|
209791
|
7.8 |
HIGH
Local
|
getgophish
|
gophish
|
Gophish before 0.11.0 allows the creation of CSV sheets that contain malicious content.
|
CWE-1236
Improper Neutralization of Formula Elements in a CSV File
|
CVE-2020-24707
|
2024-11-21 14:15 |
2020-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209792
|
7.2 |
HIGH
Network
|
arubanetworks
|
airwave_glass
|
A remote execution of arbitrary commandss vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2.
|
NVD-CWE-noinfo
|
CVE-2020-24632
|
2024-11-21 14:15 |
2020-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209793
|
7.2 |
HIGH
Network
|
arubanetworks
|
airwave_glass
|
A remote execution of arbitrary commands vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2.
|
NVD-CWE-noinfo
|
CVE-2020-24631
|
2024-11-21 14:15 |
2020-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209794
|
9.8 |
CRITICAL
Network
|
hp
|
intelligent_management_center
|
A addvsiinterfaceinfo expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
|
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')
|
CVE-2020-24652
|
2024-11-21 14:15 |
2020-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209795
|
9.8 |
CRITICAL
Network
|
hp
|
intelligent_management_center
|
A syslogtempletselectwin expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
|
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')
|
CVE-2020-24651
|
2024-11-21 14:15 |
2020-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209796
|
9.8 |
CRITICAL
Network
|
hp
|
intelligent_management_center
|
A legend expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
|
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')
|
CVE-2020-24650
|
2024-11-21 14:15 |
2020-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209797
|
9.8 |
CRITICAL
Network
|
hp
|
intelligent_management_center
|
A remote bytemessageresource transformentity" input validation code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
|
CWE-20
Improper Input Validation
|
CVE-2020-24649
|
2024-11-21 14:15 |
2020-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209798
|
9.8 |
CRITICAL
Network
|
hp
|
intelligent_management_center
|
A accessmgrservlet classname deserialization of untrusted data remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P0…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2020-24648
|
2024-11-21 14:15 |
2020-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209799
|
9.8 |
CRITICAL
Network
|
hp
|
intelligent_management_center
|
A remote accessmgrservlet classname input validation code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
|
CWE-20
Improper Input Validation
|
CVE-2020-24647
|
2024-11-21 14:15 |
2020-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209800
|
9.8 |
CRITICAL
Network
|
hp
|
intelligent_management_center
|
A tftpserver stack-based buffer overflow remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).
|
CWE-787
Out-of-bounds Write
|
CVE-2020-24646
|
2024-11-21 14:15 |
2020-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
