| Page(s) : 1 ... 871 872 873 874 875 876 877 878 879 880 [881] 882 883 884 885 886 887 888 889 890 891 ... | Result(s) : 43550 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2020-06-23 | CVE-2020-12782 | cve | Openfind MailGates contains a Command Injection flaw, when receiving email with specific strings, malicious code in the mail attachment will be triggered and gain unauthorized a... |
| 9.8 | 2020-06-23 | CVE-2020-5594 | cve | Mitsubishi Electric MELSEC iQ-R, iQ-F, Q, L, and FX series CPU modules all versions contain a vulnerability that allows cleartext transmission of sensitive information between C... |
| 9.8 | 2020-06-23 | CVE-2020-14938 | cve | An issue was discovered in map.c in FreedroidRPG 1.0rc2. It assumes lengths of data sets read from saved game files. It copies data from a file into a fixed-size heap-allocated ... |
| 9 | 2020-06-23 | CVE-2020-12021 | cve | In OSIsoft PI Web API 2019 Patch 1 (1.12.0.6346) and all previous versions, the affected product is vulnerable to a cross-site scripting attack, which may allow an attacker to r... |
| 9.8 | 2020-06-23 | CVE-2020-14993 | cve | A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vigor300B devices before 1.5.1.1 allows remote attackers to execute arbitrary code via the formuserphonenumber... |
| 9.8 | 2020-06-23 | CVE-2020-9480 | cve | In Apache Spark 2.4.5 and earlier, a standalone resource manager's master may be configured to require authentication (spark.authenticate) via a shared secret. When enabled... |
| 9.8 | 2020-06-22 | CVE-2020-3628 | cve | Improper access due to socket opened by the logging application without specifying localhost address in Snapdragon Consumer IOT, Snapdragon Mobile in APQ8053, Rennell, SDX20 |
| 9.8 | 2020-06-22 | CVE-2020-11989 | cve | Apache Shiro before 1.5.3, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass. |
| 9.8 | 2020-06-22 | CVE-2019-14080 | cve | Out of bound write can happen due to lack of check of array index value while parsing SDP attribute for SAR in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snap... |
| 9.8 | 2020-06-22 | CVE-2020-14972 | cve | Multiple SQL injection vulnerabilities in Sourcecodester Pisay Online E-Learning System 1.0 allow remote unauthenticated attackers to bypass authentication and achieve Remote Co... |
| 9.8 | 2020-06-22 | CVE-2020-14944 | cve | Global RADAR BSA Radar 1.6.7234.24750 and earlier lacks valid authorization controls in multiple functions. This can allow for manipulation and takeover of user accounts if succ... |
| 9.8 | 2020-06-22 | CVE-2020-4068 | cve | In APNSwift 1.0.0, calling APNSwiftSigner.sign(digest:) is likely to result in a heap buffer overflow. This has been fixed in 1.0.1. |
| 9.8 | 2020-06-22 | CVE-2019-14073 | cve | Copying RTCP messages into the output buffer without checking the destination buffer size which could lead to a remote stack overflow when processing large data or non-standard ... |
| 9.8 | 2020-06-22 | CVE-2020-3614 | cve | Possible buffer overflow while copying the frame to local buffer due to lack of check of length before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, S... |
| 9.8 | 2020-06-22 | CVE-2020-13159 | cve | Artica Proxy before 4.30.000000 Community Edition allows OS command injection via the Netbios name, Server domain name, dhclient_mac, Hostname, or Alias field. NOTE: this may ov... |
| 9.1 | 2020-06-22 | CVE-2020-3658 | cve | Possible null-pointer dereference can occur while parsing mp4 clip with corrupted sample table atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon ... |
| 9.8 | 2020-06-22 | CVE-2020-14983 | cve | The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players value, leading to a buffer overflow. A malicious user can overwrit... |
| 9.8 | 2020-06-22 | CVE-2020-3660 | cve | Possible null-pointer dereference can occur while parsing mp4 clip with corrupted sample table atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon ... |
| 9.8 | 2020-06-22 | CVE-2020-12053 | cve | In Unisys Stealth 3.4.x, 4.x and 5.x before 5.0.026, if certificate-based authorization is used without HTTPS, an endpoint could be authorized without a private key. |
| 9.8 | 2020-06-22 | CVE-2019-14062 | cve | Buffer overflows while decoding setup message from Network due to lack of check of IE message length received from network in Snapdragon Auto, Snapdragon Compute, Snapdragon Con... |
| Page(s) : 1 ... 871 872 873 874 875 876 877 878 879 880 [881] 882 883 884 885 886 887 888 889 890 891 ... | Result(s) : 43550 |
