 | CVE-2020-27187 | KDE | Unspecified vulnerability in KDE Partition Manager 4.1.0 An issue was discovered in KDE Partition Manager 4.1.0 before 4.2.0. | 7.8 |
2020-10-30 | CVE-2020-4584 | IBM | Information Exposure Through an Error Message vulnerability in IBM I2 Ibase 8.9.13 IBM i2 iBase 8.9.13 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. | 7.5 |
2020-10-30 | CVE-2020-7760 | Codemirror Oracle | Resource Exhaustion vulnerability in multiple products This affects the package codemirror before 5.58.2; the package org.apache.marmotta.webjars:codemirror before 5.58.2. | 7.5 |
2020-10-29 | CVE-2020-25646 | Ansible Collections Project | Improper Encoding or Escaping of Output vulnerability in Ansible Collections Project Community.Crypto A flaw was found in Ansible Collection community.crypto. | 7.5 |
2020-10-29 | CVE-2020-25780 | Commvault | Path Traversal vulnerability in Commvault Commcell 11.22/11.22.22 In CommCell in Commvault before 14.68, 15.x before 15.58, 16.x before 16.44, 17.x before 17.29, and 18.x before 18.13, Directory Traversal can occur such that an attempt to view a log file can instead view a file outside of the log-files folder. | 7.5 |
2020-10-29 | CVE-2020-5936 | F5 | Resource Exhaustion vulnerability in F5 Big-Ip Local Traffic Manager On BIG-IP LTM 15.1.0-15.1.0.5, 14.1.0-14.1.2.7, 13.1.0-13.1.3.4, and 12.1.0-12.1.5.1, the Traffic Management Microkernel (TMM) process may consume excessive resources when processing SSL traffic and client authentication are enabled on the client SSL profile. | 7.5 |
2020-10-29 | CVE-2020-5933 | F5 | Unspecified vulnerability in F5 products On versions 15.1.0-15.1.0.5, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, when a BIG-IP system that has a virtual server configured with an HTTP compression profile processes compressed HTTP message payloads that require deflation, a Slowloris-style attack can trigger an out-of-memory condition on the BIG-IP system. | 7.5 |
2020-10-29 | CVE-2020-5931 | F5 | Unspecified vulnerability in F5 products On BIG-IP 15.1.0-15.1.0.5, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, Virtual servers with a OneConnect profile may incorrectly handle WebSockets related HTTP response headers, causing TMM to restart. | 7.5 |
2020-10-29 | CVE-2020-5937 | F5 | Unspecified vulnerability in F5 Big-Ip Advanced Firewall Manager On BIG-IP AFM 15.1.0-15.1.0.5, the Traffic Management Microkernel (TMM) may produce a core file while processing layer 4 (L4) behavioral denial-of-service (DoS) traffic. | 7.5 |
2020-10-29 | CVE-2020-11616 | Intel | Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in Intel BMC Firmware 1.06.06/2.47 NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which the Pseudo-Random Number Generator (PRNG) algorithm used in the JSOL package that implements the IPMI protocol is not cryptographically strong, which may lead to information disclosure. | 7.5 |
2020-10-29 | CVE-2020-11615 | Intel | Use of Hard-coded Credentials vulnerability in Intel BMC Firmware 1.06.06/2.47 NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which it uses a hard-coded RC4 cipher key, which may lead to information disclosure. | 7.5 |
2020-10-29 | CVE-2020-11489 | Intel | Insecure Default Initialization of Resource vulnerability in Intel BMC Firmware 1.06.06/2.47 NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contain a vulnerability in the AMI BMC firmware in which default SNMP community strings are used, which may lead to information disclosure. | 7.5 |
2020-10-29 | CVE-2020-11487 | Intel | Use of Hard-coded Credentials vulnerability in Intel BMC Firmware 1.06.06/2.47 NVIDIA DGX servers, DGX-1 with BMC firmware versions prior to 3.38.30. | 7.5 |
2020-10-28 | CVE-2020-27986 | Sonarsource | Cleartext Storage of Sensitive Information vulnerability in Sonarsource Sonarqube 8.4.2.36762 SonarQube 8.4.2.36762 allows remote attackers to discover cleartext SMTP, SVN, and GitLab credentials via the api/settings/values URI. | 7.5 |
2020-10-28 | CVE-2020-24713 | Getgophish | Insufficient Session Expiration vulnerability in Getgophish Gophish Gophish through 0.10.1 does not invalidate the gophish cookie upon logout. | 7.5 |
2020-10-28 | CVE-2020-24990 | QSC | Path Traversal vulnerability in QSC Q-Sys Core Manager 8.2.1 An issue was discovered in QSC Q-SYS Core Manager 8.2.1. | 7.5 |
2020-10-28 | CVE-2020-25966 | Sectona | Missing Authentication for Critical Function vulnerability in Sectona Spectra 3.2.0 Sectona Spectra before 3.4.0 has a vulnerable SOAP API endpoint that leaks sensitive information about the configured assets without proper authentication. | 7.5 |
2020-10-28 | CVE-2020-16260 | Winstonprivacy | Missing Authorization vulnerability in Winstonprivacy Winston Firmware 1.5.4 Winston 1.5.4 devices do not enforce authorization. | 7.5 |
2020-10-28 | CVE-2020-4767 | IBM | Out-of-bounds Read vulnerability in IBM Sterling Connect:Direct IBM Sterling Connect Direct for Microsoft Windows 4.7, 4.8, 6.0, and 6.1 could allow a remote attacker to cause a denial of service, caused by a buffer over-read. | 7.5 |
