|
198951
|
8.8 |
HIGH
Network
|
siemens
|
siport_mp
|
A vulnerability has been identified in SIPORT MP (All versions < 3.2.1). Vulnerable versions of the device could allow an authenticated attacker to impersonate other users of the system and perform (…
|
-
|
CVE-2020-7591
|
2024-11-21 14:37 |
2020-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198952
|
4.7 |
MEDIUM
Network
|
mintegral
|
mintegraladsdk
|
This affects all versions of package com.mintegral.msdk:alphab. The Android SDK distributed by the company contains malicious functionality in this module that tracks: 1. Downloads from Google urls e…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2020-7744
|
2024-11-21 14:37 |
2020-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198953
|
6.7 |
MEDIUM
Local
|
mcafee
|
mvision_endpoint_detection_and_response
|
Improperly implemented security check in McAfee MVISION Endpoint Detection and Response Client (MVEDR) prior to 3.2.0 may allow local administrators to execute malicious code via stopping a core Wind…
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2020-7327
|
2024-11-21 14:37 |
2020-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198954
|
6.7 |
MEDIUM
Local
|
mcafee
|
active_response
|
Improperly implemented security check in McAfee Active Response (MAR) prior to 2.4.4 may allow local administrators to execute malicious code via stopping a core Windows service leaving McAfee core t…
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2020-7326
|
2024-11-21 14:37 |
2020-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198955
|
8.2 |
HIGH
Local
|
mcafee
|
application_and_change_control
|
Improper privilege assignment vulnerability in the installer McAfee Application and Change Control (MACC) prior to 8.3.2 allows local administrators to change or update the configuration settings via…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7334
|
2024-11-21 14:37 |
2020-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198956
|
8.1 |
HIGH
Network
|
rapid7
|
nexpose
|
A SQL Injection issue in Rapid7 Nexpose version prior to 6.6.49 that may have allowed an authenticated user with a low permission level to access resources & make changes they should not have been ab…
|
CWE-89
SQL Injection
|
CVE-2020-7383
|
2024-11-21 14:37 |
2020-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198957
|
4.3 |
MEDIUM
Adjacent
|
mcafee
|
epolicy_orchestrator
|
Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10.9 Update 9 allows administrators to inject arbitrary web script or HTML via multiple parameters where the adminis…
|
CWE-79
Cross-site Scripting
|
CVE-2020-7318
|
2024-11-21 14:37 |
2020-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198958
|
4.3 |
MEDIUM
Adjacent
|
mcafee
|
epolicy_orchestrator
|
Cross-Site Scripting vulnerability in McAfee ePolicy Orchistrator (ePO) prior to 5.10.9 Update 9 allows administrators to inject arbitrary web script or HTML via parameter values for "syncPointList" …
|
CWE-79
Cross-site Scripting
|
CVE-2020-7317
|
2024-11-21 14:37 |
2020-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198959
|
8.8 |
HIGH
Local
|
mcafee
|
total_protection
|
Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial prior to 4.0.176.1 allows local users to schedule tasks which call malicious software to execute with elevated privileges via…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7330
|
2024-11-21 14:37 |
2020-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198960
|
6.8 |
MEDIUM
Physics
|
siemens
|
dca_vantage_analyzer_firmware
|
A vulnerability has been identified in DCA Vantage Analyzer (All versions < V4.5 are affected by CVE-2020-7590. In addition, serial numbers < 40000 running software V4.4.0 are also affected by CVE-20…
|
-
|
CVE-2020-7590
|
2024-11-21 14:37 |
2020-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
