|
197651
|
6.1 |
MEDIUM
Network
|
nitori
|
nitori
|
NITORI App for Android versions 6.0.4 and earlier and NITORI App for iOS versions 6.0.2 and earlier allow remote attackers to lead a user to access an arbitrary website via the vulnerable App. As a r…
|
CWE-601
Open Redirect
|
CVE-2020-5623
|
2024-11-21 14:34 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197652
|
4.3 |
MEDIUM
Network
|
netgear
|
gs716tv2_firmware
gs724tv3_firmware
|
Cross-site request forgery (CSRF) vulnerability in NETGEAR switching hubs (GS716Tv2 Firmware version 5.4.2.30 and earlier, and GS724Tv3 Firmware version 5.4.2.30 and earlier) allow remote attackers t…
|
CWE-352
Origin Validation Error
|
CVE-2020-5621
|
2024-11-21 14:34 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197653
|
5.3 |
MEDIUM
Network
|
dell
|
emc_powerscale_onefs
emc_isilon
|
Dell EMC Isilon OneFS version 8.2.2 and Dell EMC PowerScale OneFS version 9.0.0 contains a buffer overflow vulnerability in the Likewise component. A remote unauthenticated malicious attacker may pot…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2020-5383
|
2024-11-21 14:34 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197654
|
3.1 |
LOW
Local
|
f5
|
big-ip_application_security_manager
|
In versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.6, 13.1.0-13.1.3.4, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, BIG-IP ASM Configuration utility CSRF protection token can be reused multiple tim…
|
CWE-352
Origin Validation Error
|
CVE-2020-5928
|
2024-11-21 14:34 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197655
|
6.1 |
MEDIUM
Network
|
f5
|
big-ip_application_security_manager
|
In versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, and 14.1.0-14.1.2.6, BIG-IP ASM Configuration utility Stored-Cross Site Scripting.
|
CWE-79
Cross-site Scripting
|
CVE-2020-5927
|
2024-11-21 14:34 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197656
|
5.3 |
MEDIUM
Network
|
f5
|
big-ip_access_policy_manager
|
In BIG-IP APM versions 12.1.0-12.1.5.1 and 11.6.1-11.6.5.2, RADIUS authentication leaks memory when the username for authentication is not set.
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2020-5924
|
2024-11-21 14:34 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197657
|
4.3 |
MEDIUM
Network
|
f5
|
big-ip_advanced_firewall_manager
|
In versions 15.0.0-15.1.0.5, 14.1.0-14.1.2.7, 13.1.0-13.1.3.4, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, a vulnerability in the BIG-IP AFM Configuration utility may allow any authenticated BIG-IP user to…
|
CWE-89
SQL Injection
|
CVE-2020-5920
|
2024-11-21 14:34 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197658
|
7.5 |
HIGH
Network
|
f5
|
big-ip_access_policy_manager
|
In versions 15.1.0-15.1.0.4, rendering of certain session variables by BIG-IP APM UI-based agents in an access profile configured with Modern customization, may cause the Traffic Management Microkern…
|
NVD-CWE-noinfo
|
CVE-2020-5919
|
2024-11-21 14:34 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197659
|
7.5 |
HIGH
Network
|
f5
|
big-ip_application_security_manager
|
In BIG-IP ASM versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, undisclosed server cookie scenario may cause BD to restart under some …
|
NVD-CWE-noinfo
|
CVE-2020-5914
|
2024-11-21 14:34 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197660
|
7.5 |
HIGH
Network
|
f5
|
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_security_manager
big-ip_domain_name_system
big-ip_fraud_protection_service<…
|
In BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, and 14.1.0-14.1.2.6, a BIG-IP virtual server with a Session Initiation Protocol (SIP) ALG profile, parsing SIP messages that contain a multi-part …
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2020-5926
|
2024-11-21 14:34 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