2020-10-28 | CVE-2020-15278 | Cogboard | Unspecified vulnerability in Cogboard RED Discord BOT Red Discord Bot before version 3.4.1 has an unauthorized privilege escalation exploit in the Mod module. | 7.5 |
2020-10-28 | CVE-2020-27978 | Shibboleth | Allocation of Resources Without Limits or Throttling vulnerability in Shibboleth Identity Provider Shibboleth Identify Provider 3.x before 3.4.6 has a denial of service flaw. | 7.5 |
2020-10-28 | CVE-2020-22552 | Snap7 Project | Unspecified vulnerability in Snap7 Project Snap7 1.4.1 The Snap7 server component in version 1.4.1, when an attacker sends a crafted packet with COTP protocol the last-data-unit flag set to No and S7 writes a var function, the Snap7 server will be crashed. | 7.5 |
2020-10-28 | CVE-2020-8241 | Pulsesecure | Unspecified vulnerability in Pulsesecure Pulse Secure Desktop Client 9.1 A vulnerability in the Pulse Secure Desktop Client < 9.1R9 could allow the attacker to perform a MITM Attack if end users are convinced to connect to a malicious server. | 7.5 |
2020-10-27 | CVE-2020-9941 | Apple | Unspecified vulnerability in Apple products This issue was addressed with improved checks. | 7.5 |
2020-10-27 | CVE-2020-9782 | Apple | Path Traversal vulnerability in Apple mac OS X A parsing issue in the handling of directory paths was addressed with improved path validation. | 7.5 |
2020-10-27 | CVE-2020-9774 | Apple | Missing Encryption of Sensitive Data vulnerability in Apple mac OS X An issue existed with Siri Suggestions access to encrypted data. | 7.5 |
2020-10-27 | CVE-2020-27892 | TI | Unspecified vulnerability in TI Z-Stack 3.0.1 The Zigbee protocol implementation on Texas Instruments CC2538 devices with Z-Stack 3.0.1 does not properly process a ZCL Discover Commands Received Response message or a ZCL Discover Commands Generated Response message. | 7.5 |
2020-10-27 | CVE-2020-27891 | TI | Unspecified vulnerability in TI Z-Stack 3.0.1 The Zigbee protocol implementation on Texas Instruments CC2538 devices with Z-Stack 3.0.1 does not properly process a ZCL Read Reporting Configuration Response message. | 7.5 |
2020-10-27 | CVE-2020-27888 | UI | Insufficiently Protected Credentials vulnerability in UI products An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. | 7.5 |
2020-10-27 | CVE-2019-8854 | Apple | Unspecified vulnerability in Apple products A user privacy issue was addressed by removing the broadcast MAC address. | 7.5 |
2020-10-27 | CVE-2019-8851 | Apple | Unspecified vulnerability in Apple mac OS X A logic issue was addressed with improved state management. | 7.5 |
2020-10-27 | CVE-2019-8640 | Apple | Improper Input Validation vulnerability in Apple mac OS X A logic issue was addressed with improved validation. | 7.5 |
2020-10-27 | CVE-2019-8633 | Apple | Improper Input Validation vulnerability in Apple products A validation issue was addressed with improved input sanitization. | 7.5 |
2020-10-27 | CVE-2019-8631 | Apple | Unspecified vulnerability in Apple Iphone OS A logic issue was addressed with improved state management. | 7.5 |
2020-10-27 | CVE-2019-8618 | Apple | Unspecified vulnerability in Apple mac OS X A logic issue was addressed with improved restrictions. | 7.5 |
2020-10-27 | CVE-2019-8588 | Apple | NULL Pointer Dereference vulnerability in Apple Airport Base Station Firmware A null pointer dereference was addressed with improved input validation. | 7.5 |
2020-10-27 | CVE-2019-8580 | Apple | Unspecified vulnerability in Apple Airport Base Station Firmware Source-routed IPv4 packets were disabled by default. | 7.5 |
2020-10-27 | CVE-2019-8575 | Apple | Unspecified vulnerability in Apple Airport Base Station Firmware The issue was addressed with improved data deletion. | 7.5 |
2020-10-27 | CVE-2019-8573 | Apple | Improper Input Validation vulnerability in Apple Iphone OS An input validation issue was addressed with improved input validation. | 7.5 |
2020-10-27 | CVE-2019-8564 | Apple | Unspecified vulnerability in Apple mac OS X A logic issue was addressed with improved validation. | 7.5 |
2020-10-27 | CVE-2018-4474 | Apple | Resource Exhaustion vulnerability in Apple products A memory consumption issue was addressed with improved memory handling. | 7.5 |
2020-10-27 | CVE-2020-23945 | Victor CMS Project | SQL Injection vulnerability in Victor CMS Project Victor CMS 1.0 A SQL injection vulnerability exists in Victor CMS V1.0 in the cat_id parameter of the category.php file. | 7.5 |
2020-10-27 | CVE-2020-8579 | Netapp | Unspecified vulnerability in Netapp Clustered Data Ontap 9.7 Clustered Data ONTAP versions 9.7 through 9.7P7 are susceptible to a vulnerability which allows an attacker with access to an intercluster LIF to cause a Denial of Service (DoS). | 7.5 |
2020-10-27 | CVE-2020-7753 | Trim Project | Resource Exhaustion vulnerability in Trim Project Trim All versions of package trim are vulnerable to Regular Expression Denial of Service (ReDoS) via trim(). | 7.5 |
