Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... Result(s) : 169729

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
7.5 2020-05-27 CVE-2020-4349 cve IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force I...
6.5 2020-05-27 CVE-2020-4348 cve IBM Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.4 could allow an authenticated GUI user to perform unauthorized actions due to missing function level acces...
7.5 2020-05-27 CVE-2020-4226 cve IBM MobileFirst Platform Foundation 8.0.0.0 stores highly sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to...
6.1 2020-05-27 CVE-2020-13633 cve Fork before 5.8.3 allows XSS via navigation_title or title.
7.5 2020-05-27 CVE-2020-13632 cve ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.
7.5 2020-05-27 CVE-2020-13631 cve SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c.
9.8 2020-05-27 CVE-2020-13630 cve ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature.
6.1 2020-05-27 CVE-2020-13628 cve Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the widgetId parameter to host-monitoring/src/toolbar.php. This vulne...
6.1 2020-05-27 CVE-2020-13627 cve Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the widgetId parameter to service-monitoring/src/index.php. This vuln...
5.5 2020-05-27 CVE-2020-13253 cve sd_wp_addr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of-bounds read during sdhci_write() operations. A guest OS user can crash the QEMU proc...
6.1 2020-05-27 CVE-2020-10946 cve Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the page parameter to service-monitoring/src/index.php. This vulnerab...
4.3 2020-05-27 CVE-2020-10945 cve Centreon before 19.10.7 exposes Session IDs in server responses.
N/A 2020-05-27 CVE-2020-13386 cve In SmartDraw 2020 27.0.0.0, the installer gives inherited write permissions to the Authenticated Users group on the SmartDraw 2020 installation folder. Additionally, when the pr...
7.5 2020-05-27 CVE-2019-20806 cve An issue was discovered in the Linux kernel before 5.2. There is a NULL pointer dereference in tw5864_handle_frame() in drivers/media/pci/tw5864/tw5864-video.c, which may cause ...
7.5 2020-05-27 CVE-2020-13623 cve JerryScript 2.2.0 allows attackers to cause a denial of service (stack consumption) via a proxy operation.
7.5 2020-05-27 CVE-2020-13622 cve JerryScript 2.2.0 allows attackers to cause a denial of service (assertion failure) because a property key query for a Proxy object returns unintended data.
N/A 2020-05-27 CVE-2020-10737 cve A race condition was found in the mkhomedir tool shipped with the oddjob package in versions before 0.34.5 and 0.34.6 wherein, during the home creation, mkhomedir copies the /et...
N/A 2020-05-26 CVE-2020-9046 cve A vulnerability in all versions of Kantech EntraPass Editions could potentially allow an authorized low-privileged user to gain full system-level privileges by replacing critica...
N/A 2020-05-26 CVE-2020-13616 cve The boost ASIO wrapper in net/asio.cpp in Pichi before 1.3.0 lacks TLS hostname verification.
5.9 2020-05-26 CVE-2020-13615 cve lib/QoreSocket.cpp in Qore before 0.9.4.2 lacks hostname verification for X.509 certificates.
Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... Result(s) : 169729