|
210691
|
7.5 |
HIGH
Network
|
zohocorp
|
manageengine_applications_manager
|
Zoho ManageEngine Applications Manager 14780 and before allows a remote unauthenticated attacker to register managed servers via AAMRequestProcessor servlet.
|
CWE-287
Improper Authentication
|
CVE-2020-10816
|
2024-11-21 13:56 |
2020-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210692
|
7.5 |
HIGH
Network
|
glpi-project
|
glpi
|
In GLPI before version 9.5.0, the encryption algorithm used is insecure. The security of the data encrypted relies on the password used, if a user sets a weak/predictable password, an attacker could …
|
-
|
CVE-2020-11031
|
2024-11-21 13:56 |
2020-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210693
|
7.5 |
HIGH
Network
|
redhat
|
single_sign-on
openshift_application_runtimes
keycloak
|
A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value tha…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2020-10758
|
2024-11-21 13:56 |
2020-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210694
|
5.5 |
MEDIUM
Local
|
linux
debian
|
linux_kernel
debian_linux
|
A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with a local account and the ability to read the /sys/class/zram-control/hot_add file can create ZRAM devic…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2020-10781
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210695
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as…
|
NVD-CWE-noinfo
|
CVE-2020-10768
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210696
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available o…
|
NVD-CWE-noinfo
|
CVE-2020-10767
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210697
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A logic bug flaw was found in Linux kernel before 5.8-rc1 in the implementation of SSBD. A bug in the logic handling allows an attacker with a local account to disable SSBD protection during a contex…
|
NVD-CWE-noinfo
|
CVE-2020-10766
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210698
|
6.0 |
MEDIUM
Local
|
redhat
|
enterprise_linux
|
A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practi…
|
-
|
CVE-2020-10759
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210699
|
4.4 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A stack information leak flaw was found in s390/s390x in the Linux kernel’s memory manager functionality, where it incorrectly writes to the /proc/sys/vm/cmm_timeout file. This flaw allows a local us…
|
NVD-CWE-Other
|
CVE-2020-10773
|
2024-11-21 13:56 |
2020-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210700
|
7.8 |
HIGH
Local
|
qualcomm
|
bitra_firmware
kamorta_firmware
qcs605_firmware
saipan_firmware
sdm710_firmware
sm8250_firmware
sxr2130_firmware
|
u'During the error occurrence in capture request, the buffer is freed and later accessed causing the camera APP to fail due to memory use-after-free' in Snapdragon Consumer IOT, Snapdragon Mobile in …
|
CWE-416
Use After Free
|
CVE-2020-11129
|
2024-11-21 13:56 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
