|
200551
|
8.8 |
HIGH
Adjacent
|
kubernetes
|
kubernetes
|
The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17.0-1.17.6, and 1.18.0-1.18.3 were found to contain a security issue which allows adjacent hosts to reach TCP and UDP services boun…
|
NVD-CWE-Other
|
CVE-2020-8558
|
2024-11-21 14:39 |
2020-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200552
|
3.3 |
LOW
Local
|
huawei
|
p30_firmware
|
HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability. The system does not properly authenticate the application that access a specifi…
|
CWE-287
Improper Authentication
|
CVE-2020-9077
|
2024-11-21 14:39 |
2020-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200553
|
5.5 |
MEDIUM
Local
|
kubernetes
|
kubernetes
|
The Kubernetes kubelet component in versions 1.1-1.16.12, 1.17.0-1.17.8 and 1.18.0-1.18.5 do not account for disk usage by a pod which writes to its own /etc/hosts file. The /etc/hosts file mounted i…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-8557
|
2024-11-21 14:39 |
2020-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200554
|
6.8 |
MEDIUM
Network
|
kubernetes
|
kubernetes
|
The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an att…
|
CWE-601
Open Redirect
|
CVE-2020-8559
|
2024-11-21 14:39 |
2020-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200555
|
7.2 |
HIGH
Network
|
gpononu
|
1ge_router_wifi_onu_v2801rw_firmware
1ge\+3fe\+wifi_onu_v2804rgw_firmware
|
Guangzhou 1GE ONU V2801RW 1.9.1-181203 through 2.9.0-181024 and V2804RGW 1.9.1-181203 through 2.9.0-181024 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in …
|
CWE-78
OS Command
|
CVE-2020-8958
|
2024-11-21 14:39 |
2020-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200556
|
5.5 |
MEDIUM
Local
|
openthread
|
wpantund
|
A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: d…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2020-8916
|
2024-11-21 14:39 |
2020-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200557
|
7.5 |
HIGH
Network
|
envoyproxy
|
envoy
|
Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier may exhaust file descriptors and/or memory when accepting too many connections.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-8663
|
2024-11-21 14:39 |
2020-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200558
|
6.5 |
MEDIUM
Network
|
netapp
|
hci_h610s_firmware
|
The NetApp HCI H610C, H615C and H610S Baseboard Management Controllers (BMC) are shipped with a documented default account and password that should be changed during the initial node setup. During up…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2020-8573
|
2024-11-21 14:39 |
2020-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200559
|
7.2 |
HIGH
Network
|
johnsoncontrols
|
exacqvision_web_service
exacqvision_enterprise_manager
|
A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterpr…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2020-9047
|
2024-11-21 14:39 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200560
|
7.8 |
HIGH
Local
|
google
opensuse
|
guest-oslogin
leap
|
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-8933
|
2024-11-21 14:39 |
2020-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
