|
201621
|
9.8 |
CRITICAL
Network
|
ibm
|
spectrum_protect
|
IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system. By using a specially crafted HTTP command, an attacker could exploit this vulnerabil…
|
CWE-20
Improper Input Validation
|
CVE-2020-4212
|
2024-11-21 14:32 |
2020-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201622
|
9.8 |
CRITICAL
Network
|
ibm
|
spectrum_protect
|
IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system. By using a specially crafted HTTP command, an attacker could exploit this vulnerabil…
|
CWE-78
OS Command
|
CVE-2020-4211
|
2024-11-21 14:32 |
2020-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201623
|
9.8 |
CRITICAL
Network
|
ibm
|
spectrum_protect
|
IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system. By using a specially crafted HTTP command, an attacker could exploit this vulnerabil…
|
CWE-78
OS Command
|
CVE-2020-4210
|
2024-11-21 14:32 |
2020-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201624
|
7.5 |
HIGH
Network
|
vmware
|
vrealize_operations
|
vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1) contains an information disclosure vulnerability due to incorrect pairing implementation between the vRealize O…
|
NVD-CWE-noinfo
|
CVE-2020-3945
|
2024-11-21 14:32 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201625
|
8.6 |
HIGH
Network
|
vmware
|
vrealize_operations
|
vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1) has an improper trust store configuration leading to authentication bypass. An unauthenticated remote attacker …
|
CWE-287
Improper Authentication
|
CVE-2020-3944
|
2024-11-21 14:32 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201626
|
9.8 |
CRITICAL
Network
|
vmware
|
vrealize_operations
|
vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1) uses a JMX RMI service which is not securely configured. An unauthenticated remote attacker who has network acc…
|
NVD-CWE-noinfo
|
CVE-2020-3943
|
2024-11-21 14:32 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201627
|
6.7 |
MEDIUM
Local
|
ibm
|
db2
|
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 and 11.5 is vulnerable to an escalation of privilege when an authenticated local attacker with special permissions executes spec…
|
NVD-CWE-noinfo
|
CVE-2020-4230
|
2024-11-21 14:32 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201628
|
7.8 |
HIGH
Local
|
ibm
|
db2
|
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local atta…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-4204
|
2024-11-21 14:32 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201629
|
6.5 |
MEDIUM
Network
|
ibm
|
db2
|
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5, 11.1, and 11.5 could allow an authenticated attacker to send specially crafted commands to cause a denial of service. IBM X-For…
|
NVD-CWE-noinfo
|
CVE-2020-4200
|
2024-11-21 14:32 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201630
|
6.5 |
MEDIUM
Network
|
ibm
|
db2
|
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 could allow an authenticated attacker to cause a denial of service due to incorrect handling of certain commands. IBM X-Force ID…
|
NVD-CWE-noinfo
|
CVE-2020-4161
|
2024-11-21 14:32 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