2020-10-27 | CVE-2020-27180 | Konzept IX | Use of Insufficiently Random Values vulnerability in Konzept-Ix Publixone konzept-ix publiXone before 2020.015 allows attackers to download files by iterating over the IXCopy fileID parameter. | 7.5 |
2020-10-26 | CVE-2020-1915 | Out-of-bounds Read vulnerability in Facebook Hermes An out-of-bounds read in the JavaScript Interpreter in Facebook Hermes prior to commit 8cb935cd3b2321c46aa6b7ed8454d95c75a7fca0 allows attackers to cause a denial of service attack or possible further memory corruption via crafted JavaScript. | 7.5 | |
2020-10-26 | CVE-2020-26566 | Motion Project | Out-of-bounds Read vulnerability in Motion Project Motion A Denial of Service condition in Motion-Project Motion 3.2 through 4.3.1 allows remote unauthenticated users to cause a webu.c segmentation fault and kill the main process via a crafted HTTP request. | 7.5 |
2020-10-26 | CVE-2020-15897 | Arista | Unspecified vulnerability in Arista EOS Arista EOS before 4.21.12M, 4.22.x before 4.22.7M, 4.23.x before 4.23.5M, and 4.24.x before 4.24.2F allows remote attackers to cause traffic loss or incorrect forwarding of traffic via a malformed link-state PDU to the IS-IS router. | 7.5 |
2020-10-26 | CVE-2020-13100 | Arista | Unspecified vulnerability in Arista Cloudvision Exchange Arista’s CloudVision eXchange (CVX) server before 4.21.12M, 4.22.x before 4.22.7M, 4.23.x before 4.23.5M, and 4.24.x before 4.24.2F allows remote attackers to cause a denial of service (crash and restart) in the ControllerOob agent via a malformed control-plane packet. | 7.5 |
2020-10-30 | CVE-2020-15277 | Basercms | Unrestricted Upload of File with Dangerous Type vulnerability in Basercms baserCMS before version 4.4.1 is affected by Remote Code Execution (RCE). | 7.2 |
2020-10-30 | CVE-2020-7759 | Pimcore | SQL Injection vulnerability in Pimcore The package pimcore/pimcore from 6.7.2 and before 6.8.3 are vulnerable to SQL Injection in data classification functionality in ClassificationstoreController. | 7.2 |
2020-10-28 | CVE-2020-8260 | Pulsesecure | Unrestricted Upload of File with Dangerous Type vulnerability in Pulsesecure Pulse Secure Desktop Client 9.1 A vulnerability in the Pulse Connect Secure < 9.1R9 admin web interface could allow an authenticated attacker to perform an arbitrary code execution using uncontrolled gzip extraction. | 7.2 |
2020-10-27 | CVE-2020-15352 | Pulsesecure Ivanti | XXE vulnerability in multiple products An XML external entity (XXE) vulnerability in Pulse Connect Secure (PCS) before 9.1R9 and Pulse Policy Secure (PPS) before 9.1R9 allows remote authenticated admins to conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request. | 7.2 |
2020-10-26 | CVE-2020-24632 | Arubanetworks | Unspecified vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote execution of arbitrary commandss vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 7.2 |
2020-10-26 | CVE-2020-24631 | Arubanetworks | Unspecified vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote execution of arbitrary commands vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 7.2 |
2020-10-26 | CVE-2020-7751 | Chaijis | Unspecified vulnerability in Chaijis Pathval pathval before version 1.1.1 is vulnerable to prototype pollution. | 7.2 |
2020-10-28 | CVE-2020-16258 | Winstonprivacy | Use of Hard-coded Credentials vulnerability in Winstonprivacy Winston Firmware 1.5.4 Winston 1.5.4 devices make use of a Monit service (not managed during the normal user process) which is configured with default credentials. | 7.1 |
2020-10-27 | CVE-2020-3855 | Apple | Unspecified vulnerability in Apple mac OS X An access issue was addressed with improved access restrictions. | 7.1 |
2020-10-27 | CVE-2019-8759 | Apple | Out-of-bounds Read vulnerability in Apple mac OS X An out-of-bounds read was addressed with improved bounds checking. | 7.1 |
2020-10-27 | CVE-2018-4428 | Apple | Unspecified vulnerability in Apple Iphone OS A lock screen issue allowed access to the share function on a locked device. | 7.1 |
2020-10-27 | CVE-2020-15238 | Blueman Project Debian Fedoraproject | Argument Injection or Modification vulnerability in multiple products Blueman is a GTK+ Bluetooth Manager. | 7.0 |
104 Medium Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2020-10-29 | CVE-2020-27747 | Clickstudios | Improper Restriction of Excessive Authentication Attempts vulnerability in Clickstudios Passwordstate 8.9 An issue was discovered in Click Studios Passwordstate 8.9 (Build 8973).If the user of the system has assigned himself a PIN code for entering from a mobile device using the built-in generator (4 digits), a remote attacker has the opportunity to conduct a brute force attack on this PIN code. | 6.8 |
2020-10-28 | CVE-2020-16261 | Winstonprivacy | Improper Access Control vulnerability in Winstonprivacy Winston Firmware 1.5.4 Winston 1.5.4 devices allow a U-Boot interrupt, resulting in local root access. | 6.8 |
