|
196561
|
7.8 |
HIGH
Local
|
nvidia
canonical
|
quadro_firmware
tesla_firmware
geforce_firmware
nvs_firmware
ubuntu_linux
|
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the Inter Process Communication APIs, in which improper access control may lead to code execution, denial of service, or i…
|
NVD-CWE-noinfo
|
CVE-2020-5963
|
2024-11-21 14:34 |
2020-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196562
|
7.8 |
HIGH
Local
|
nvidia
|
quadro_firmware
geforce_firmware
tesla_firmware
nvs_firmware
|
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component, in which an attacker with local system access can corrupt a system file, which may lea…
|
NVD-CWE-noinfo
|
CVE-2020-5962
|
2024-11-21 14:34 |
2020-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196563
|
8.1 |
HIGH
Network
|
dell
|
powermax_os
emc_unisphere_for_powermax_virtual_appliance
emc_unisphere_for_powermax
|
Dell EMC Unisphere for PowerMax versions prior to 9.1.0.17, Dell EMC Unisphere for PowerMax Virtual Appliance versions prior to 9.1.0.17, and PowerMax OS Release 5978 contain an improper certificate …
|
CWE-295
Improper Certificate Validation
|
CVE-2020-5367
|
2024-11-21 14:34 |
2020-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196564
|
9.8 |
CRITICAL
Network
|
mitsubishielectric
|
melsec_iq-r_firmware
melsec_iq-f_firmware
melsec-q_firmware
melsec-l_firmware
melsec-fx_firmware
|
Mitsubishi Electric MELSEC iQ-R, iQ-F, Q, L, and FX series CPU modules all versions contain a vulnerability that allows cleartext transmission of sensitive information between CPU modules and GX Work…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2020-5594
|
2024-11-21 14:34 |
2020-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196565
|
8.1 |
HIGH
Network
|
ec-cube
|
ec-cube
|
Directory traversal vulnerability in EC-CUBE 3.0.0 to 3.0.18 and 4.0.0 to 4.0.3 allows remote authenticated attackers to delete arbitrary files and/or directories on the server via unspecified vector…
|
CWE-22
Path Traversal
|
CVE-2020-5590
|
2024-11-21 14:34 |
2020-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196566
|
7.8 |
HIGH
Local
|
webroot
|
endpoint_agents
|
Webroot endpoint agents prior to version v9.0.28.48 did not protect the "%PROGRAMDATA%\WrData\PKG" directory against renaming. This could allow attackers to trigger a crash or wait upon Webroot servi…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2020-5755
|
2024-11-21 14:34 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196567
|
9.1 |
CRITICAL
Network
|
webroot
|
endpoint_agents
|
Webroot endpoint agents prior to version v9.0.28.48 allows remote attackers to trigger a type confusion vulnerability over its listening TCP port, resulting in crashing or reading memory contents of …
|
CWE-843
Type Confusion
|
CVE-2020-5754
|
2024-11-21 14:34 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196568
|
8.8 |
HIGH
Network
|
plex
|
media_server
|
Improper Access Control in Plex Media Server prior to June 15, 2020 allows any origin to execute cross-origin application requests.
|
NVD-CWE-noinfo
|
CVE-2020-5742
|
2024-11-21 14:34 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196569
|
8.1 |
HIGH
Network
|
pivotal_software
|
spring_batch
|
When configured to enable default typing, Jackson contained a deserialization vulnerability that could lead to arbitrary code execution. Jackson fixed this vulnerability by blacklisting known "deseri…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2020-5411
|
2024-11-21 14:34 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196570
|
8.8 |
HIGH
Network
|
zenphoto
|
zenphoto
|
Zenphoto versions prior to 1.5.7 allows an attacker to conduct PHP code injection attacks by leading a user to upload a specially crafted .zip file.
|
CWE-94
Code Injection
|
CVE-2020-5593
|
2024-11-21 14:34 |
2020-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
