|
198481
|
5.3 |
MEDIUM
Network
|
apple
|
safari
|
A logic issue was addressed with improved validation. This issue is fixed in Safari 13.0.5. A URL scheme may be incorrectly ignored when determining multimedia permission for a website.
|
CWE-863
Incorrect Authorization
|
CVE-2020-3852
|
2024-11-21 14:31 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198482
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra, macOS Catal…
|
CWE-416
Use After Free
|
CVE-2020-3851
|
2024-11-21 14:31 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198483
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
iphone_os
tvos
watchos
ipad_os
|
An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A local user may be able to view s…
|
NVD-CWE-Other
|
CVE-2020-3918
|
2024-11-21 14:31 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198484
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A path handling issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to overwrite arbitrary files.
|
NVD-CWE-Other
|
CVE-2020-3915
|
2024-11-21 14:31 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198485
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges.
|
CWE-20
CWE-787
Improper Input Validation
Out-of-bounds Write
|
CVE-2020-3898
|
2024-11-21 14:31 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198486
|
6.1 |
MEDIUM
Network
|
cisco
|
adaptive_security_appliance
adaptive_security_appliance_software
|
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3599
|
2024-11-21 14:31 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198487
|
3.7 |
LOW
Network
|
cisco
|
firepower_threat_defense
adaptive_security_appliance_software
|
A vulnerability in the TLS handler of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 1000 Series firewalls could allow an unaut…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2020-3585
|
2024-11-21 14:31 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198488
|
6.1 |
MEDIUM
Network
|
cisco
|
firepower_threat_defense
adaptive_security_appliance_software
|
Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote att…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3583
|
2024-11-21 14:31 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198489
|
6.1 |
MEDIUM
Network
|
cisco
|
firepower_threat_defense
adaptive_security_appliance_software
|
Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote att…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3582
|
2024-11-21 14:31 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198490
|
6.1 |
MEDIUM
Network
|
cisco
|
firepower_threat_defense
adaptive_security_appliance_software
|
Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote att…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3581
|
2024-11-21 14:31 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
