|
211011
|
7.8 |
HIGH
Local
|
paloaltonetworks
|
secdo
|
Incorrect Default Permissions on C:\Programdata\Secdo\Logs folder in Secdo allows local authenticated users to overwrite system files and gain escalated privileges. This issue affects all versions Se…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-1985
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211012
|
6.8 |
MEDIUM
Network
|
redhat
linuxfoundation
fedoraproject
|
openshift
ceph_storage
openstack
ceph
fedora
|
A vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Container Storage 4.2 where, A nonce reuse vulnerability was discovered in the secure mode of the messenger v2 protocol, whic…
|
-
|
CVE-2020-1759
|
2024-11-21 14:11 |
2020-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211013
|
7.8 |
HIGH
Local
|
paloaltonetworks
|
secdo
|
Secdo tries to execute a script at a hardcoded path if present, which allows a local authenticated user with 'create folders or append data' access to the root of the OS disk (C:\) to gain system pri…
|
CWE-20
Improper Input Validation
|
CVE-2020-1984
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211014
|
4.6 |
MEDIUM
Physics
|
huawei
|
osca-550_firmware
osca-550a_firmware
osca-550ax_firmware
osca-550x_firmware
|
There is an insufficient integrity validation vulnerability in several products. The device does not sufficiently validate the integrity of certain file in certain loading processes, successful explo…
|
CWE-354
Improper Validation of Integrity Check Value
|
CVE-2020-1802
|
2024-11-21 14:11 |
2020-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211015
|
6.5 |
MEDIUM
Adjacent
|
juniper
|
junos
|
Due to a new NDP proxy feature for EVPN leaf nodes introduced in Junos OS 17.4, crafted NDPv6 packets could transit a Junos device configured as a Broadband Network Gateway (BNG) and reach the EVPN l…
|
NVD-CWE-noinfo
|
CVE-2020-1633
|
2024-11-21 14:11 |
2020-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211016
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
When an attacker sends a specific crafted Ethernet Operation, Administration, and Maintenance (Ethernet OAM) packet to a target device, it may improperly handle the incoming malformed data and fail t…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2020-1639
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211017
|
7.5 |
HIGH
Network
|
juniper
|
junos
junos_os_evolved
|
The FPC (Flexible PIC Concentrator) of Juniper Networks Junos OS and Junos OS Evolved may restart after processing a specific IPv4 packet. Only packets destined to the device itself, successfully rea…
|
NVD-CWE-noinfo
|
CVE-2020-1638
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211018
|
6.5 |
MEDIUM
Network
|
juniper
|
junos
|
A vulnerability in Juniper Networks SRX Series device configured as a Junos OS Enforcer device may allow a user to access network resources that are not permitted by a UAC policy. This issue might oc…
|
CWE-287
Improper Authentication
|
CVE-2020-1637
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211019
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
On High-End SRX Series devices, in specific configurations and when specific networking events or operator actions occur, an SPC receiving genuine multicast traffic may core. Subsequently, all FPCs i…
|
NVD-CWE-noinfo
|
CVE-2020-1634
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211020
|
5.5 |
MEDIUM
Local
|
juniper
|
junos
|
A privilege escalation vulnerability in Juniper Networks Junos OS devices configured with dual Routing Engines (RE), Virtual Chassis (VC) or high-availability cluster may allow a local authenticated …
|
NVD-CWE-noinfo
|
CVE-2020-1630
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
