|
199751
|
7.5 |
HIGH
Network
|
zx2c4
|
password-store
|
pass through 1.7.3 has a possibility of using a password for an unintended resource. For exploitation to occur, the user must do a git pull, decrypt a password, and log into a remote service with the…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2020-28086
|
2024-11-21 14:22 |
2020-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199752
|
9.8 |
CRITICAL
Network
|
deepref_project
|
deepref
|
Prototype pollution vulnerability in 'deepref' versions 1.1.1 through 1.2.1 allows attacker to cause a denial of service and may lead to remote code execution.
|
NVD-CWE-noinfo
|
CVE-2020-28274
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199753
|
7.8 |
HIGH
Local
|
apple
fedoraproject
debian
webkitgtk
|
tvos
itunes
iphone_os
watchos
icloud
ipados
safari
macos
fedora
debian_linux
webkitgtk\+
|
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, Safari 14.0.1, tvOS …
|
CWE-416
Use After Free
|
CVE-2020-27918
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199754
|
5.5 |
MEDIUM
Local
|
apple
|
macos
mac_os_x
|
A path handling issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.0.1. A remote attacker may be able to modify the file system.
|
CWE-22
Path Traversal
|
CVE-2020-27896
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199755
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
ipados
macos
watchos
iphone_os
|
A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 12.4.9, watchOS 6.2.9, Security Update 2020-006 High Sierra, Secu…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-27930
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199756
|
5.5 |
MEDIUM
Local
|
apple
|
iphone_os
|
A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4.9. A user may send video in Group FaceTime calls…
|
NVD-CWE-Other
|
CVE-2020-27929
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199757
|
7.8 |
HIGH
Local
|
apple
|
tvos
iphone_os
watchos
ipados
macos
|
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. Processing a maliciously craft…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-27927
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199758
|
7.8 |
HIGH
Local
|
apple
|
iphone_os
ipados
|
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.2 and iPadOS 14.2. Processing maliciously crafted web content may lead to arbitrary code execution.
|
CWE-416
Use After Free
|
CVE-2020-27926
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199759
|
5.5 |
MEDIUM
Local
|
apple
|
iphone_os
ipados
|
An issue existed in the handling of incoming calls. The issue was addressed with additional state checks. This issue is fixed in iOS 14.2 and iPadOS 14.2. A user may answer two calls simultaneously w…
|
NVD-CWE-Other
|
CVE-2020-27925
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199760
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
itunes
icloud
ipados
macos
watchos
iphone_os
|
A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 12.4.9, watchOS 6.2.9, Security Update 2020-006 High Sierra, Security …
|
CWE-843
Type Confusion
|
CVE-2020-27932
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
