|
210151
|
9.8 |
CRITICAL
Network
|
advantech
|
webaccess
|
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple heap-based buffer overflow vulnerabilities exist caused by a lack of proper validation of the length of user-supplied data, …
|
CWE-787
Out-of-bounds Write
|
CVE-2020-10638
|
2024-11-21 13:55 |
2020-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210152
|
7.5 |
HIGH
Network
|
samba
fedoraproject
opensuse
debian
|
samba
fedora
leap
debian_linux
|
A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests as an Active Directory Domain Controller LDAP server, an unauthorized user ca…
|
CWE-674
Uncontrolled Recursion
|
CVE-2020-10704
|
2024-11-21 13:55 |
2020-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210153
|
5.3 |
MEDIUM
Network
|
redhat
ibm
quarkus
oracle
|
hibernate_validator
websphere_application_server
jboss_enterprise_application_platform
satellite_capsule
satellite
quarkus
weblogic_server
|
A flaw was found in Hibernate Validator version 6.1.2.Final. A bug in the message interpolation processor enables invalid EL expressions to be evaluated as if they were valid. This flaw allows attack…
|
-
|
CVE-2020-10693
|
2024-11-21 13:55 |
2020-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210154
|
9.1 |
CRITICAL
Network
|
sae-it
|
net-line_fw-50_firmware
|
SAE IT-systems FW-50 Remote Telemetry Unit (RTU). A specially crafted request could allow an attacker to view the file structure of the affected device and access files that should be inaccessible.
|
CWE-22
Path Traversal
|
CVE-2020-10634
|
2024-11-21 13:55 |
2020-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210155
|
6.1 |
MEDIUM
Network
|
sae-it
|
net-line_fw-50_firmware
|
SAE IT-systems FW-50 Remote Telemetry Unit (RTU). The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in the output used as a webpage that is serve…
|
CWE-79
Cross-site Scripting
|
CVE-2020-10630
|
2024-11-21 13:55 |
2020-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210156
|
6.5 |
MEDIUM
Local
|
qemu
|
qemu
|
A potential DoS flaw was found in the virtio-fs shared file system daemon (virtiofsd) implementation of the QEMU version >= v5.0. Virtio-fs is meant to share a host file system directory with a guest…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2020-10717
|
2024-11-21 13:55 |
2020-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210157
|
5.3 |
MEDIUM
Network
|
samba
fedoraproject
opensuse
|
samba
fedora
leap
|
A use-after-free flaw was found in the way samba AD DC LDAP servers, handled 'Paged Results' control is combined with the 'ASQ' control. A malicious user in a samba AD could use this flaw to cause de…
|
CWE-416
Use After Free
|
CVE-2020-10700
|
2024-11-21 13:55 |
2020-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210158
|
4.7 |
MEDIUM
Network
|
redhat
|
keycloak
|
A flaw was found in Keycloak version 8.0.2 and 9.0.0, and was fixed in Keycloak version 9.0.1, where a malicious user registers as oneself. The attacker could then use the remove devices form to post…
|
NVD-CWE-Other
|
CVE-2020-10686
|
2024-11-21 13:55 |
2020-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210159
|
7.8 |
HIGH
Local
|
lcds
|
laquis_scada
|
LCDS LAquis SCADA Versions 4.3.1 and prior. The affected product is vulnerable to arbitrary file creation by unauthorized users
|
NVD-CWE-noinfo
|
CVE-2020-10622
|
2024-11-21 13:55 |
2020-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210160
|
5.5 |
MEDIUM
Local
|
lcds
|
laquis_scada
|
LCDS LAquis SCADA Versions 4.3.1 and prior. The affected product is vulnerable to sensitive information exposure by unauthorized users.
|
CWE-200
Information Exposure
|
CVE-2020-10618
|
2024-11-21 13:55 |
2020-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
