| Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... | Result(s) : 173239 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2020-07-31 | CVE-2020-3376 | cve | A vulnerability in the Device Manager application of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass authentication and execut... |
| N/A | 2020-07-31 | CVE-2020-3375 | cve | A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected device. The vulnerability is due to i... |
| 9.9 | 2020-07-31 | CVE-2020-3374 | cve | A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization, enabling them to ac... |
| 7.5 | 2020-07-30 | CVE-2020-16166 | cve | The Linux kernel through 5.7.11 allows remote attackers to make observations that help to obtain sensitive information about the internal state of the network RNG, aka CID-f227e... |
| 9.8 | 2020-07-30 | CVE-2020-16165 | cve | The DAO/DTO implementation in SpringBlade through 2.7.1 allows SQL Injection in an ORDER BY clause. This is related to the /api/blade-log/api/list ascs and desc parameters. |
| N/A | 2020-07-30 | CVE-2020-7205 | cve | A potential security vulnerability has been identified in HPE Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting ToolKit. The vulnerability could be locally ... |
| 7.8 | 2020-07-30 | CVE-2020-7829 | cve | DaviewIndy 8.98.4 and earlier version contain Heap-based overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attack... |
| 7.8 | 2020-07-30 | CVE-2020-7828 | cve | DaviewIndy 8.98.4 and earlier version contain Heap-based overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attack... |
| 7.8 | 2020-07-30 | CVE-2020-7827 | cve | DaviewIndy 8.98.7 and earlier version contain Use-After-Free vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attackers c... |
| 7.4 | 2020-07-30 | CVE-2020-16164 | cve | ** DISPUTED ** An issue was discovered in RIPE NCC RPKI Validator 3.x through 3.1-2020.07.06.14.28. It allows remote attackers to bypass intended access restrictions or to cause... |
| 9.1 | 2020-07-30 | CVE-2020-16163 | cve | ** DISPUTED ** An issue was discovered in RIPE NCC RPKI Validator 3.x before 3.1-2020.07.06.14.28. RRDP fetches proceed even with a lack of validation of a TLS HTTPS endpoint. T... |
| 7.5 | 2020-07-30 | CVE-2020-16162 | cve | ** DISPUTED ** An issue was discovered in RIPE NCC RPKI Validator 3.x through 3.1-2020.07.06.14.28. Missing validation checks on CRL presence or CRL staleness in the X509-based ... |
| 5.4 | 2020-07-30 | CVE-2020-16157 | cve | A Stored XSS vulnerability exists in Nagios Log Server before 2.1.7 via the Notification Methods -> Email Users menu. |
| 7.5 | 2020-07-30 | CVE-2020-15957 | cve | An issue was discovered in DP3T-Backend-SDK before 1.1.1 for Decentralised Privacy-Preserving Proximity Tracing (DP3T). When it is configured to check JWT before uploading/publi... |
| 5.3 | 2020-07-30 | CVE-2020-15511 | cve | HashiCorp Terraform Enterprise up to v202006-1 contained a default signup page that allowed user registration even when disabled, bypassing SAML enforcement. Fixed in v202007-1. |
| 7.5 | 2020-07-30 | CVE-2020-15131 | cve | In SLP Validate (npm package slp-validate) before version 1.2.2, there is a vulnerability to false-positive validation outcomes for the NFT1 Child Genesis transaction type. A po... |
| 7.5 | 2020-07-30 | CVE-2020-15130 | cve | In SLPJS (npm package slpjs) before version 0.27.4, there is a vulnerability to false-positive validation outcomes for the NFT1 Child Genesis transaction type. A poorly implemen... |
| 4.7 | 2020-07-30 | CVE-2020-15129 | cve | In Traefik before versions 1.7.26, 2.2.8, and 2.3.0-rc3, there exists a potential open redirect vulnerability in Traefik's handling of the "X-Forwarded-Prefix" header. The ... |
| 7.8 | 2020-07-30 | CVE-2020-14162 | cve | An issue was discovered in Pi-Hole through 5.0. The local www-data user has sudo privileges to execute the pihole core script as root without a password, which could allow an at... |
| 9.1 | 2020-07-30 | CVE-2020-14158 | cve | The ABUS Secvest FUMO50110 hybrid module does not have any security mechanism that ensures confidentiality or integrity of RF packets that are exchanged with an alarm panel. Thi... |
| Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... | Result(s) : 173239 |
