|
211291
|
5.5 |
MEDIUM
Local
|
bitdefender
|
hypervisor_introspection
|
Memory corruption in IntLixCrashDumpDmesg, IntLixTaskFetchCmdLine, IntLixFileReadDentry and IntLixFileGetPath due to insufficient guest-data input validation may lead to denial of service conditions.
|
CWE-20
Improper Input Validation
|
CVE-2020-15293
|
2024-11-21 14:05 |
2020-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211292
|
5.5 |
MEDIUM
Local
|
bitdefender
|
hypervisor_introspection
|
Lack of validation on data read from guest memory in IntPeGetDirectory, IntPeParseUnwindData, IntLogExceptionRecord, IntKsymExpandSymbol and IntLixTaskDumpTree may lead to out-of-bounds read or it co…
|
CWE-20
Improper Input Validation
|
CVE-2020-15292
|
2024-11-21 14:05 |
2020-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211293
|
4.3 |
MEDIUM
Network
|
broadcom
|
fabric_operating_system
|
Brocade Fabric OS versions before v9.0.0 and after version v8.1.0, configured in Virtual Fabric mode contain a weakness in the ldap implementation that could allow a remote ldap user to login in the …
|
NVD-CWE-noinfo
|
CVE-2020-15376
|
2024-11-21 14:05 |
2020-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211294
|
6.7 |
MEDIUM
Local
|
broadcom
|
fabric_operating_system
|
Brocade Fabric OS versions before v9.0.0, v8.2.2c, v8.2.1e, v8.1.2k, v8.2.0_CBN3, v7.4.2g contain an improper input validation weakness in the command line interface when secccrypptocfg is invoked. T…
|
CWE-20
Improper Input Validation
|
CVE-2020-15375
|
2024-11-21 14:05 |
2020-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211295
|
9.8 |
CRITICAL
Network
|
askey
|
ap5100w_firmware
|
Network Analysis functionality in Askey AP5100W_Dual_SIG_1.01.097 and all prior versions allows remote attackers to execute arbitrary commands via a shell metacharacter in the ping, traceroute, or ro…
|
CWE-78
OS Command
|
CVE-2020-15357
|
2024-11-21 14:05 |
2020-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211296
|
5.2 |
MEDIUM
Local
|
linuxfoundation
fedoraproject
debian
|
containerd
fedora
debian_linux
|
containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows. In containerd before versions 1.3.9 and 1.4.3, the containerd-shim API is improperly exposed t…
|
-
|
CVE-2020-15257
|
2024-11-21 14:05 |
2020-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211297
|
4.4 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The Linux kernel before version 5.8 is vulnerable to a NULL pointer dereference in drivers/tty/serial/8250/8250_core.c:serial8250_isa_init_ports() that allows local users to cause a denial of service…
|
CWE-476
NULL Pointer Dereference
|
CVE-2020-15437
|
2024-11-21 14:05 |
2020-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211298
|
6.7 |
MEDIUM
Local
|
linux
broadcom
netapp
|
linux_kernel
brocade_fabric_operating_system_firmware
cloud_backup
solidfire_\&_hci_management_node
solidfire_baseboard_management_controller_firmware
h410c_firmware
h610c_firmw…
|
Use-after-free vulnerability in fs/block_dev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a denial of service by leveraging improper access to a certain error field.
|
CWE-416
Use After Free
|
CVE-2020-15436
|
2024-11-21 14:05 |
2020-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211299
|
5.4 |
MEDIUM
Network
|
octobercms
|
october
|
October is a free, open-source, self-hosted CMS platform based on the Laravel PHP Framework. In October CMS from version 1.0.319 and before version 1.0.469, backend users with access to upload files …
|
CWE-79
Cross-site Scripting
|
CVE-2020-15249
|
2024-11-21 14:05 |
2020-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211300
|
4.2 |
MEDIUM
Local
|
octobercms
|
october
|
October is a free, open-source, self-hosted CMS platform based on the Laravel PHP Framework. In October CMS from version 1.0.319 and before version 1.0.470, backend users with the default "Publisher"…
|
CWE-269
Improper Privilege Management
|
CVE-2020-15248
|
2024-11-21 14:05 |
2020-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
