|
199981
|
6.5 |
MEDIUM
Network
|
squaredup
|
squaredup
|
CSRF protection was not present in SquaredUp before version 4.6.0. A CSRF attack could have been possible by an administrator executing arbitrary code in a HTML dashboard tile via a crafted HTML page…
|
CWE-352
Origin Validation Error
|
CVE-2020-9388
|
2024-11-21 14:40 |
2021-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199982
|
8.8 |
HIGH
Network
|
apache
oracle
|
hadoop
solr
financial_services_crime_and_compliance_management_studio
|
In Apache Hadoop 3.2.0 to 3.2.1, 3.0.0-alpha1 to 3.1.3, and 2.0.0-alpha to 2.10.0, WebHDFS client might send SPNEGO authorization header to remote URL without proper verification.
|
CWE-863
Incorrect Authorization
|
CVE-2020-9492
|
2024-11-21 14:40 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199983
|
6.7 |
MEDIUM
Local
|
huawei
|
smc2.0_firmware
|
There is a privilege escalation vulnerability in SMC2.0 product. Some files in a directory of a module are located improperly. It does not apply the directory limitation. Attackers can exploit this v…
|
CWE-862
Missing Authorization
|
CVE-2020-9209
|
2024-11-21 14:40 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199984
|
3.3 |
LOW
Local
|
huawei
|
p30_firmware
|
There is a resource management errors vulnerability in Huawei P30. Local attackers construct broadcast message for some application, causing this application to send this broadcast message and impact…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-9203
|
2024-11-21 14:40 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199985
|
5.3 |
MEDIUM
Network
|
huawei
|
magic_ui
emui
|
There is a missing authentication vulnerability in some Huawei smartphone.Successful exploitation of this vulnerability may lead to low-sensitive information exposure.
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-9143
|
2024-11-21 14:40 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199986
|
9.1 |
CRITICAL
Network
|
huawei
|
magic_ui
emui
|
There is a heap base buffer overflow vulnerability in some Huawei smartphone.Successful exploitation of this vulnerability can cause heap overflow and memory overwriting when the system incorrectly p…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-9142
|
2024-11-21 14:40 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199987
|
9.1 |
CRITICAL
Network
|
huawei
|
magic_ui
emui
|
There is a improper privilege management vulnerability in some Huawei smartphone. Successful exploitation of this vulnerability can cause information disclosure and malfunctions due to insufficient v…
|
CWE-345
CWE-269
Insufficient Verification of Data Authenticity
Improper Privilege Management
|
CVE-2020-9141
|
2024-11-21 14:40 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199988
|
9.8 |
CRITICAL
Network
|
huawei
|
magic_ui
emui
|
There is a vulnerability with buffer access with incorrect length value in some Huawei Smartphone.Unauthorized users may trigger code execution when a buffer overflow occurs.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2020-9140
|
2024-11-21 14:40 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199989
|
9.1 |
CRITICAL
Network
|
huawei
|
magic_ui
emui
|
There is a improper input validation vulnerability in some Huawei Smartphone.Successful exploit of this vulnerability can cause memory access errors and denial of service.
|
CWE-20
Improper Input Validation
|
CVE-2020-9139
|
2024-11-21 14:40 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199990
|
5.3 |
MEDIUM
Network
|
huawei
|
magic_ui
emui
|
There is a heap-based buffer overflow vulnerability in some Huawei Smartphone, Successful exploit of this vulnerability can cause process exceptions during updating.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-9138
|
2024-11-21 14:40 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
