|
197881
|
7.4 |
HIGH
Network
|
nodejs
oracle
|
node.js
graalvm
banking_extensibility_workbench
mysql_cluster
blockchain_platform
|
TLS session reuse can lead to host certificate verification bypass in node version < 12.18.0 and < 14.4.0.
|
CWE-295
Improper Certificate Validation
|
CVE-2020-8172
|
2024-11-21 14:38 |
2020-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197882
|
7.1 |
HIGH
Local
|
bitdefender
|
antivirus_2020
|
A vulnerability in the improper handling of symbolic links in Bitdefender Antivirus Free can allow an unprivileged user to substitute a quarantined file, and restore it to a privileged location. This…
|
CWE-59
Link Following
|
CVE-2020-8103
|
2024-11-21 14:38 |
2020-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197883
|
5.5 |
MEDIUM
Local
|
abb
|
device_library_wizard
|
Insecure storage of sensitive information in ABB Device Library Wizard versions 6.0.X, 6.0.3.1 and 6.0.3.2 allows unauthenticated low privilege user to read file that contains confidential data
|
CWE-922
Insecure Storage of Sensitive Information
|
CVE-2020-8482
|
2024-11-21 14:38 |
2020-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197884
|
7.5 |
HIGH
Network
|
lenovo
|
lj4010dn_firmware
lj6700dn_firmware
m8960dnf_firmware
|
A denial of service vulnerability was reported in the firmware prior to version 1.01 used in Lenovo Printer LJ4010DN that could be triggered by a remote user sending a crafted packet to the device, p…
|
NVD-CWE-noinfo
|
CVE-2020-8330
|
2024-11-21 14:38 |
2020-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197885
|
7.5 |
HIGH
Network
|
lenovo
|
lj4010dn_firmware
lj6700dn_firmware
m8960dnf_firmware
|
A denial of service vulnerability was reported in the firmware prior to version 1.01 used in Lenovo Printer LJ4010DN that could be triggered by a remote user sending a crafted packet to the device, c…
|
NVD-CWE-noinfo
|
CVE-2020-8329
|
2024-11-21 14:38 |
2020-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197886
|
9.8 |
CRITICAL
Network
|
ui
|
airos
|
We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the…
|
CWE-78
OS Command
|
CVE-2020-8171
|
2024-11-21 14:38 |
2020-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197887
|
6.1 |
MEDIUM
Network
|
ui
|
airos
|
We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the…
|
CWE-79
Cross-site Scripting
|
CVE-2020-8170
|
2024-11-21 14:38 |
2020-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197888
|
8.8 |
HIGH
Network
|
ui
|
airos
|
We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the…
|
CWE-352
Origin Validation Error
|
CVE-2020-8168
|
2024-11-21 14:38 |
2020-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197889
|
5.3 |
MEDIUM
Network
|
opensuse
debian
|
open_build_service
debian_linux
|
a Improper Access Control vulnerability in of Open Build Service allows remote attackers to read files of an OBS package where the sourceaccess/access is disabled This issue affects: Open Build Servi…
|
-
|
CVE-2020-8021
|
2024-11-21 14:38 |
2020-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197890
|
9.8 |
CRITICAL
Network
|
jenzabar
|
internet_campus_solution
|
Jenzabar JICS (aka Internet Campus Solution) before 9.0.1 Patch 3, 9.1 before 9.1.2 Patch 2, and 9.2 before 9.2.2 Patch 8 has session cookies that are a deterministic function of the username. There …
|
CWE-384
Session Fixation
|
CVE-2020-8434
|
2024-11-21 14:38 |
2020-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