2020-10-29 | CVE-2020-11488 | Intel | Improper Verification of Cryptographic Signature vulnerability in Intel BMC Firmware 1.06.06/2.47 NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contains a vulnerability in the AMI BMC firmware in which software does not validate the RSA 1024 public key used to verify the firmware signature, which may lead to information disclosure or code execution. | 6.7 |
2020-10-27 | CVE-2019-8569 | Apple | Out-of-bounds Write vulnerability in Apple mac OS X A memory corruption issue was addressed with improved memory handling. | 6.7 |
2020-10-27 | CVE-2019-8534 | Apple | Out-of-bounds Write vulnerability in Apple mac OS X 10.14.3 A logic issue existed resulting in memory corruption. | 6.7 |
2020-10-27 | CVE-2019-8528 | Apple | Use After Free vulnerability in Apple Iphone OS A use after free issue was addressed with improved memory management. | 6.7 |
2020-10-27 | CVE-2019-8525 | Apple | Out-of-bounds Write vulnerability in Apple Iphone OS A memory corruption issue was addressed with improved state management. | 6.7 |
2020-10-29 | CVE-2020-5934 | F5 | Unspecified vulnerability in F5 Big-Ip Access Policy Manager On BIG-IP APM 15.1.0-15.1.0.5, 14.1.0-14.1.2.3, and 13.1.0-13.1.3.3, when multiple HTTP requests from the same client to configured SAML Single Logout (SLO) URL are passing through a TCP Keep-Alive connection, traffic to TMM can be disrupted. | 6.5 |
2020-10-29 | CVE-2020-5938 | F5 | Inadequate Encryption Strength vulnerability in F5 products On BIG-IP 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, when negotiating IPSec tunnels with configured, authenticated peers, the peer may negotiate a different key length than the BIG-IP configuration would otherwise allow. | 6.5 |
2020-10-28 | CVE-2020-24711 | Getgophish | Improper Restriction of Rendered UI Layers or Frames vulnerability in Getgophish Gophish The Reset button on the Account Settings page in Gophish before 0.11.0 allows attackers to cause a denial of service via a clickjacking attack | 6.5 |
2020-10-28 | CVE-2020-27742 | Citadel | Authorization Bypass Through User-Controlled Key vulnerability in Citadel Webcit An Insecure Direct Object Reference vulnerability in Citadel WebCit through 926 allows authenticated remote attackers to read someone else's emails via the msg_confirm_move template. | 6.5 |
2020-10-28 | CVE-2020-4782 | IBM | Path Traversal vulnerability in IBM Websphere Application Server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. | 6.5 |
2020-10-27 | CVE-2019-8901 | Apple | Improper Verification of Cryptographic Signature vulnerability in Apple Ipados and Iphone OS This issue was addressed by verifying host keys when connecting to a previously-known SSH server. | 6.5 |
2020-10-27 | CVE-2019-8664 | Apple | Improper Input Validation vulnerability in Apple Iphone OS An input validation issue was addressed with improved input validation. | 6.5 |
2020-10-27 | CVE-2019-8754 | Apple | Origin Validation Error vulnerability in Apple mac OS X A cross-origin issue existed with "iframe" elements. | 6.5 |
2020-10-27 | CVE-2019-8737 | Apple | Improper Input Validation vulnerability in Apple mac OS X A denial of service issue was addressed with improved validation. | 6.5 |
2020-10-27 | CVE-2019-8736 | Apple | Improper Input Validation vulnerability in Apple mac OS X An input validation issue was addressed with improved input validation. | 6.5 |
2020-10-27 | CVE-2019-8645 | Apple | Unspecified vulnerability in Apple mac OS X An issue existed in the handling of encrypted Mail. | 6.5 |
2020-10-27 | CVE-2019-8612 | Apple | Unspecified vulnerability in Apple products A logic issue was addressed with improved state management. | 6.5 |
2020-10-27 | CVE-2019-8570 | Apple | Unspecified vulnerability in Apple products A logic issue was addressed with improved state management. | 6.5 |
2020-10-27 | CVE-2019-7291 | Apple | Unspecified vulnerability in Apple Airport Base Station Firmware A denial of service issue was addressed with improved memory handling. | 6.5 |
2020-10-27 | CVE-2018-4444 | Apple | Unspecified vulnerability in Apple products A logic issue was addressed with improved state management. | 6.5 |
2020-10-27 | CVE-2020-27181 | Konzept IX | Use of Hard-coded Credentials vulnerability in Konzept-Ix Publixone A hardcoded AES key in CipherUtils.java in the Java applet of konzept-ix publiXone before 2020.015 allows attackers to craft password-reset tokens or decrypt server-side configuration files. | 6.5 |
2020-10-26 | CVE-2020-25034 | Fireeye | SQL Injection vulnerability in Fireeye Email Malware Protection System 8.4.3.908134 eMPS prior to eMPS 9.0 FireEye EX 3500 devices allows remote authenticated users to conduct SQL injection attacks via the sort, sort_by, search{URL], or search[attachment] parameter to the email search feature. | 6.5 |
