|
196811
|
9.8 |
CRITICAL
Network
|
apache
qos
|
chainsaw
log4j
reload4j
|
A deserialization flaw was found in Apache Chainsaw versions prior to 2.1.0 which could lead to malicious code execution.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2020-9493
|
2024-11-21 14:40 |
2021-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196812
|
7.8 |
HIGH
Local
|
acronis
|
true_image_2020
|
An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe exposes a REST API that can be used by everyone, even unprivileged users. This API is used to communicate fr…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-9450
|
2024-11-21 14:40 |
2021-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196813
|
7.8 |
HIGH
Local
|
acronis
|
true_image_2020
|
An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe includes functionality to quarantine files by copying a suspected ransomware file from one directory to anot…
|
CWE-59
Link Following
|
CVE-2020-9452
|
2024-11-21 14:40 |
2021-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196814
|
5.5 |
MEDIUM
Local
|
acronis
|
true_image_2020
|
An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe keeps a log in a folder where unprivileged users have write permissions. The logs are generated in a predict…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-9451
|
2024-11-21 14:40 |
2021-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196815
|
5.5 |
MEDIUM
Local
|
huawei
|
magic_ui
emui
|
An application error verification vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to modify and delete user SMS messages.
|
NVD-CWE-noinfo
|
CVE-2020-9149
|
2024-11-21 14:40 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196816
|
5.5 |
MEDIUM
Local
|
huawei
|
magic_ui
emui
|
An application bypass mechanism vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to delete user SMS messages.
|
NVD-CWE-noinfo
|
CVE-2020-9148
|
2024-11-21 14:40 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196817
|
7.8 |
HIGH
Local
|
huawei
|
magic_ui
emui
|
A memory buffer error vulnerability exists in a component interface of Huawei Smartphone. Local attackers may exploit this vulnerability by carefully constructing attack scenarios to cause out-of-bou…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-9147
|
2024-11-21 14:40 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196818
|
5.5 |
MEDIUM
Local
|
huawei
|
magic_ui
emui
|
A memory buffer error vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to cause memory leakage and doS attacks by carefully construct…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2020-9146
|
2024-11-21 14:40 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196819
|
6.5 |
MEDIUM
Network
|
huawei
|
usg9500_firmware
|
There is a vulnerability in some version of USG9500 that the device improperly handles the information when a user logs in to device. The attacker can exploit the vulnerability to perform some operat…
|
NVD-CWE-noinfo
|
CVE-2020-9212
|
2024-11-21 14:40 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196820
|
6.7 |
MEDIUM
Local
|
huawei
|
eudc660_firmware
|
The eUDC660 product has a resource management vulnerability. An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper …
|
NVD-CWE-noinfo
|
CVE-2020-9206
|
2024-11-21 14:40 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
