|
199911
|
9.8 |
CRITICAL
Network
|
docker
|
adminer
|
The official adminer docker images before 4.7.0-fastcgi contain a blank password for a root user. System using the adminer docker container deployed by affected versions of the docker image may allow…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35186
|
2024-11-21 14:26 |
2020-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199912
|
9.8 |
CRITICAL
Network
|
docker
|
composer_docker_image
|
The official composer docker images before 1.8.3 contain a blank password for a root user. System using the composer docker container deployed by affected versions of the docker image may allow a rem…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35184
|
2024-11-21 14:26 |
2020-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199913
|
9.8 |
CRITICAL
Network
|
kong
|
kong_alpine_docker_image
|
The official kong docker images before 1.0.2-alpine (Alpine specific) contain a blank password for a root user. System using the kong docker container deployed by affected versions of the docker imag…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35189
|
2024-11-21 14:26 |
2020-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199914
|
9.8 |
CRITICAL
Network
|
influxdata
|
telegraf
|
The official telegraf docker images before 1.9.4-alpine (Alpine specific) contain a blank password for a root user. System using the telegraf docker container deployed by affected versions of the doc…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35187
|
2024-11-21 14:26 |
2020-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199915
|
9.8 |
CRITICAL
Network
|
docker
|
ghost_alpine_docker_image
|
The official ghost docker images before 2.16.1-alpine (Alpine specific) contain a blank password for a root user. System using the ghost docker container deployed by affected versions of the docker i…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35185
|
2024-11-21 14:26 |
2020-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199916
|
7.5 |
HIGH
Network
|
irfanview
|
irfanview
|
irfanView 4.56 contains an error processing parsing files of type .pcx. Which leads to out-of-bounds writing at i_view32+0xdb60.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2020-35133
|
2024-11-21 14:26 |
2020-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199917
|
9.8 |
CRITICAL
Network
|
sonarsource
|
sonarqube_docker_image
|
The official sonarqube docker images before alpine (Alpine specific) contain a blank password for a root user. System using the sonarqube docker container deployed by affected versions of the docker …
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-35193
|
2024-11-21 14:26 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199918
|
7.5 |
HIGH
Network
|
keysight
|
keysight_database_connector
|
An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could bypass the access controls for using a saved database connection profile to submi…
|
CWE-89
SQL Injection
|
CVE-2020-35122
|
2024-11-21 14:26 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199919
|
8.8 |
HIGH
Network
|
keysight
|
database_connector
|
An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could insert arbitrary JavaScript into saved macro parameters that would execute when a…
|
NVD-CWE-noinfo
|
CVE-2020-35121
|
2024-11-21 14:26 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199920
|
5.7 |
MEDIUM
Physics
|
logmein
|
lastpass
|
An issue was discovered in the LogMein LastPass Password Manager (aka com.lastpass.ilastpass) app 4.8.11.2403 for iOS. The password authentication for unlocking can be bypassed by forcing the authent…
|
CWE-287
Improper Authentication
|
CVE-2020-35208
|
2024-11-21 14:26 |
2020-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