2020-10-26 | CVE-2020-7196 | HP | Insufficiently Protected Credentials vulnerability in HP Bluedata Epic and Ezmeral Container Platform The HPE BlueData EPIC Software Platform version 4.0 and HPE Ezmeral Container Platform 5.0 use an insecure method of handling sensitive Kerberos passwords that is susceptible to unauthorized interception and/or retrieval. | 6.5 |
2020-10-30 | CVE-2020-27014 | Trendmicro | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Trendmicro Antivirus 2020 Trend Micro Antivirus for Mac 2020 (Consumer) contains a race condition vulnerability in the Web Threat Protection Blocklist component, that if exploited, could allow an attacker to case a kernel panic or crash.\n\n\r\nAn attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability. | 6.4 |
2020-10-27 | CVE-2019-8855 | Apple | Unspecified vulnerability in Apple mac OS X An access issue was addressed with additional sandbox restrictions. | 6.3 |
2020-10-29 | CVE-2020-27885 | Wso2 | Cross-site Scripting vulnerability in Wso2 API Manager 3.1.0 Cross-Site Scripting (XSS) vulnerability on WSO2 API Manager 3.1.0. | 6.1 |
2020-10-29 | CVE-2020-21266 | Broadleafcommerce | Cross-site Scripting vulnerability in Broadleafcommerce Broadleaf Commerce 5.1.14Ga Broadleaf Commerce 5.1.14-GA is affected by cross-site scripting (XSS) due to a slow HTTP post vulnerability. | 6.1 |
2020-10-29 | CVE-2020-27658 | Synology | Incorrect Permission Assignment for Critical Resource vulnerability in Synology Router Manager Synology Router Manager (SRM) before 1.2.4-8081 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie. | 6.1 |
2020-10-28 | CVE-2020-27741 | Citadel | Cross-site Scripting vulnerability in Citadel Webcit Multiple cross-site scripting (XSS) vulnerabilities in Citadel WebCit through 926 allow remote attackers to inject arbitrary web script or HTML via multiple pages and parameters. | 6.1 |
2020-10-28 | CVE-2018-19953 | Qnap | Cross-site Scripting vulnerability in Qnap QTS If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code. | 6.1 |
2020-10-28 | CVE-2020-27974 | Quadient | Cross-site Scripting vulnerability in Quadient Mail Accounting 5.0.6 NeoPost Mail Accounting Software Pro 5.0.6 allows php/Commun/FUS_SCM_BlockStart.php?code= XSS. | 6.1 |
2020-10-28 | CVE-2020-24303 | Grafana | Cross-site Scripting vulnerability in Grafana Grafana before 7.1.0-beta 1 allows XSS via a query alias for the ElasticSearch datasource. | 6.1 |
2020-10-28 | CVE-2020-8262 | Pulsesecure Ivanti | Cross-site Scripting vulnerability in multiple products A vulnerability in the Pulse Connect Secure / Pulse Policy Secure below 9.1R9 could allow attackers to conduct Cross-Site Scripting (XSS) and Open Redirection for authenticated user web interface. | 6.1 |
2020-10-27 | CVE-2020-16140 | Thembay | Cross-site Scripting vulnerability in Thembay Greenmart 2.4.2 The search functionality of the Greenmart theme 2.4.2 for WordPress is vulnerable to XSS. | 6.1 |
2020-10-27 | CVE-2019-8771 | Apple | Improper Restriction of Rendered UI Layers or Frames vulnerability in Apple Safari This issue was addressed with improved iframe sandbox enforcement. | 6.1 |
2020-10-27 | CVE-2019-8762 | Apple | Cross-site Scripting vulnerability in Apple products A validation issue was addressed with improved logic. | 6.1 |
2020-10-27 | CVE-2019-8753 | Apple | Cross-site Scripting vulnerability in Apple products This issue was addressed with improved checks. | 6.1 |
2020-10-27 | CVE-2020-27182 | Konzept IX | Cross-site Scripting vulnerability in Konzept-Ix Publixone Multiple cross-site scripting (XSS) vulnerabilities in konzept-ix publiXone before 2020.015 allow remote attackers to inject arbitrary JavaScript or HTML via appletError.jsp, job_jacket_detail.jsp, ixedit/editor_component.jsp, or the login form. | 6.1 |
2020-10-26 | CVE-2020-26161 | Octopus | Open Redirect vulnerability in Octopus Deploy In Octopus Deploy through 2020.4.2, an attacker could redirect users to an external site via a modified HTTP Host header. | 6.1 |
2020-10-26 | CVE-2020-25470 | Antsword Project | Cross-site Scripting vulnerability in Antsword Project Antsword 2.1.8.1 AntSword 2.1.8.1 contains a cross-site scripting (XSS) vulnerability in the View Site funtion. | 6.1 |
2020-10-29 | CVE-2020-5935 | F5 | Unspecified vulnerability in F5 products On BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, FPS, GTM, Link Controller, PEM) versions 15.1.0-15.1.0.5, 14.1.0-14.1.2.3, and 13.1.0-13.1.3.3, when handling MQTT traffic through a BIG-IP virtual server associated with an MQTT profile and an iRule performing manipulations on that traffic, TMM may produce a core file. | 5.9 |
2020-10-29 | CVE-2020-27657 | Synology | Cleartext Transmission of Sensitive Information vulnerability in Synology Router Manager Cleartext transmission of sensitive information vulnerability in DDNS in Synology Router Manager (SRM) before 1.2.4-8081 allows man-in-the-middle attackers to eavesdrop authentication information of DNSExit via unspecified vectors. | 5.9 |
