|
209001
|
8.8 |
HIGH
Adjacent
|
juniper
|
junos
|
The DHCPv6 Relay-Agent service, part of the Juniper Enhanced jdhcpd daemon shipped with Juniper Networks Junos OS has an Improper Input Validation vulnerability which will result in a Denial of Servi…
|
CWE-20
Improper Input Validation
|
CVE-2020-1656
|
2024-11-21 14:11 |
2020-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209002
|
9.8 |
CRITICAL
Network
|
facebook
|
hermes
|
A logic vulnerability when handling the SaveGeneratorLong instruction in Facebook Hermes prior to commit b2021df620824627f5a8c96615edbd1eb7fdddfc allows attackers to potentially read out of bounds or…
|
CWE-670
Always-Incorrect Control Flow Implementation
|
CVE-2020-1914
|
2024-11-21 14:11 |
2020-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209003
|
9.8 |
CRITICAL
Network
|
whatsapp
|
whatsapp
whatsapp_business
|
A stack overflow in WhatsApp for Android prior to v2.20.196.16, WhatsApp Business for Android prior to v2.20.196.12, WhatsApp for iOS prior to v2.20.90, WhatsApp Business for iOS prior to v2.20.90, a…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-1907
|
2024-11-21 14:11 |
2020-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209004
|
7.8 |
HIGH
Local
|
whatsapp
|
whatsapp_business
whatsapp
|
A buffer overflow in WhatsApp for Android prior to v2.20.130 and WhatsApp Business for Android prior to v2.20.46 could have allowed an out-of-bounds write when processing malformed local videos with …
|
CWE-787
Out-of-bounds Write
|
CVE-2020-1906
|
2024-11-21 14:11 |
2020-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209005
|
3.3 |
LOW
Local
|
whatsapp
|
whatsapp
|
Media ContentProvider URIs used for opening attachments in other apps were generated sequentially prior to WhatsApp for Android v2.20.185, which could have allowed a malicious third party app chosen …
|
CWE-330
Use of Insufficiently Random Values
|
CVE-2020-1905
|
2024-11-21 14:11 |
2020-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209006
|
5.5 |
MEDIUM
Local
|
whatsapp
|
whatsapp_business
whatsapp
|
A path validation issue in WhatsApp for iOS prior to v2.20.61 and WhatsApp Business for iOS prior to v2.20.61 could have allowed for directory traversal overwriting files when sending specially craft…
|
CWE-22
Path Traversal
|
CVE-2020-1904
|
2024-11-21 14:11 |
2020-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209007
|
5.5 |
MEDIUM
Local
|
whatsapp
|
whatsapp_business
whatsapp
|
An issue when unzipping docx, pptx, and xlsx documents in WhatsApp for iOS prior to v2.20.61 and WhatsApp Business for iOS prior to v2.20.61 could have resulted in an out-of-memory denial of service.…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-1903
|
2024-11-21 14:11 |
2020-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209008
|
7.5 |
HIGH
Network
|
whatsapp
|
whatsapp_business
whatsapp
|
A user running a quick search on a highly forwarded message on WhatsApp for Android from v2.20.108 to v2.20.140 or WhatsApp Business for Android from v2.20.35 to v2.20.49 could have been sent to the …
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2020-1902
|
2024-11-21 14:11 |
2020-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209009
|
5.3 |
MEDIUM
Network
|
whatsapp
|
whatsapp
|
Receiving a large text message containing URLs in WhatsApp for iOS prior to v2.20.91.4 could have caused the application to freeze while processing the message.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-1901
|
2024-11-21 14:11 |
2020-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209010
|
4.9 |
MEDIUM
Network
|
redhat
|
keycloak
|
A flaw was found in all versions of Keycloak before 10.0.0, where the NodeJS adapter did not support the verify-token-audience. This flaw results in some users having access to sensitive information …
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2020-1694
|
2024-11-21 14:11 |
2020-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
