|
209091
|
5.3 |
MEDIUM
Network
|
freeipa
redhat
|
freeipa
enterprise_linux
|
A flaw was found in all ipa versions 4.x.x through 4.8.0. When sending a very long password (>= 1,000,000 characters) to the server, the password hashing process could exhaust memory and CPU leading …
|
-
|
CVE-2020-1722
|
2024-11-21 14:11 |
2020-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209092
|
9.8 |
CRITICAL
Network
|
apache
|
iotdb
|
An issue was found in Apache IoTDB .9.0 to 0.9.1 and 0.8.0 to 0.8.2. When starting IoTDB, the JMX port 31999 is exposed with no certification.Then, clients could execute code remotely.
|
CWE-295
Improper Certificate Validation
|
CVE-2020-1952
|
2024-11-21 14:11 |
2020-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209093
|
5.5 |
MEDIUM
Local
|
huawei
|
lion-al00c_firmware
|
Huawei smartphone Lion-AL00C with versions earlier than 10.0.0.205(C00E202R7P2) have a denial of service vulnerability. An attacker crafted specially file to the affected device. Due to insufficient …
|
CWE-20
Improper Input Validation
|
CVE-2020-1880
|
2024-11-21 14:11 |
2020-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209094
|
6.7 |
MEDIUM
Local
|
huawei
|
pcmanager
|
Huawei PCManager product with versions earlier than 10.0.5.53 have a local privilege escalation vulnerability. An authenticated, local attacker can perform specific operation to exploit this vulnerab…
|
NVD-CWE-noinfo
|
CVE-2020-1845
|
2024-11-21 14:11 |
2020-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209095
|
3.5 |
LOW
Physics
|
huawei
|
mate_20_firmware
|
HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188(C00E74R3P8) have an improper authorization vulnerability. The software does not properly restrict certain user's modification of certa…
|
NVD-CWE-noinfo
|
CVE-2020-1807
|
2024-11-21 14:11 |
2020-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209096
|
7.1 |
HIGH
Local
|
huawei
|
honor_v10_firmware
|
Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) has three out of bounds vulnerabilities. Certain driver program does not sufficiently validate certain parameters recei…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-1806
|
2024-11-21 14:11 |
2020-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209097
|
7.1 |
HIGH
Local
|
huawei
|
honor_v10_firmware
|
Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) has three out of bounds vulnerabilities. Certain driver program does not sufficiently validate certain parameters recei…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-1805
|
2024-11-21 14:11 |
2020-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209098
|
7.1 |
HIGH
Local
|
huawei
|
honor_v10_firmware
|
Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) has three out of bounds vulnerabilities. Certain driver program does not sufficiently validate certain parameters recei…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-1804
|
2024-11-21 14:11 |
2020-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209099
|
5.9 |
MEDIUM
Network
|
redhat
|
openshift_container_platform
|
A flaw was found in openshift-ansible. OpenShift Container Platform (OCP) 3.11 is too permissive in the way it specified CORS allowed origins during installation. An attacker, able to man-in-the-midd…
|
-
|
CVE-2020-1741
|
2024-11-21 14:11 |
2020-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209100
|
6.1 |
MEDIUM
Network
|
linuxfoundation
redhat
fedoraproject
canonical
debian
|
ceph
ceph_storage
openshift_container_platform
fedora
ubuntu_linux
debian_linux
|
A flaw was found in the Ceph Object Gateway, where it supports request sent by an anonymous user in Amazon S3. This flaw could lead to potential XSS attacks due to the lack of proper neutralization o…
|
CWE-79
Cross-site Scripting
|
CVE-2020-1760
|
2024-11-21 14:11 |
2020-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
