| Page(s) : 1 ... 823 824 825 826 827 828 829 830 831 832 [833] 834 835 836 837 838 839 840 841 842 843 ... | Result(s) : 43543 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2020-11-13 | CVE-2020-13638 | cve | lib/crud/userprocess.php in rConfig 3.9.x before 3.9.7 has an authentication bypass, leading to administrator account creation. This issue has been fixed in 3.9.7. |
| 9.1 | 2020-11-12 | CVE-2020-8747 | cve | Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable informa... |
| 9.8 | 2020-11-12 | CVE-2020-28269 | cve | Prototype pollution vulnerability in 'field' versions 0.0.1 through 1.0.1 allows attacker to cause a denial of service and may lead to remote code execution. |
| 9.8 | 2020-11-12 | CVE-2020-11193 | cve | u'Buffer over read can happen while parsing mkv clip due to improper typecasting of data returned from atomsize' in Snapdragon Auto, Snapdragon Compute, Snapdragon Con... |
| 9.8 | 2020-11-12 | CVE-2020-8752 | cve | Out-of-bounds write in IPv6 subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 14.0.45 may allow an unauthenticated user to potential... |
| 9.8 | 2020-11-12 | CVE-2020-7472 | cve | An authorization bypass and PHP local-file-include vulnerability in the installation component of SugarCRM before 8.0, 8.0 before 8.0.7, 9.0 before 9.0.4, and 10.0 before 10.0.0... |
| 9.8 | 2020-11-12 | CVE-2020-7769 | cve | This affects the package nodemailer before 6.4.16. Use of crafted recipient email addresses may result in arbitrary command flag injection in sendmail transport for sending mails. |
| 9.8 | 2020-11-12 | CVE-2020-11196 | cve | u'Integer overflow to buffer overflow occurs while playback of ASF clip having unexpected number of codec entries' in Snapdragon Auto, Snapdragon Compute, Snapdragon C... |
| 9.8 | 2020-11-12 | CVE-2020-11184 | cve | u'Possible buffer overflow will occur in video while parsing mp4 clip with crafted esds atom size.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, ... |
| 9.8 | 2020-11-12 | CVE-2020-28270 | cve | Prototype pollution vulnerability in 'object-hierarchy-access' versions 0.2.0 through 0.32.0 allows attacker to cause a denial of service and may lead to remote code e... |
| 9.8 | 2020-11-12 | CVE-2020-12315 | cve | Path traversal in the Intel(R) EMA before version 1.3.3 may allow an unauthenticated user to potentially enable escalation of privilege via network access. |
| 9.8 | 2020-11-12 | CVE-2020-7770 | cve | This affects the package json8 before 1.0.3. The function adds in the target object the property specified in the path, however it does not properly check the key being set, lea... |
| 9.8 | 2020-11-12 | CVE-2020-27481 | cve | An unauthenticated SQL Injection vulnerability in Good Layers LMS Plugin |
| 9.9 | 2020-11-12 | CVE-2020-13774 | cve | An unrestricted file-upload issue in EditLaunchPadDialog.aspx in Ivanti Endpoint Manager 2019.1 and 2020.1 allows an authenticated attacker to gain remote code execution by uplo... |
| 9.8 | 2020-11-12 | CVE-2020-13877 | cve | SQL Injection issues in various ASPX pages of ResourceXpress Meeting Monitor 4.9 could lead to remote code execution and information disclosure. |
| 9.8 | 2020-11-12 | CVE-2020-24719 | cve | Exposed Erlang Cookie could lead to Remote Command Execution (RCE) attack. Communication between Erlang nodes is done by exchanging a shared secret (aka "magic cookie"). There a... |
| 9.8 | 2020-11-12 | CVE-2020-28271 | cve | Prototype pollution vulnerability in 'deephas' versions 1.0.0 through 1.0.5 allows attacker to cause a denial of service and may lead to remote code execution. |
| 9.8 | 2020-11-12 | CVE-2020-3639 | cve | u'When a non standard SIP sigcomp message is received from the network, then there may be chances of using more UDVM cycle or memory overflow' in Snapdragon Auto, Snap... |
| 9.8 | 2020-11-12 | CVE-2020-11168 | cve | u'Null-pointer dereference can occur while accessing data buffer beyond its size that leads to access the buffer beyond its range' in Snapdragon Auto, Snapdragon Compu... |
| 9.8 | 2020-11-11 | CVE-2020-5426 | cve | Scheduler for TAS prior to version 1.4.0 was permitting plaintext transmission of UAA client token by sending it over a non-TLS connection. This also depended on the configurati... |
| Page(s) : 1 ... 823 824 825 826 827 828 829 830 831 832 [833] 834 835 836 837 838 839 840 841 842 843 ... | Result(s) : 43543 |
