| Page(s) : 1 ... 884 885 886 887 888 889 890 891 892 893 [894] 895 896 897 898 899 900 901 902 903 904 ... | Result(s) : 43550 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2020-05-13 | CVE-2020-9502 | cve | Some Dahua products with Build time before December 2019 have Session ID predictable vulnerabilities. During normal user access, an attacker can use the predicted Session ID to ... |
| 9.8 | 2020-05-13 | CVE-2019-15880 | cve | In FreeBSD 12.1-STABLE before r356911, and 12.1-RELEASE before p5, insufficient checking in the cryptodev module allocated the size of a kernel buffer based on a user-supplied l... |
| 9.8 | 2020-05-13 | CVE-2020-2001 | cve | An external control of path and data vulnerability in the Palo Alto Networks PAN-OS Panorama XSLT processing logic that allows an unauthenticated user with network access to PAN... |
| 9.8 | 2020-05-12 | CVE-2020-1939 | cve | The Apache NuttX (Incubating) project provides an optional separate "apps" repository which contains various optional components and example programs. One of these, ftpd, had a ... |
| 9.8 | 2020-05-12 | CVE-2020-8159 | cve | There is a vulnerability in actionpack_page-caching gem < v1.2.1 that allows an attacker to write arbitrary files to a web server, potentially resulting in remote code execution... |
| 9.9 | 2020-05-12 | GLSA-202005-02 | Gentoo | QEMU: Multiple vulnerabilities |
| 9.8 | 2020-05-12 | GLSA-202005-05 | Gentoo | Squid: Multiple vulnerabilities |
| 9.8 | 2020-05-12 | CVE-2020-6242 | cve | SAP Business Objects Business Intelligence Platform (Live Data Connect), versions 1.0, 2.0, 2.1, 2.2, 2.3, allows an attacker to logon on the Central Management Console without ... |
| 9.8 | 2020-05-12 | CVE-2020-12823 | cve | OpenConnect 8.09 has a buffer overflow, causing a denial of service (application crash) or possibly unspecified other impact, via crafted certificate data to get_cert_name in gn... |
| 9.8 | 2020-05-11 | CVE-2020-10022 | cve | A malformed JSON payload that is received from an UpdateHub server may trigger memory corruption in the Zephyr OS. This could result in a denial of service in the best case, or ... |
| 9.8 | 2020-05-11 | CVE-2020-12753 | cve | An issue was discovered on LG mobile devices with Android OS 7.2, 8.0, 8.1, 9, and 10 software. Arbitrary code execution can occur via the bootloader because of an EL1/EL3 coldb... |
| 9.8 | 2020-05-11 | CVE-2020-12747 | cve | An issue was discovered on Samsung mobile devices with Q(10.0) (Exynos980 9630 and Exynos990 9830 chipsets) software. The Bootloader has a heap-based buffer overflow because of ... |
| 9.8 | 2020-05-11 | CVE-2020-12746 | cve | An issue was discovered on Samsung mobile devices with O(8.X), P(9.0), and Q(10.0) (Exynos chipsets) software. Attackers can bypass the Secure Bootloader protection mechanism vi... |
| 9.8 | 2020-05-11 | CVE-2018-1285 | cve | Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accep... |
| 9.8 | 2020-05-11 | CVE-2020-12743 | cve | An issue was discovered in Gazie 7.32. A successful installation does not remove or block (or in any other way prevent use of) its own file /setup/install/setup.php, meaning tha... |
| 9.8 | 2020-05-09 | CVE-2020-12766 | cve | Gnuteca 3.8 allows action=main:search:simpleSearch SQL Injection via the exemplaryStatusId parameter. |
| 9.8 | 2020-05-09 | CVE-2020-12637 | cve | Zulip Desktop before 5.2.0 has Missing SSL Certificate Validation because all validation was inadvertently disabled during an attempt to recognize the ignoreCerts option. |
| 9.1 | 2020-05-09 | CVE-2020-12761 | cve | modules/loaders/loader_ico.c in imlib2 1.6.0 has an integer overflow (with resultant invalid memory allocations and out-of-bounds reads) via an icon with many colors in its colo... |
| 9.8 | 2020-05-08 | CVE-2020-12022 | cve | Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an attacker to inject specially crafted input into... |
| 9.8 | 2020-05-08 | CVE-2020-12002 | cve | Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple stack-based buffer overflow vulnerabilities exist caused by a lack of proper validation of the length ... |
| Page(s) : 1 ... 884 885 886 887 888 889 890 891 892 893 [894] 895 896 897 898 899 900 901 902 903 904 ... | Result(s) : 43550 |
