|
197991
|
5.4 |
MEDIUM
Network
|
cisco
|
sd-wan_firmware
|
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. The vulner…
|
CWE-89
SQL Injection
|
CVE-2020-3468
|
2024-11-21 14:31 |
2020-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197992
|
4.9 |
MEDIUM
Network
|
cisco
|
vision_dynamic_signage_director
|
A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative credentials to conduct SQL injection a…
|
CWE-89
SQL Injection
|
CVE-2020-3450
|
2024-11-21 14:31 |
2020-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197993
|
6.5 |
MEDIUM
Network
|
cisco
|
sd-wan_firmware
|
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to read arbitrary files on the underlying filesystem of the device…
|
-
|
CVE-2020-3437
|
2024-11-21 14:31 |
2020-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197994
|
9.8 |
CRITICAL
Network
|
geovision
|
gv-as210_firmware
gv-as410_firmware
gv-as810_firmware
gv-gf1921_firmware
gv-as1010_firmware
gv-gf1922_firmware
|
Buffer overflow exists in Geovision Door Access Control device family, an unauthenticated remote attacker can execute arbitrary command.
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-3931
|
2024-11-21 14:31 |
2020-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197995
|
5.5 |
MEDIUM
Local
|
adobe
|
after_effects
|
Adobe After Effects versions 17.0.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure .
|
CWE-125
Out-of-bounds Read
|
CVE-2020-3809
|
2024-11-21 14:31 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197996
|
6.5 |
MEDIUM
Network
|
adobe
|
digital_editions
|
Adobe Digital Editions versions 4.5.11.187212 and below have a file enumeration (host or local network) vulnerability. Successful exploitation could lead to information disclosure.
|
NVD-CWE-noinfo
|
CVE-2020-3798
|
2024-11-21 14:31 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197997
|
6.5 |
MEDIUM
Network
|
adobe
|
coldfusion
|
ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an improper access control vulnerability. Successful exploitation could lead to system file structure disclosure.
|
NVD-CWE-noinfo
|
CVE-2020-3796
|
2024-11-21 14:31 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197998
|
7.8 |
HIGH
Local
|
adobe
|
coldfusion
|
ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a dll search-order hijacking vulnerability. Successful exploitation could lead to privilege escalation.
|
CWE-426
Untrusted Search Path
|
CVE-2020-3768
|
2024-11-21 14:31 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197999
|
6.5 |
MEDIUM
Network
|
adobe
|
coldfusion
|
ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an insufficient input validation vulnerability. Successful exploitation could lead to application-level denial-of-service (dos).
|
CWE-20
Improper Input Validation
|
CVE-2020-3767
|
2024-11-21 14:31 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198000
|
7.8 |
HIGH
Local
|
qualcomm
|
apq8096au_firmware
apq8098_firmware
kamorta_firmware
msm8917_firmware
msm8920_firmware
msm8937_firmware
msm8940_firmware
msm8953_firmware
msm8998_firmware
nicobar_firmware<…
|
Possible memory corruption in perfservice due to improper validation array length taken from user application. in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobil…
|
CWE-20
CWE-787
Improper Input Validation
Out-of-bounds Write
|
CVE-2020-3676
|
2024-11-21 14:31 |
2020-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
