|
201271
|
7.1 |
HIGH
Local
|
google
|
go-tpm
|
An improperly initialized 'migrationAuth' value in Google's go-tpm TPM1.2 library versions prior to 0.3.0 can lead an eavesdropping attacker to discover the auth value for a key created with CreateWr…
|
CWE-665
Improper Initialization
|
CVE-2020-8918
|
2024-11-21 14:39 |
2020-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201272
|
8.8 |
HIGH
Adjacent
|
huawei
|
fusionsphere_openstack
|
FusionSphere OpenStack 8.0.0 have a protection mechanism failure vulnerability. The product incorrectly uses a protection mechanism. An attacker has to find a way to exploit the vulnerability to cond…
|
NVD-CWE-Other
|
CVE-2020-9079
|
2024-11-21 14:39 |
2020-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201273
|
7.8 |
HIGH
Local
|
huawei
|
fusioncompute
|
FusionCompute 8.0.0 have local privilege escalation vulnerability. A local, authenticated attacker could perform specific operations to exploit this vulnerability. Successful exploitation may cause t…
|
NVD-CWE-noinfo
|
CVE-2020-9078
|
2024-11-21 14:39 |
2020-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201274
|
6.1 |
MEDIUM
Network
|
jeedom
|
jeedom
|
Jeedom through 4.0.38 allows XSS.
|
CWE-79
Cross-site Scripting
|
CVE-2020-9036
|
2024-11-21 14:39 |
2020-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201275
|
6.7 |
MEDIUM
Local
|
trendmicro
|
antivirus_toolkit
apex_one
deep_security
officescan
officescan_business_security
officescan_business_security_service
officescan_cloud
online_scan
portable_security
rootkit…
|
An input validation vulnerability found in multiple Trend Micro products utilizing a particular version of a specific rootkit protection driver could allow an attacker in user-mode with administrator…
|
CWE-20
Improper Input Validation
|
CVE-2020-8607
|
2024-11-21 14:39 |
2020-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201276
|
4.4 |
MEDIUM
Local
|
netapp
|
active_iq_unified_manager
|
Active IQ Unified Manager for VMware vSphere and Windows versions prior to 9.5 are susceptible to a vulnerability which allows administrative users to cause Denial of Service (DoS).
|
NVD-CWE-noinfo
|
CVE-2020-8575
|
2024-11-21 14:39 |
2020-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201277
|
7.8 |
HIGH
Local
|
netapp
|
active_iq_unified_manager
|
Active IQ Unified Manager for Linux versions prior to 9.6 ship with the Java Management Extension Remote Method Invocation (JMX RMI) service enabled allowing unauthorized code execution to local user…
|
NVD-CWE-noinfo
|
CVE-2020-8574
|
2024-11-21 14:39 |
2020-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201278
|
5.9 |
MEDIUM
Network
|
kubernetes
|
ingress-nginx
|
The Kubernetes ingress-nginx component prior to version 0.28.0 allows a user with the ability to create namespaces and to read and create ingress objects to overwrite the password file of another ing…
|
CWE-610
Externally Controlled Reference to a Resource in Another Sphere
|
CVE-2020-8553
|
2024-11-21 14:39 |
2020-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201279
|
8.8 |
HIGH
Adjacent
|
kubernetes
|
kubernetes
|
The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17.0-1.17.6, and 1.18.0-1.18.3 were found to contain a security issue which allows adjacent hosts to reach TCP and UDP services boun…
|
NVD-CWE-Other
|
CVE-2020-8558
|
2024-11-21 14:39 |
2020-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201280
|
3.3 |
LOW
Local
|
huawei
|
p30_firmware
|
HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability. The system does not properly authenticate the application that access a specifi…
|
CWE-287
Improper Authentication
|
CVE-2020-9077
|
2024-11-21 14:39 |
2020-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
