|
214431
|
6.1 |
MEDIUM
Network
|
gitlab
|
gitlab
|
Client-Side code injection through Mermaid markup in GitLab CE/EE 12.9 and later through 13.0.1 allows a specially crafted Mermaid payload to PUT requests on behalf of other users via clicking on a l…
|
CWE-74
Injection
|
CVE-2020-13262
|
2024-11-21 14:00 |
2020-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214432
|
6.5 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5
|
CWE-863
Incorrect Authorization
|
CVE-2020-13277
|
2024-11-21 14:00 |
2020-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214433
|
7.5 |
HIGH
Network
|
arm
|
mbed-coap
|
Memory leaks were discovered in the CoAP library in Arm Mbed OS 5.15.3 when using the Arm mbed-coap library 5.1.5. The CoAP parser is responsible for parsing received CoAP packets. The function sn_co…
|
CWE-190
CWE-401
Integer Overflow or Wraparound
Missing Release of Memory after Effective Lifetime
|
CVE-2020-12887
|
2024-11-21 14:00 |
2020-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214434
|
9.1 |
CRITICAL
Network
|
arm
|
mbed_os
|
A buffer over-read was discovered in the CoAP library in Arm Mbed OS 5.15.3. The CoAP parser is responsible for parsing received CoAP packets. The function sn_coap_parser_options_parse() parses the C…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-12886
|
2024-11-21 14:00 |
2020-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214435
|
7.5 |
HIGH
Network
|
arm
|
mbed_os
|
An infinite loop was discovered in the CoAP library in Arm Mbed OS 5.15.3. The CoAP parser is responsible for parsing received CoAP packets. The function sn_coap_parser_options_parse_multiple_options…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2020-12885
|
2024-11-21 14:00 |
2020-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214436
|
9.1 |
CRITICAL
Network
|
arm
|
mbed_os
|
A buffer over-read was discovered in the CoAP library in Arm Mbed OS 5.15.3. The CoAP parser is responsible for parsing received CoAP packets. The function sn_coap_parser_options_parse_multiple_optio…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-12884
|
2024-11-21 14:00 |
2020-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214437
|
9.1 |
CRITICAL
Network
|
arm
|
mbed_os
|
Buffer over-reads were discovered in the CoAP library in Arm Mbed OS 5.15.3. The CoAP parser is responsible for parsing received CoAP packets. The function sn_coap_parser_options_parse() parses CoAP …
|
CWE-125
Out-of-bounds Read
|
CVE-2020-12883
|
2024-11-21 14:00 |
2020-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214438
|
7.2 |
HIGH
Network
|
mjml
|
mjml
|
MJML prior to 4.6.3 contains a path traversal vulnerability when processing the mj-include directive within an MJML document.
|
CWE-22
Path Traversal
|
CVE-2020-12827
|
2024-11-21 14:00 |
2020-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214439
|
8.8 |
HIGH
Network
|
tp-link
|
nc200_firmware
nc210_firmware
nc220_firmware
nc230_firmware
nc250_firmware
nc260_firmware
nc450_firmware
|
TP-LINK NC200 devices through 2.1.10 build 200401, NC210 devices through 1.0.10 build 200401, NC220 devices through 1.3.1 build 200401, NC230 devices through 1.3.1 build 200401, NC250 devices through…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-13224
|
2024-11-21 14:00 |
2020-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214440
|
7.0 |
HIGH
Local
|
pulsesecure
|
pulse_secure_desktop_client
pulse_secure_installer_service
|
A time-of-check time-of-use vulnerability in PulseSecureService.exe in Pulse Secure Client versions prior to 9.1.6 down to 5.3 R70 for Windows (which runs as NT AUTHORITY/SYSTEM) allows unprivileged …
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2020-13162
|
2024-11-21 14:00 |
2020-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