2020-10-26 | CVE-2020-7126 | Arubanetworks | Server-Side Request Forgery (SSRF) vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote server-side request forgery (ssrf) vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 5.8 |
2020-10-29 | CVE-2020-14323 | Samba Opensuse Fedoraproject Debian | NULL Pointer Dereference vulnerability in multiple products A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. | 5.5 |
2020-10-28 | CVE-2020-25204 | Innogames | Unspecified vulnerability in Innogames GOD Kings 0.60.1 The God Kings application 0.60.1 for Android exposes a broadcast receiver to other apps called com.innogames.core.frontend.notifications.receivers.LocalNotificationBroadcastReceiver. | 5.5 |
2020-10-27 | CVE-2020-9982 | Apple | Unspecified vulnerability in Apple Music 3.4.0 This issue was addressed with improved checks to prevent unauthorized actions. | 5.5 |
2020-10-27 | CVE-2020-9979 | Apple | Unspecified vulnerability in Apple Iphone OS A trust issue was addressed by removing a legacy API. | 5.5 |
2020-10-27 | CVE-2019-8853 | Apple | Improper Input Validation vulnerability in Apple mac OS X A validation issue was addressed with improved input sanitization. | 5.5 |
2020-10-27 | CVE-2019-8850 | Apple | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved input validation. | 5.5 |
2020-10-27 | CVE-2019-8839 | Apple | Classic Buffer Overflow vulnerability in Apple mac OS X A buffer overflow was addressed with improved bounds checking. | 5.5 |
2020-10-27 | CVE-2019-8790 | Apple | Insecure Storage of Sensitive Information vulnerability in Apple Swift This issue was addresses by updating incorrect URLSession file descriptors management logic to match Swift 5.0. | 5.5 |
2020-10-27 | CVE-2019-8780 | Apple | Unspecified vulnerability in Apple Iphone OS The issue was addressed with improved permissions logic. | 5.5 |
2020-10-27 | CVE-2019-8774 | Apple | Resource Exhaustion vulnerability in Apple Iphone OS A resource exhaustion issue was addressed with improved input validation. | 5.5 |
2020-10-27 | CVE-2019-8761 | Apple | Unspecified vulnerability in Apple mac OS X This issue was addressed with improved checks. | 5.5 |
2020-10-27 | CVE-2019-8744 | Apple | Out-of-bounds Write vulnerability in Apple products A memory corruption issue existed in the handling of IPv6 packets. | 5.5 |
2020-10-27 | CVE-2019-8708 | Apple | Unspecified vulnerability in Apple Iphone OS A logic issue was addressed with improved restrictions. | 5.5 |
2020-10-27 | CVE-2019-8668 | Apple | Improper Input Validation vulnerability in Apple Tvos A denial of service issue was addressed with improved validation. | 5.5 |
2020-10-27 | CVE-2019-8656 | Apple | Unspecified vulnerability in Apple mac OS X This was addressed with additional checks by Gatekeeper on files mounted through a network share. | 5.5 |
2020-10-27 | CVE-2019-8582 | Apple | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved bounds checking. | 5.5 |
2020-10-27 | CVE-2019-8538 | Apple | Unspecified vulnerability in Apple Iphone OS A denial of service issue was addressed with improved validation. | 5.5 |
2020-10-27 | CVE-2019-8532 | Apple | Unspecified vulnerability in Apple Iphone OS A permissions issue was addressed by removing vulnerable code and adding additional checks. | 5.5 |
2020-10-27 | CVE-2018-4468 | Apple | Unspecified vulnerability in Apple mac OS X 10.14/10.14.0 This issue was addressed by removing additional entitlements. | 5.5 |
2020-10-27 | CVE-2018-4448 | Apple | Unspecified vulnerability in Apple products A memory initialization issue was addressed with improved memory handling. | 5.5 |
2020-10-27 | CVE-2018-4433 | Apple | Unspecified vulnerability in Apple products A configuration issue was addressed with additional restrictions. | 5.5 |
2020-10-27 | CVE-2018-4391 | Apple | Unspecified vulnerability in Apple Iphone OS and Watchos An inconsistent user interface issue was addressed with improved state management. | 5.5 |
2020-10-27 | CVE-2018-4390 | Apple | Unspecified vulnerability in Apple Iphone OS and Watchos An inconsistent user interface issue was addressed with improved state management. | 5.5 |
2020-10-27 | CVE-2018-4381 | Apple | Resource Exhaustion vulnerability in Apple Iphone OS A resource exhaustion issue was addressed with improved input validation. | 5.5 |
2020-10-27 | CVE-2018-4339 | Apple | Unspecified vulnerability in Apple Iphone OS This issue was addressed with a new entitlement. | 5.5 |
2020-10-27 | CVE-2020-6022 | Checkpoint | Unspecified vulnerability in Checkpoint Zonealarm Check Point ZoneAlarm before version 15.8.139.18543 allows a local actor to delete arbitrary files while restoring files in Anti-Ransomware. | 5.5 |
2020-10-27 | CVE-2018-21269 | Openrc Project | Link Following vulnerability in Openrc Project Openrc checkpath in OpenRC through 0.42.1 might allow local users to take ownership of arbitrary files because a non-terminal path component can be a symlink. | 5.5 |
