|
211481
|
7.1 |
HIGH
Local
|
redhat
debian
|
ansible_tower
ansible_engine
ceph_storage
openstack_platform
debian_linux
|
A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before 2.8.15 and ansible-engine 2.9.x before 2.9.13, when installing packages using the dnf module. GPG signatures are ignored during …
|
-
|
CVE-2020-14365
|
2024-11-21 14:03 |
2020-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211482
|
3.5 |
LOW
Adjacent
|
philips
|
clinical_collaboration_platform
|
Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output used as a webpage…
|
NVD-CWE-Other
|
CVE-2020-14525
|
2024-11-21 14:03 |
2020-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211483
|
4.3 |
MEDIUM
Network
|
philips
|
clinical_collaboration_platform
|
Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. The product receives input or data, but it does not validate or incorrectly validates that the input has the properties required to…
|
-
|
CVE-2020-14506
|
2024-11-21 14:03 |
2020-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211484
|
5.6 |
MEDIUM
Local
|
linux
debian
|
linux_kernel
debian_linux
|
A flaw was found in the Linux kernel in versions before 5.9-rc6. When changing screen size, an out-of-bounds memory write can occur leading to memory corruption or a denial of service. Due to the nat…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-14390
|
2024-11-21 14:03 |
2020-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211485
|
5.3 |
MEDIUM
Network
|
redhat
|
xerces
|
A flaw was found in Wildfly's implementation of Xerces, specifically in the way the XMLSchemaValidator class in the JAXP component of Wildfly enforced the "use-grammar-pool-only" feature. This flaw a…
|
CWE-20
Improper Input Validation
|
CVE-2020-14338
|
2024-11-21 14:03 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211486
|
7.5 |
HIGH
Network
|
wibu
|
codemeter
|
This vulnerability allows an attacker to use the internal WebSockets API for CodeMeter (All versions prior to 7.00 are affected, including Version 7.0 or newer with the affected WebSockets API still …
|
-
|
CVE-2020-14519
|
2024-11-21 14:03 |
2020-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211487
|
9.8 |
CRITICAL
Network
|
wibu
|
codemeter
|
Protocol encryption can be easily broken for CodeMeter (All versions prior to 6.90 are affected, including Version 6.90 or newer only if CodeMeter Runtime is running as server) and the server accepts…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2020-14517
|
2024-11-21 14:03 |
2020-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211488
|
7.5 |
HIGH
Network
|
wibu
|
codemeter
|
CodeMeter (All versions prior to 6.90 when using CmActLicense update files with CmActLicense Firm Code) has an issue in the license-file signature checking mechanism, which allows attackers to build …
|
-
|
CVE-2020-14515
|
2024-11-21 14:03 |
2020-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211489
|
7.5 |
HIGH
Network
|
wibu
|
codemeter
|
CodeMeter (All versions prior to 6.81) and the software using it may crash while processing a specifically crafted license file due to unverified length fields.
|
-
|
CVE-2020-14513
|
2024-11-21 14:03 |
2020-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211490
|
9.8 |
CRITICAL
Network
|
wibu
|
codemeter
|
Multiple memory corruption vulnerabilities exist in CodeMeter (All versions prior to 7.10) where the packet parser mechanism does not verify length fields. An attacker could send specially crafted pa…
|
NVD-CWE-Other
|
CVE-2020-14509
|
2024-11-21 14:03 |
2020-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
