|
211001
|
4.4 |
MEDIUM
Local
|
google
|
android
|
In setErrorPlaybackState of BluetoothMediaBrowserService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with System execut…
|
NVD-CWE-noinfo
|
CVE-2020-27023
|
2024-11-21 14:20 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211002
|
4.4 |
MEDIUM
Local
|
google
|
android
|
In avrc_ctrl_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-27021
|
2024-11-21 14:20 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211003
|
8.1 |
HIGH
Network
|
medtronic
|
mycarelink_smart_model_25000_firmware
|
Medtronic MyCareLink Smart 25000 all versions are vulnerable to a race condition in the MCL Smart Patient Reader software update system, which allows unsigned firmware to be uploaded and executed on …
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2020-27252
|
2024-11-21 14:20 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211004
|
9.9 |
CRITICAL
Network
|
cisco
|
jabber
jabber_for_mobile_platforms
|
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) w…
|
CWE-200
Information Exposure
|
CVE-2020-27134
|
2024-11-21 14:20 |
2020-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211005
|
9.9 |
CRITICAL
Network
|
cisco
|
jabber
jabber_for_mobile_platforms
|
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) w…
|
CWE-269
Improper Privilege Management
|
CVE-2020-27133
|
2024-11-21 14:20 |
2020-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211006
|
9.9 |
CRITICAL
Network
|
cisco
|
jabber
jabber_for_mobile_platforms
|
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) w…
|
CWE-269
Improper Privilege Management
|
CVE-2020-27132
|
2024-11-21 14:20 |
2020-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211007
|
9.9 |
CRITICAL
Network
|
cisco
|
jabber
jabber_for_mobile_platforms
|
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) w…
|
CWE-269
Improper Privilege Management
|
CVE-2020-27127
|
2024-11-21 14:20 |
2020-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211008
|
9.1 |
CRITICAL
Network
|
sap
|
solution_manager
|
SAP Solution Manager 7.2 (User Experience Monitoring), version - 7.2, allows an authenticated user to upload a malicious script that can exploit an existing path traversal vulnerability to compromise…
|
CWE-22
Path Traversal
|
CVE-2020-26837
|
2024-11-21 14:20 |
2020-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211009
|
6.1 |
MEDIUM
Network
|
sap
|
solution_manager
|
SAP Solution Manager (Trace Analysis), version - 720, allows for misuse of a parameter in the application URL leading to Open Redirect vulnerability, an attacker can enter a link to malicious site wh…
|
CWE-601
Open Redirect
|
CVE-2020-26836
|
2024-11-21 14:20 |
2020-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211010
|
9.1 |
CRITICAL
Network
|
sap
|
bw\/4hana
business_warehouse
|
SAP Business Warehouse, versions - 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 782, and SAP BW4HANA, versions - 100, 200 allows an attacker authenticated with (high) developer privileges t…
|
CWE-78
OS Command
|
CVE-2020-26838
|
2024-11-21 14:20 |
2020-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
