| Page(s) : 1 ... 113 114 115 116 117 118 119 120 121 122 [123] 124 125 126 127 128 129 130 131 132 133 ... | Result(s) : 9846 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.3 | 2020-06-26 | CVE-2020-9553 | cve | Adobe Bridge versions 10.0.1 and earlier version have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| 3.8 | 2020-06-25 | CVE-2020-3970 | cve | VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.5), and Fusion (11.x before... |
| 3.1 | 2020-06-24 | CVE-2020-15005 | cve | In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34.x before 1.34.2, private wikis behind a caching server using the img_auth.php image authorization security ... |
| 2.4 | 2020-06-24 | CVE-2020-4071 | cve | In django-basic-auth-ip-whitelist before 0.3.4, a potential timing attack exists on websites where the basic authentication is used or configured, i.e. BASIC_AUTH_LOGIN and BASI... |
| 2.7 | 2020-06-19 | CVE-2020-13261 | cve | Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later through 13.0.1 allows other administrators to view Amazon EKS credentials via HTML source code |
| 2.7 | 2020-06-19 | CVE-2016-11077 | cve | An issue was discovered in Mattermost Server before 3.0.0. It has a superfluous API in which the System Admin can change the account name and e-mail address of an LDAP account. |
| 3.3 | 2020-06-19 | CVE-2020-3972 | cve | VMware Tools for macOS (11.x.x and prior before 11.1.1) contains a denial-of-service vulnerability in the Host-Guest File System (HGFS) implementation. Successful exploitation o... |
| 2.7 | 2020-06-19 | CVE-2018-21260 | cve | An issue was discovered in Mattermost Server before 4.8.1, 4.7.4, and 4.6.3. WebSocket events were accidentally sent during certain user-management operations, violating user pr... |
| 3.7 | 2020-06-19 | CVE-2018-21249 | cve | An issue was discovered in Mattermost Server before 5.3.0. It mishandles timing. |
| 3.3 | 2020-06-18 | CVE-2019-13033 | cve | In CISOfy Lynis 2.x through 2.7.5, the license key can be obtained by looking at the process list when a data upload is being performed. This license can be used to upload data ... |
| 3.8 | 2020-06-17 | CVE-2020-6752 | cve | In OMERO before 5.6.1, group owners can access members' data in other groups. |
| 2.5 | 2020-06-15 | CVE-2017-18869 | cve | A TOCTOU issue in the chownr package before 1.1.0 for Node.js 10.10 could allow a local attacker to trick it into descending into unintended directories via symlink attacks. |
| 3.1 | 2020-06-12 | CVE-2020-4050 | cve | In affected versions of WordPress, misuse of the `set-screen-option` filter's return value allows arbitrary user meta fields to be saved. It does require an admin to instal... |
| 2.4 | 2020-06-12 | CVE-2020-4049 | cve | In affected versions of WordPress, when uploading themes, the name of the theme folder can be crafted in a way that could lead to JavaScript execution in /wp-admin on the themes... |
| 3.3 | 2020-06-12 | CVE-2020-3930 | cve | GeoVision Door Access Control device family improperly stores and controls access to system logs, any users can read these logs. |
| 2.4 | 2020-06-09 | CVE-2020-9848 | cve | An authorization issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5. A person with physical access to an iOS device may be able ... |
| 3.5 | 2020-06-04 | CVE-2020-13838 | cve | An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. The DeX Lockscreen feature does not block access to Quick Panel and notifications. The Samsun... |
| 3.5 | 2020-06-04 | CVE-2020-13837 | cve | An issue was discovered on Samsung mobile devices with Q(10.0) software. The Lockscreen feature does not block Quick Panel access to Music Share. The Samsung ID is SVE-2020-1714... |
| 3.3 | 2020-06-03 | CVE-2020-3319 | cve | A vulnerability in Cisco Webex Network Recording Player and Cisco Webex Player for Microsoft Windows could allow an attacker to cause a process crash resulting in a Denial of se... |
| 3.5 | 2020-06-03 | CVE-2020-13597 | cve | Clusters using Calico (version 3.14.0 and below), Calico Enterprise (version 2.8.2 and below), may be vulnerable to information disclosure if IPv6 is enabled but unused. A compr... |
| Page(s) : 1 ... 113 114 115 116 117 118 119 120 121 122 [123] 124 125 126 127 128 129 130 131 132 133 ... | Result(s) : 9846 |
