| Page(s) : 1 ... 22 23 24 25 26 27 28 29 30 31 [32] 33 34 35 36 37 38 39 40 41 42 ... | Result(s) : 173115 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2020-07-16 | CVE-2020-3144 | cve | A vulnerability in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall, RV130 VPN Router, RV130W Wireless-N Multifunction VPN Router, and RV215W Wirel... |
| 9.8 | 2020-07-16 | CVE-2020-3140 | cve | A vulnerability in the web management interface of Cisco Prime License Manager (PLM) Software could allow an unauthenticated, remote attacker to gain unauthorized access to an a... |
| 7.5 | 2020-07-16 | CVE-2020-13405 | cve | userfiles/modules/users/controller/controller.php in Microweber before 1.1.20 allows an unauthenticated user to disclose the users database via a /modules/ POST request. |
| 9.8 | 2020-07-16 | CVE-2020-12011 | cve | A specially crafted communication packet sent to the affected systems could cause a denial-of-service condition or allow remote code execution. This issue affects: Mitsubishi El... |
| 8.1 | 2020-07-16 | CVE-2019-20915 | cve | An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in bit_write_TF in bits.c. |
| 9.8 | 2020-07-16 | CVE-2019-20914 | cve | An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwg_encode_common_entity_handle_data in common_entity_handle_data.spec. |
| 8.1 | 2020-07-16 | CVE-2019-20913 | cve | An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in dwg_encode_entity in common_entity_data.spec. |
| 8.8 | 2020-07-16 | CVE-2019-20912 | cve | An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bit_read_TF. |
| 6.5 | 2020-07-16 | CVE-2019-20911 | cve | An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to denial of service in bit_calc_CRC in bits.c, related to a for loop. |
| 8.1 | 2020-07-16 | CVE-2019-20910 | cve | An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in decode_R13_R2000 in decode.c, a different vulnerability than C... |
| 7.5 | 2020-07-16 | CVE-2019-20909 | cve | An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwg_encode_LWPOLYLINE in dwg.spec. |
| 8.2 | 2020-07-16 | CVE-2020-4462 | cve | IBM Sterling External Authentication Server 6.0.1, 6.0.0, 2.4.3.2, and 2.4.2 and IBM Sterling Secure Proxy 6.0.1, 6.0.0, 3.4.3, and 3.4.2 are vulnerable to an XML External Entit... |
| 4.7 | 2020-07-16 | CVE-2020-4316 | cve | IBM Publishing Engine 6.0.6, 6.0.6.1, and 7.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sen... |
| 9.8 | 2020-07-16 | CVE-2020-15027 | cve | ConnectWise Automate through 2020.x has insufficient validation on certain authentication paths, allowing authentication bypass via a series of attempts. This was patched in 202... |
| 9.8 | 2020-07-16 | CVE-2020-14000 | cve | MIT Lifelong Kindergarten Scratch scratch-vm before 0.2.0-prerelease.20200714185213 loads extension URLs from untrusted project.json files with certain _ characters, resulting i... |
| 5.4 | 2020-07-16 | CVE-2019-4748 | cve | IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering th... |
| 5.4 | 2020-07-16 | CVE-2019-4747 | cve | IBM Team Concert (RTC) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functio... |
| 5.4 | 2020-07-15 | CVE-2020-9311 | cve | In SilverStripe through 4.5, malicious users with a valid Silverstripe CMS login (usually CMS access) can craft profile information which can lead to XSS for other users through... |
| 8.8 | 2020-07-15 | CVE-2020-9309 | cve | Silverstripe CMS through 4.5 can be susceptible to script execution from malicious upload contents under allowed file extensions (for example HTML code in a TXT file). When thes... |
| 7.2 | 2020-07-15 | CVE-2020-8958 | cve | Guangzhou 1GE ONU V2801RW 1.9.1-181203 through 2.9.0-181024 and V2804RGW 1.9.1-181203 through 2.9.0-181024 devices allow remote attackers to execute arbitrary OS commands via sh... |
| Page(s) : 1 ... 22 23 24 25 26 27 28 29 30 31 [32] 33 34 35 36 37 38 39 40 41 42 ... | Result(s) : 173115 |
