| Page(s) : 1 ... 26 27 28 29 30 31 32 33 34 35 [36] 37 38 39 40 41 42 43 44 45 46 ... | Result(s) : 175342 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2020-09-09 | CVE-2020-6327 | cve | SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated 3DM file received from untrusted sources which results in crashing of the application and becomin... |
| 5.4 | 2020-09-09 | CVE-2020-6326 | cve | SAP NetWeaver (Knowledge Management), version-7.30,7.31,7.40,7.50, allows an authenticated attacker to create malicious links in the UI, when clicked by victim, will execute arb... |
| 4.3 | 2020-09-09 | CVE-2020-6322 | cve | SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated 3DM file received from untrusted sources which results in crashing of the application and becomin... |
| 6.5 | 2020-09-09 | CVE-2020-6321 | cve | SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated U3D file received from untrusted sources which results in crashing of the application and becomin... |
| 8.1 | 2020-09-09 | CVE-2020-6320 | cve | SAP Marketing (Servlet), version-130,140,150, allows an authenticated attacker to invoke certain functions that are restricted. Limited knowledge of payload is required for an a... |
| 7.2 | 2020-09-09 | CVE-2020-6318 | cve | A Remote Code Execution vulnerability exists in the SAP NetWeaver (ABAP Server, up to release 7.40) and ABAP Platform (> release 7.40).Because of this, an attacker can exploit t... |
| 4.3 | 2020-09-09 | CVE-2020-6314 | cve | SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated HPGL file received from untrusted sources which results in crashing of the application and becomi... |
| 6.5 | 2020-09-09 | CVE-2020-6313 | cve | SAP NetWeaver Application Server JAVA(XML Forms) versions 7.30, 7.31, 7.40, 7.50 does not sufficiently encode user controlled inputs, which allows an authenticated User with spe... |
| 5.4 | 2020-09-09 | CVE-2020-6312 | cve | SAP BusinessObjects Business Intelligence Platform (Web Intelligence HTML interface), versions - 4.1, 4.2, allows an attacker with a non-administrative user account that can edi... |
| 8.1 | 2020-09-09 | CVE-2020-6302 | cve | SAP Commerce versions 6.7, 1808, 1811, 1905, 2005 contains the jSession ID in the backoffice URL when the application is loaded initially. An attacker can get this session ID vi... |
| 5.3 | 2020-09-09 | CVE-2020-6288 | cve | SAP Business Objects Business Intelligence Platform (Web Intelligence HTML interface) allows an attacker with edit document rights to upload any file (including script files) wi... |
| 6.1 | 2020-09-09 | CVE-2020-6283 | cve | SAP Fiori Launchpad does not sufficiently encode user controlled inputs, and hence allowing the attacker to inject the meta tag into the launchpad html using the vulnerable para... |
| 7 | 2020-09-09 | CVE-2020-14342 | cve | It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invo... |
| 6.1 | 2020-09-09 | CVE-2020-5627 | cve | Yodobashi App for Android versions 1.8.7 and earlier allows remote attackers to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may beco... |
| 5.5 | 2020-09-09 | CVE-2020-3679 | cve | u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon... |
| 5.5 | 2020-09-09 | CVE-2020-3674 | cve | Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industr... |
| 7.8 | 2020-09-09 | CVE-2020-3656 | cve | Out of bound access can happen in MHI command process due to lack of check of command channel id value received from MHI devices in Snapdragon Auto, Snapdragon Compute, Snapdrag... |
| 9.1 | 2020-09-09 | CVE-2020-3634 | cve | u'Multiple Read overflows issue due to improper length check while decoding Generic NAS transport/EMM info' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer... |
| 7.1 | 2020-09-09 | CVE-2020-3617 | cve | u'Buffer over-read Issue in Q6 testbus framework due to diag packet length is not completely validated before accessing the field and leads to Information disclosure.'... |
| 7.5 | 2020-09-09 | CVE-2020-11135 | cve | u'Reachable assertion when wrong data size is returned by parser for ape clips' in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobi... |
| Page(s) : 1 ... 26 27 28 29 30 31 32 33 34 35 [36] 37 38 39 40 41 42 43 44 45 46 ... | Result(s) : 175342 |
