|
209461
|
7.8 |
HIGH
Local
|
microsoft
|
windows_10
windows_server_2016
windows_server_2019
|
An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'…
|
NVD-CWE-noinfo
|
CVE-2020-1001
|
2024-11-21 14:09 |
2020-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209462
|
7.8 |
HIGH
Local
|
microsoft
|
windows_server_2008
windows_10
windows_server_2016
windows_7
windows_server_2012
windows_server_2019
|
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique fro…
|
NVD-CWE-noinfo
|
CVE-2020-1000
|
2024-11-21 14:09 |
2020-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209463
|
6.5 |
MEDIUM
Network
|
exempi_project
|
exempi
|
Buffer Overflow vulnerability in function ID3_Support::ID3v2Frame::getFrameValue in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted audio file wit…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-18651
|
2024-11-21 14:08 |
2023-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209464
|
- |
|
-
|
-
|
Extreme Networks EXOS before v.22.7 and before v.30.2 was discovered to contain an issue in its Web GUI which fails to restrict URL access, allowing attackers to access sensitive information or escal…
|
-
|
CVE-2020-18305
|
2024-11-21 14:08 |
2024-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209465
|
9.8 |
CRITICAL
Network
|
uffizio
|
gps_tracker
|
A Remote Code Execution vulnerability exist in Uffizio's GPS Tracker all versions. The web server can be compromised by uploading and executing a web/reverse shell. An attacker could then run command…
|
NVD-CWE-noinfo
|
CVE-2020-17485
|
2024-11-21 14:08 |
2023-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209466
|
6.1 |
MEDIUM
Network
|
uffizio
|
gps_tracker
|
An Open Redirection vulnerability exists in Uffizio's GPS Tracker all versions allows an attacker to construct a URL within the application that causes a redirection to an arbitrary external domain.
|
CWE-601
Open Redirect
|
CVE-2020-17484
|
2024-11-21 14:08 |
2023-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209467
|
7.5 |
HIGH
Network
|
uffizio
|
gps_tracker
|
An improper access control vulnerability exists in Uffizio's GPS Tracker all versions that lead to sensitive information disclosure of all the connected devices. By visiting the vulnerable host at po…
|
NVD-CWE-noinfo
|
CVE-2020-17483
|
2024-11-21 14:08 |
2023-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209468
|
6.5 |
MEDIUM
Network
|
univention
|
ucs\@school
|
Incorrect LDAP ACLs in ucs-school-ldap-acls-master in UCS@school before 4.4v5-errata allow remote teachers, staff, and school administrators to read LDAP password hashes (sambaNTPassword, krb5Key, sa…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2020-17477
|
2024-11-21 14:08 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209469
|
7.4 |
HIGH
Network
|
typora
|
typora
|
Cross Site Scripting (XSS) vulnerability found in Typora v.0.9.65 allows a remote attacker to obtain sensitive information via the PDF file exporting function.
|
CWE-79
Cross-site Scripting
|
CVE-2020-18336
|
2024-11-21 14:08 |
2023-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209470
|
9.8 |
CRITICAL
Network
|
earcms
|
ear
|
An issue found in Earcms Ear App v.20181124 allows a remote attacker to execute arbitrary code via the uload/index-uplog.php.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2020-18912
|
2024-11-21 14:08 |
2023-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
