|
198421
|
6.5 |
MEDIUM
Network
|
ibm
|
db2
|
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5, 11.1, and 11.5 could allow an authenticated attacker to send specially crafted commands to cause a denial of service. IBM X-For…
|
NVD-CWE-noinfo
|
CVE-2020-4200
|
2024-11-21 14:32 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198422
|
6.5 |
MEDIUM
Network
|
ibm
|
db2
|
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 could allow an authenticated attacker to cause a denial of service due to incorrect handling of certain commands. IBM X-Force ID…
|
NVD-CWE-noinfo
|
CVE-2020-4161
|
2024-11-21 14:32 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198423
|
7.5 |
HIGH
Network
|
ibm
netapp
|
db2
oncommand_insight
|
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow an unauthenticated user to send specially crafted packets to cause a denial of service fr…
|
NVD-CWE-noinfo
|
CVE-2020-4135
|
2024-11-21 14:32 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198424
|
7.2 |
HIGH
Network
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0, under specialized conditions, could allow an authenticated user to create a maliciously crafted file name which would be misinterpreted as jsp…
|
NVD-CWE-noinfo
|
CVE-2020-4163
|
2024-11-21 14:32 |
2020-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198425
|
6.1 |
MEDIUM
Network
|
sysjust
|
syuan-gu-da-shin
|
SysJust Syuan-Gu-Da-Shih, versions before 20191223, contain vulnerability of Cross-Site Scripting(XSS), personal information may be leaked to attackers via the vulnerability.
|
CWE-79
Cross-site Scripting
|
CVE-2020-3939
|
2024-11-21 14:32 |
2020-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198426
|
5.5 |
MEDIUM
Local
|
ibm
|
storediq
|
IBM StoredIQ 7.6.0.17 through 7.6.0.20 could disclose sensitive information to a local user due to data in certain directories not being encrypted when it contained symbolic links. IBM X-Force ID: 17…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2020-4224
|
2024-11-21 14:32 |
2020-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198427
|
9.8 |
CRITICAL
Network
|
ibm
|
iot_messagesight
watson_iot_platform_-_message_gateway
|
IBM Watson IoT Message Gateway 2.0.0.x, 5.0.0.0, 5.0.0.1, and 5.0.0.2 is vulnerable to a buffer overflow, caused by improper bounds checking when handling a failed HTTP request with specific content …
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-4207
|
2024-11-21 14:32 |
2020-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198428
|
5.9 |
MEDIUM
Network
|
vmware
|
workspace_one_sdk
workspace_one_web
workspace_one_piv-d_manager
workspace_one_people
workspace_one_notebook
workspace_one_intelligent_hub
workspace_one_boxer
workspace_one_conten…
|
VMware Workspace ONE SDK and dependent mobile application updates address sensitive information disclosure vulnerability.
|
CWE-295
Improper Certificate Validation
|
CVE-2020-3940
|
2024-11-21 14:32 |
2020-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198429
|
7.0 |
HIGH
Local
|
vmware
|
tools
|
The repair operation of VMware Tools for Windows 10.x.y has a race condition which may allow for privilege escalation in the Virtual Machine where Tools is installed. This vulnerability is not presen…
|
CWE-362
Race Condition
|
CVE-2020-3941
|
2024-11-21 14:32 |
2020-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198430
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
|
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious application…
|
NVD-CWE-noinfo
|
CVE-2020-3896
|
2024-11-21 14:31 |
2021-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
