|
199161
|
5.3 |
MEDIUM
Adjacent
|
ibm
|
security_access_manager
security_verify_access
|
IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the sy…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2020-4661
|
2024-11-21 14:33 |
2020-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199162
|
5.3 |
MEDIUM
Adjacent
|
ibm
|
security_access_manager
security_verify_access
|
IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the sy…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2020-4660
|
2024-11-21 14:33 |
2020-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199163
|
5.3 |
MEDIUM
Network
|
sonicwall
|
sonicos
sonicosv
|
SonicOS SSLVPN login page allows a remote unauthenticated attacker to perform firewall management administrator username enumeration based on the server responses. This vulnerability affected SonicOS…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2020-5143
|
2024-11-21 14:33 |
2020-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199164
|
6.1 |
MEDIUM
Network
|
sonicwall
|
sonicos
sonicosv
|
A stored cross-site scripting (XSS) vulnerability exists in the SonicOS SSLVPN web interface. A remote unauthenticated attacker is able to store and potentially execute arbitrary JavaScript code in t…
|
CWE-79
Cross-site Scripting
|
CVE-2020-5142
|
2024-11-21 14:33 |
2020-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199165
|
6.5 |
MEDIUM
Network
|
sonicwall
|
sonicos
sonicosv
|
A vulnerability in SonicOS allows a remote unauthenticated attacker to brute force Virtual Assist ticket ID in the firewall SSLVPN service. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, …
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2020-5141
|
2024-11-21 14:33 |
2020-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199166
|
7.5 |
HIGH
Network
|
sonicwall
|
sonicos
sonicosv
|
A vulnerability in SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS) on the firewall SSLVPN service by sending a malicious HTTP request that leads to memory addresses …
|
CWE-125
Out-of-bounds Read
|
CVE-2020-5140
|
2024-11-21 14:33 |
2020-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199167
|
7.5 |
HIGH
Network
|
sonicwall
|
sonicos
sonicosv
|
A vulnerability in SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS) due to the release of Invalid pointer and leads to a firewall crash. This vulnerabi…
|
CWE-763
Release of Invalid Pointer or Reference
|
CVE-2020-5139
|
2024-11-21 14:33 |
2020-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199168
|
7.5 |
HIGH
Network
|
sonicwall
|
sonicos
sonicosv
|
A Heap Overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS) on the firewall SSLVPN service and leads to SonicOS crash. This vulnerability af…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-5138
|
2024-11-21 14:33 |
2020-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199169
|
7.5 |
HIGH
Network
|
sonicwall
|
sonicos
sonicosv
|
A buffer overflow vulnerability in SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS) on the firewall SSLVPN service and leads to firewall crash. This vulnerability aff…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-5137
|
2024-11-21 14:33 |
2020-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199170
|
6.5 |
MEDIUM
Network
|
sonicwall
|
sonicos
sonicosv
|
A buffer overflow vulnerability in SonicOS allows an authenticated attacker to cause Denial of Service (DoS) in the SSL-VPN and virtual assist portal, which leads to a firewall crash. This vulnerabil…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-5136
|
2024-11-21 14:33 |
2020-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