2020-10-26 | CVE-2017-18925 | Openr | Link Following vulnerability in Openr Opentmpfiles opentmpfiles through 0.3.1 allows local users to take ownership of arbitrary files because d entries are mishandled and allow a symlink attack. | 5.5 |
2020-10-29 | CVE-2020-26205 | SAL Project | Unspecified vulnerability in SAL Project SAL Sal is a multi-tenanted reporting dashboard for Munki with the ability to display information from Facter. | 5.4 |
2020-10-29 | CVE-2020-25516 | Wso2 | Cross-site Scripting vulnerability in Wso2 Enterprise Integrator WSO2 Enterprise Integrator 6.6.0 or earlier contains a stored cross-site scripting (XSS) vulnerability in BPMN explorer tasks. | 5.4 |
2020-10-28 | CVE-2020-24712 | Getgophish | Cross-site Scripting vulnerability in Getgophish Gophish Cross Site Scripting (XSS) vulnerability in Gophish before 0.11.0 via the IMAP Host field on the account settings page. | 5.4 |
2020-10-28 | CVE-2020-24709 | Getgophish | Cross-site Scripting vulnerability in Getgophish Gophish Cross Site Scripting (XSS) vulnerability in Gophish through 0.10.1 via a crafted landing page or email template. | 5.4 |
2020-10-28 | CVE-2020-24708 | Getgophish | Cross-site Scripting vulnerability in Getgophish Gophish Cross Site Scripting (XSS) vulnerability in Gophish before 0.11.0 via the Host field on the send profile form. | 5.4 |
2020-10-28 | CVE-2020-27980 | Genexis | Cross-site Scripting vulnerability in Genexis Platinum-4410 Firmware 1.28 Genexis Platinum-4410 P4410-V2-1.28 devices allow stored XSS in the WLAN SSID parameter. | 5.4 |
2020-10-28 | CVE-2018-19943 | Qnap | Cross-site Scripting vulnerability in Qnap QTS If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code. | 5.4 |
2020-10-28 | CVE-2020-8263 | Pulsesecure | Cross-site Scripting vulnerability in Pulsesecure Pulse Secure Desktop Client 9.1 A vulnerability in the authenticated user web interface of Pulse Connect Secure < 9.1R9 could allow attackers to conduct Cross-Site Scripting (XSS) through the CGI file. | 5.4 |
2020-10-28 | CVE-2020-27957 | Mediawiki | Cross-site Scripting vulnerability in Mediawiki The RandomGameUnit extension for MediaWiki through 1.35 was not properly escaping various title-related data. | 5.4 |
2020-10-27 | CVE-2020-9860 | Apple | Unspecified vulnerability in Apple Safari A custom URL scheme handling issue was addressed with improved input validation. | 5.4 |
2020-10-26 | CVE-2020-15274 | Requarks | Unspecified vulnerability in Requarks Wiki.Js In Wiki.js before version 2.5.162, an XSS payload can be injected in a page title and executed via the search results. | 5.4 |
2020-10-26 | CVE-2020-6876 | ZTE | Cross-site Scripting vulnerability in ZTE Evdc Zxcloudirosv6.03.04 A ZTE product is impacted by an XSS vulnerability. | 5.4 |
2020-10-29 | CVE-2020-27993 | Hrsale | Path Traversal vulnerability in Hrsale 2.0.0 Hrsale 2.0.0 allows download?type=files&filename=../ directory traversal to read arbitrary files. | 5.3 |
2020-10-29 | CVE-2019-4563 | IBM | Session Fixation vulnerability in IBM Security Directory Server 6.4.0.0 IBM Security Directory Server 6.4.0 does not set the secure attribute on authorization tokens or session cookies. | 5.3 |
2020-10-29 | CVE-2019-4547 | IBM | Information Exposure Through an Error Message vulnerability in IBM Security Directory Server 6.4.0.0 IBM Security Directory Server 6.4.0 generates an error message that includes sensitive information about its environment, users, or associated data. | 5.3 |
2020-10-28 | CVE-2020-24710 | Getgophish | Server-Side Request Forgery (SSRF) vulnerability in Getgophish Gophish Gophish before 0.11.0 allows SSRF attacks. | 5.3 |
2020-10-28 | CVE-2020-27740 | Citadel | Unspecified vulnerability in Citadel Webcit Citadel WebCit through 926 allows unauthenticated remote attackers to enumerate valid users within the platform. | 5.3 |
2020-10-28 | CVE-2020-6829 | Mozilla | Unspecified vulnerability in Mozilla Firefox When performing EC scalar point multiplication, the wNAF point multiplication algorithm was used; which leaked partial information about the nonce used during signature generation. | 5.3 |
2020-10-27 | CVE-2020-3852 | Apple | Incorrect Authorization vulnerability in Apple Safari A logic issue was addressed with improved validation. | 5.3 |
2020-10-27 | CVE-2019-8858 | Apple | Unspecified vulnerability in Apple mac OS X A logic issue was addressed with improved state management. | 5.3 |
2020-10-27 | CVE-2019-8796 | Apple | Unspecified vulnerability in Apple products A logic issue was addressed with improved validation. | 5.3 |
2020-10-29 | CVE-2020-11484 | Intel | Unspecified vulnerability in Intel BMC Firmware 1.06.06/2.47 NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contains a vulnerability in the AMI BMC firmware in which an attacker with administrative privileges can obtain the hash of the BMC/IPMI user password, which may lead to information disclosure. | 4.9 |
2020-10-28 | CVE-2020-8255 | Pulsesecure | Unspecified vulnerability in Pulsesecure Pulse Secure Desktop Client 9.1 A vulnerability in the Pulse Connect Secure < 9.1R9 admin web interface could allow an authenticated attacker to perform an arbitrary file reading vulnerability is fixed using encrypted URL blacklisting that prevents these messages. | 4.9 |
