| Page(s) : 1 ... 107 108 109 110 111 112 113 114 115 116 [117] 118 119 120 121 122 123 124 125 126 127 ... | Result(s) : 9846 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.5 | 2020-10-06 | CVE-2020-15239 | cve | In xmpp-http-upload before version 0.4.0, when the GET method is attacked, attackers can read files which have a `.data` suffix and which are accompanied by a JSON file with the... |
| 3.2 | 2020-10-06 | CVE-2020-25743 | cve | hw/ide/pci.c in QEMU before 5.1.1 can trigger a NULL pointer dereference because it lacks a pointer check before an ide_cancel_dma_sync call. |
| 3.2 | 2020-10-06 | CVE-2020-25742 | cve | pci_change_irq_level in hw/pci/pci.c in QEMU before 5.1.1 has a NULL pointer dereference because pci_get_bus() might not return a valid pointer. |
| 3.2 | 2020-10-02 | CVE-2020-25741 | cve | fdctrl_write_data in hw/block/fdc.c in QEMU 5.0.0 has a NULL pointer dereference via a NULL block pointer for the current drive. |
| 3.1 | 2020-10-01 | CVE-2020-15671 | cve | When typing in a password under certain conditions, a race may have occured where the InputContext was not being correctly set for the input field, resulting in the typed passwo... |
| 3.3 | 2020-09-30 | CVE-2020-14378 | cve | An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc` function can lead to large amounts of CPU cycles being eaten up in a long running loo... |
| 3.3 | 2020-09-30 | CVE-2020-4629 | cve | IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local user with specialized access to obtain sensitive information from a detailed technical error message.... |
| 3.6 | 2020-09-30 | CVE-2020-15731 | cve | An improper Input Validation vulnerability in the code handling file renaming and recovery in Bitdefender Engines allows an attacker to write an arbitrary file in a location har... |
| 3.2 | 2020-09-25 | CVE-2020-25084 | cve | QEMU 5.0.0 has a use-after-free in hw/usb/hcd-xhci.c because the usb_packet_map return value is not checked. |
| 3.5 | 2020-09-22 | CVE-2020-7734 | cve | All versions of package cabot are vulnerable to Cross-site Scripting (XSS) via the Endpoint column. |
| 2.3 | 2020-09-18 | CVE-2020-16230 | cve | All version of Ewon Flexy and Cosy prior to 14.1 use wildcards such as (*) under which domains can request resources. An attacker with local access and high privileges could inj... |
| 3.5 | 2020-09-18 | CVE-2020-14525 | cve | Philips Clinical Collaboration Platform, Versions 12.2.1 and prior, does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output used as... |
| 2.3 | 2020-09-17 | CVE-2020-0382 | cve | In RunInternal of dumpstate.cpp, there is a possible user consent bypass due to an uncaught exception. This could lead to local information disclosure of bug report data with Sy... |
| 2.7 | 2020-09-17 | CVE-2020-15184 | cve | In Helm before versions 2.16.11 and 3.3.2 there is a bug in which the `alias` field on a `Chart.yaml` is not properly sanitized. This could lead to the injection of unwanted inf... |
| 2.7 | 2020-09-17 | CVE-2020-15186 | cve | In Helm before versions 2.16.11 and 3.3.2 plugin names are not sanitized properly. As a result, a malicious plugin author could use characters in a plugin name that would result... |
| 2.7 | 2020-09-17 | CVE-2020-15185 | cve | In Helm before versions 2.16.11 and 3.3.2, a Helm repository can contain duplicates of the same chart, with the last one always used. If a repository is compromised, this lowers... |
| 3.3 | 2020-09-16 | CVE-2020-3989 | cve | VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain a denial of service vulnerability due to an out-of-bounds write issue in Cortado ThinPrint co... |
| 3.3 | 2020-09-15 | CVE-2020-4344 | cve | IBM Tivoli Business Service Manager 6.2.0.0 - 6.2.0.2 IF 1 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 178247. |
| 2.7 | 2020-09-15 | CVE-2020-13308 | cve | A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. A user without 2 factor authentication enabled could be prohibited from accessing GitLab by ... |
| 2.1 | 2020-09-11 | CVE-2020-1083 | cve | An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vul... |
| Page(s) : 1 ... 107 108 109 110 111 112 113 114 115 116 [117] 118 119 120 121 122 123 124 125 126 127 ... | Result(s) : 9846 |
