| Page(s) : 1 ... 13 14 15 16 17 18 19 20 21 22 [23] 24 25 26 27 28 29 30 31 32 33 ... | Result(s) : 173272 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.5 | 2020-07-27 | CVE-2020-7016 | cve | Kibana versions before 6.8.11 and 7.8.1 contain a denial of service (DoS) flaw in Timelion. An attacker can construct a URL that when viewed by a Kibana user can lead to the Kib... |
| 4.9 | 2020-07-27 | CVE-2020-15120 | cve | In "I hate money" before version 4.1.5, an authenticated member of one project can modify and delete members of another project, without knowledge of this other project's p... |
| 3.5 | 2020-07-27 | CVE-2020-15103 | cve | In FreeRDP less than or equal to 2.1.2, an integer overflow exists due to missing input sanitation in rdpegfx channel. All FreeRDP clients are affected. The input rectangles fro... |
| 7.8 | 2020-07-27 | CVE-2020-1457 | cve | A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code E... |
| 7.8 | 2020-07-27 | CVE-2020-1425 | cve | A remoted code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code ... |
| 7.5 | 2020-07-27 | CVE-2020-10609 | cve | Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the ... |
| 4.4 | 2020-07-27 | CVE-2020-4498 | cve | IBM MQ Appliance 9.1 LTS and 9.1 CD could allow a local privileged user to obtain highly sensitve information due to inclusion of data within trace files. IBM X-Force ID: 182118. |
| 4.6 | 2020-07-27 | CVE-2020-4408 | cve | The IBM QRadar Advisor 1.1 through 2.5.2 with Watson App for IBM QRadar SIEM does not adequately mask all passwords during input, which could be obtained by a physical attacker ... |
| 4.3 | 2020-07-27 | CVE-2020-4405 | cve | IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 could disclose potentially sensitive information to an authenticated user due to world readable log files. IBM X-Force ID: 179484. |
| 7.8 | 2020-07-27 | CVE-2020-15593 | cve | SteelCentral Aternity Agent 11.0.0.120 on Windows mishandles IPC. It uses an executable running as a high privileged Windows service to perform administrative tasks and collect ... |
| 7.5 | 2020-07-27 | CVE-2020-15592 | cve | SteelCentral Aternity Agent before 11.0.0.120 on Windows allows Privilege Escalation via a crafted file. It uses an executable running as a high privileged Windows service to pe... |
| 2.4 | 2020-07-27 | CVE-2020-9251 | cve | HUAWEI Mate 20 smartphones with versions earlier than 10.1.0.160(C00E160R2P11) have an improper authorization vulnerability. The software does not properly restrict certain oper... |
| 3.3 | 2020-07-27 | CVE-2020-9077 | cve | HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability. The system does not properly authenticate the application... |
| 7.5 | 2020-07-27 | CVE-2020-7695 | cve | Uvicorn before 0.11.7 is vulnerable to HTTP response splitting. CRLF sequences are not escaped in the value of HTTP headers. Attackers can exploit this to add arbitrary headers ... |
| 7.5 | 2020-07-27 | CVE-2020-7694 | cve | This affects all versions of package uvicorn. The request logger provided by the package is vulnerable to ASNI escape sequence injection. Whenever any HTTP request is received, ... |
| 6.1 | 2020-07-27 | CVE-2020-11110 | cve | Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed a... |
| 8.8 | 2020-07-27 | CVE-2020-5611 | cve | Cross-site request forgery (CSRF) vulnerability in Social Sharing Plugin versions prior to 1.2.10 allows remote attackers to hijack the authentication of administrators via unsp... |
| 6.5 | 2020-07-27 | CVE-2020-15954 | cve | KDE KMail 19.12.3 (aka 5.13.3) engages in unencrypted POP3 communication during times when the UI indicates that encryption is in use. |
| 7.4 | 2020-07-27 | CVE-2020-15953 | cve | LibEtPan through 1.9.4, as used in MailCore 2 through 0.6.3 and other products, has a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TL... |
| 7.5 | 2020-07-25 | CVE-2020-7687 | cve | This affects all versions of package fast-http. There is no path sanitization in the path provided at fs.readFile in index.js. |
| Page(s) : 1 ... 13 14 15 16 17 18 19 20 21 22 [23] 24 25 26 27 28 29 30 31 32 33 ... | Result(s) : 173272 |