2020-10-29 | CVE-2020-5932 | F5 | Cross-site Scripting vulnerability in F5 Big-Ip Application Security Manager On BIG-IP ASM 15.1.0-15.1.0.5, a cross-site scripting (XSS) vulnerability exists in the BIG-IP ASM Configuration utility response and blocking pages. | 4.8 |
2020-10-30 | CVE-2020-27015 | Trendmicro | Information Exposure Through an Error Message vulnerability in Trendmicro Antivirus 2020 Trend Micro Antivirus for Mac 2020 (Consumer) contains an Error Message Information Disclosure vulnerability that if exploited, could allow kernel pointers and debug messages to leak to userland. | 4.4 |
2020-10-29 | CVE-2020-4864 | IBM | Authentication Bypass by Spoofing vulnerability in IBM Resilient Security Orchestration Automation and Response 38.0 IBM Resilient SOAR V38.0 could allow an attacker on the internal net work to provide the server with a spoofed source IP address. | 4.3 |
2020-10-28 | CVE-2020-8261 | Pulsesecure Ivanti | Classic Buffer Overflow vulnerability in multiple products A vulnerability in the Pulse Connect Secure / Pulse Policy Secure < 9.1R9 is vulnerable to arbitrary cookie injection. | 4.3 |
2020-10-27 | CVE-2020-9857 | Apple | Unspecified vulnerability in Apple mac OS X An issue existed in the parsing of URLs. | 4.3 |
2020-10-27 | CVE-2019-8898 | Apple | Unspecified vulnerability in Apple products An information disclosure issue existed in the handling of the Storage Access API. | 4.3 |
2020-10-27 | CVE-2019-8834 | Apple | Unspecified vulnerability in Apple products A configuration issue was addressed with additional restrictions. | 4.3 |
2020-10-27 | CVE-2019-8827 | Apple | Unspecified vulnerability in Apple products The HTTP referrer header may be used to leak browsing history. | 4.3 |
14 Low Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2020-10-29 | CVE-2020-27656 | Synology | Cleartext Transmission of Sensitive Information vulnerability in Synology Diskstation Manager Cleartext transmission of sensitive information vulnerability in DDNS in Synology DiskStation Manager (DSM) before 6.2.3-25426-2 allows man-in-the-middle attackers to eavesdrop authentication information of DNSExit via unspecified vectors. | 3.7 |
2020-10-29 | CVE-2020-27650 | Synology | Missing Encryption of Sensitive Data vulnerability in Synology Diskstation Manager and Skynas Firmware Synology DiskStation Manager (DSM) before 6.2.3-25426-2 does not set the Secure flag for the session cookie in an HTTPS session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an HTTP session. | 3.7 |
2020-10-31 | CVE-2020-15703 | Aptdaemon Project | Path Traversal vulnerability in Aptdaemon Project Aptdaemon 1.1.1 There is no input validation on the Locale property in an apt transaction. | 3.3 |
2020-10-27 | CVE-2020-9786 | Apple | Unspecified vulnerability in Apple mac OS X This issue was addressed with improved checks This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. | 3.3 |
2020-10-27 | CVE-2019-8857 | Apple | Improper Input Validation vulnerability in Apple Iphone OS The issue was addressed with improved validation when an iCloud Link is created. | 3.3 |
2020-10-27 | CVE-2019-8856 | Apple | Unspecified vulnerability in Apple products An API issue existed in the handling of outgoing phone calls initiated with Siri. | 3.3 |
2020-10-27 | CVE-2019-8842 | Apple | Classic Buffer Overflow vulnerability in Apple mac OS X A buffer overflow was addressed with improved bounds checking. | 3.3 |
2020-10-27 | CVE-2019-8809 | Apple | Unspecified vulnerability in Apple products A validation issue was addressed with improved logic. | 3.3 |
2020-10-27 | CVE-2019-8642 | Apple | Improper Certificate Validation vulnerability in Apple mac OS X An issue existed in the handling of S-MIME certificates. | 3.3 |
2020-10-27 | CVE-2020-8956 | Pulsesecure | Weak Password Requirements vulnerability in Pulsesecure Pulse Secure Desktop Pulse Secure Desktop Client 9.0Rx before 9.0R5 and 9.1Rx before 9.1R4 on Windows reveals users' passwords if Save Settings is enabled. | 3.3 |
2020-10-28 | CVE-2020-25374 | Cyberark | Insufficient Session Expiration vulnerability in Cyberark Privileged Session Manager 10.9.0.15 CyberArk Privileged Session Manager (PSM) 10.9.0.15 allows attackers to discover internal pathnames by reading an error popup message after two hours of idle time. | 2.6 |
2020-10-27 | CVE-2019-8799 | Apple | Unspecified vulnerability in Apple products This issue was resolved by replacing device names with a random identifier. | 2.4 |
2020-10-27 | CVE-2019-8777 | Apple | Incorrect Default Permissions vulnerability in Apple mac OS X A lock screen issue allowed access to contacts on a locked device. | 2.4 |
2020-10-27 | CVE-2019-8732 | Apple | Incomplete Cleanup vulnerability in Apple Iphone OS The issue was addressed with improved data deletion. | 2.4 |