| Page(s) : 1 ... 889 890 891 892 893 894 895 896 897 898 [899] 900 901 902 903 904 905 906 907 908 909 ... | Result(s) : 43550 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2020-04-27 | CVE-2020-12267 | cve | setMarkdown in Qt before 5.14.2 has a use-after-free related to QTextMarkdownImporter::insertBlock. |
| 9.8 | 2020-04-27 | CVE-2020-12268 | cve | jbig2_image_compose in jbig2_image.c in Artifex jbig2dec before 0.18 has a heap-based buffer overflow. |
| 9.8 | 2020-04-27 | CVE-2018-21153 | cve | Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D7800 before 1.0.1.34, DM200 before 1.0.0.50, EX2700 before 1.0.1.32, EX61... |
| 9.8 | 2020-04-27 | CVE-2020-12271 | cve | A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Firewall devices, as exploited in the wild in April 2020. This affected devices... |
| 9.8 | 2020-04-27 | CVE-2020-12274 | cve | In TestLink 1.9.20, the lib/cfields/cfieldsExport.php goback_url parameter causes a security risk because it depends on client input and is not constrained to lib/cfields/cfield... |
| 9.8 | 2020-04-27 | CVE-2020-12278 | cve | An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. path.c mishandles equivalent filenames that exist because of NTFS Alternate Data Streams. This may allow... |
| 9.8 | 2020-04-27 | CVE-2020-12279 | cve | An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. checkout.c mishandles equivalent filenames that exist because of NTFS short names. This may allow remote... |
| 9.8 | 2020-04-27 | CVE-2020-11817 | cve | In Rukovoditel V2.5.2, attackers can upload an arbitrary file to the server just changing the the content-type value. As a result of that, an attacker can execute a command on t... |
| 9.8 | 2020-04-27 | CVE-2020-7640 | cve | pixl-class prior to 1.0.3 allows execution of arbitrary commands. The members argument of the create function can be controlled by users without any sanitization. |
| 9.8 | 2020-04-27 | CVE-2018-21097 | cve | Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects WAC505 before 5.0.5.4, WAC510 before 5.0.5.4, WAC120 before 2.... |
| 9.8 | 2020-04-26 | CVE-2020-12265 | cve | The decompress package before 4.2.1 for Node.js is vulnerable to Arbitrary File Write via ../ in an archive member, when a symlink is used, because of Directory Traversal. |
| 9.8 | 2020-04-25 | DSA-4663 | Debian | python-reportlab security update |
| 9.8 | 2020-04-24 | CVE-2020-5868 | cve | In BIG-IQ 6.0.0-7.0.0, a remote access vulnerability has been discovered that may allow a remote user to execute shell commands on affected systems using HTTP requests to the BI... |
| 9.1 | 2020-04-24 | CVE-2020-5869 | cve | In BIG-IQ 5.2.0-7.0.0, high availability (HA) synchronization is not secure by TLS and may allow on-path attackers to read / modify confidential data in transit. |
| 9 | 2020-04-24 | CVE-2020-7131 | cve | This document describes a security vulnerability in Blade Maintenance Entity, Integrated Maintenance Entity and Maintenance Entity products. All J/H-series NonStop systems have ... |
| 9.8 | 2020-04-24 | CVE-2020-7133 | cve | A unauthorized remote access vulnerability was discovered in HPE IOT + GCP version(s): 1.4.0, 1.4.1, 1.4.2, 1.2.4.2. |
| 9.8 | 2020-04-24 | CVE-2020-6826 | cve | Mozilla developers Tyson Smith, Bob Clary, and Alexandru Michis reported memory safety bugs present in Firefox 74. Some of these bugs showed evidence of memory corruption and we... |
| 9.8 | 2020-04-24 | CVE-2020-6823 | cve | A malicious extension could have called browser.identity.launchWebAuthFlow, controlling the redirect_uri, and through the Promise returned, obtain the Auth code and gain access ... |
| 9.8 | 2020-04-24 | CVE-2020-6825 | cve | Mozilla developers and community members Tyson Smith and Christian Holler reported memory safety bugs present in Firefox 74 and Firefox ESR 68.6. Some of these bugs showed evide... |
| 9.8 | 2020-04-24 | CVE-2020-12134 | cve | Nanometrics Centaur through 4.3.23 and TitanSMA through 4.2.20 mishandle access control for the syslog log. |
| Page(s) : 1 ... 889 890 891 892 893 894 895 896 897 898 [899] 900 901 902 903 904 905 906 907 908 909 ... | Result(s) : 43550 |
