Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 13 14 15 16 17 18 19 20 21 22 [23] 24 25 26 27 28 29 30 31 32 33 ... Result(s) : 173272

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
6.5 2020-07-27 CVE-2020-7016 cve Kibana versions before 6.8.11 and 7.8.1 contain a denial of service (DoS) flaw in Timelion. An attacker can construct a URL that when viewed by a Kibana user can lead to the Kib...
4.9 2020-07-27 CVE-2020-15120 cve In "I hate money" before version 4.1.5, an authenticated member of one project can modify and delete members of another project, without knowledge of this other project's p...
3.5 2020-07-27 CVE-2020-15103 cve In FreeRDP less than or equal to 2.1.2, an integer overflow exists due to missing input sanitation in rdpegfx channel. All FreeRDP clients are affected. The input rectangles fro...
7.8 2020-07-27 CVE-2020-1457 cve A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code E...
7.8 2020-07-27 CVE-2020-1425 cve A remoted code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code ...
7.5 2020-07-27 CVE-2020-10609 cve Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the ...
4.4 2020-07-27 CVE-2020-4498 cve IBM MQ Appliance 9.1 LTS and 9.1 CD could allow a local privileged user to obtain highly sensitve information due to inclusion of data within trace files. IBM X-Force ID: 182118.
4.6 2020-07-27 CVE-2020-4408 cve The IBM QRadar Advisor 1.1 through 2.5.2 with Watson App for IBM QRadar SIEM does not adequately mask all passwords during input, which could be obtained by a physical attacker ...
4.3 2020-07-27 CVE-2020-4405 cve IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 could disclose potentially sensitive information to an authenticated user due to world readable log files. IBM X-Force ID: 179484.
7.8 2020-07-27 CVE-2020-15593 cve SteelCentral Aternity Agent 11.0.0.120 on Windows mishandles IPC. It uses an executable running as a high privileged Windows service to perform administrative tasks and collect ...
7.5 2020-07-27 CVE-2020-15592 cve SteelCentral Aternity Agent before 11.0.0.120 on Windows allows Privilege Escalation via a crafted file. It uses an executable running as a high privileged Windows service to pe...
2.4 2020-07-27 CVE-2020-9251 cve HUAWEI Mate 20 smartphones with versions earlier than 10.1.0.160(C00E160R2P11) have an improper authorization vulnerability. The software does not properly restrict certain oper...
3.3 2020-07-27 CVE-2020-9077 cve HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability. The system does not properly authenticate the application...
7.5 2020-07-27 CVE-2020-7695 cve Uvicorn before 0.11.7 is vulnerable to HTTP response splitting. CRLF sequences are not escaped in the value of HTTP headers. Attackers can exploit this to add arbitrary headers ...
7.5 2020-07-27 CVE-2020-7694 cve This affects all versions of package uvicorn. The request logger provided by the package is vulnerable to ASNI escape sequence injection. Whenever any HTTP request is received, ...
6.1 2020-07-27 CVE-2020-11110 cve Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed a...
8.8 2020-07-27 CVE-2020-5611 cve Cross-site request forgery (CSRF) vulnerability in Social Sharing Plugin versions prior to 1.2.10 allows remote attackers to hijack the authentication of administrators via unsp...
6.5 2020-07-27 CVE-2020-15954 cve KDE KMail 19.12.3 (aka 5.13.3) engages in unencrypted POP3 communication during times when the UI indicates that encryption is in use.
7.4 2020-07-27 CVE-2020-15953 cve LibEtPan through 1.9.4, as used in MailCore 2 through 0.6.3 and other products, has a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TL...
7.5 2020-07-25 CVE-2020-7687 cve This affects all versions of package fast-http. There is no path sanitization in the path provided at fs.readFile in index.js.
Page(s) : 1 ... 13 14 15 16 17 18 19 20 21 22 [23] 24 25 26 27 28 29 30 31 32 33 ... Result(s) : 173272