|
212111
|
7.8 |
HIGH
Local
|
qualcomm
|
agatti_firmware
apq8009_firmware
bitra_firmware
ipq4019_firmware
ipq5018_firmware
ipq6018_firmware
ipq8064_firmware
ipq8074_firmware
kamorta_firmware
mdm9150_firmware
md…
|
u'Out of bound access can happen in MHI command process due to lack of check of channel id value received from MHI devices' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-11125
|
2024-11-21 13:56 |
2020-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212112
|
7.5 |
HIGH
Network
|
zohocorp
|
manageengine_applications_manager
|
Zoho ManageEngine Applications Manager 14780 and before allows a remote unauthenticated attacker to register managed servers via AAMRequestProcessor servlet.
|
CWE-287
Improper Authentication
|
CVE-2020-10816
|
2024-11-21 13:56 |
2020-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212113
|
7.5 |
HIGH
Network
|
glpi-project
|
glpi
|
In GLPI before version 9.5.0, the encryption algorithm used is insecure. The security of the data encrypted relies on the password used, if a user sets a weak/predictable password, an attacker could …
|
-
|
CVE-2020-11031
|
2024-11-21 13:56 |
2020-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212114
|
7.5 |
HIGH
Network
|
redhat
|
single_sign-on
openshift_application_runtimes
keycloak
|
A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value tha…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2020-10758
|
2024-11-21 13:56 |
2020-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212115
|
5.5 |
MEDIUM
Local
|
linux
debian
|
linux_kernel
debian_linux
|
A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with a local account and the ability to read the /sys/class/zram-control/hot_add file can create ZRAM devic…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2020-10781
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212116
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as…
|
NVD-CWE-noinfo
|
CVE-2020-10768
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212117
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available o…
|
NVD-CWE-noinfo
|
CVE-2020-10767
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212118
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A logic bug flaw was found in Linux kernel before 5.8-rc1 in the implementation of SSBD. A bug in the logic handling allows an attacker with a local account to disable SSBD protection during a contex…
|
NVD-CWE-noinfo
|
CVE-2020-10766
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212119
|
6.0 |
MEDIUM
Local
|
redhat
|
enterprise_linux
|
A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practi…
|
-
|
CVE-2020-10759
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212120
|
4.4 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A stack information leak flaw was found in s390/s390x in the Linux kernel’s memory manager functionality, where it incorrectly writes to the /proc/sys/vm/cmm_timeout file. This flaw allows a local us…
|
NVD-CWE-Other
|
CVE-2020-10773
|
2024-11-21 13:56 |
2020-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
