|
214811
|
8.2 |
HIGH
Network
|
treck
|
tcp\/ip
|
The Treck TCP/IP stack before 6.0.1.41 has an IPv4 tunneling Double Free.
|
CWE-415
Double Free
|
CVE-2020-11900
|
2024-11-21 13:58 |
2020-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214812
|
5.4 |
MEDIUM
Adjacent
|
treck
dell
|
tcp\/ip
wyse_5050_all-in-one_firmware
wyse_7030_firmware
wyse_5030_firmware
|
The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-11899
|
2024-11-21 13:58 |
2020-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214813
|
9.1 |
CRITICAL
Network
|
treck
|
tcp\/ip
|
The Treck TCP/IP stack before 6.0.1.66 improperly handles an IPv4/ICMPv4 Length Parameter Inconsistency, which might allow remote attackers to trigger an information leak.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2020-11898
|
2024-11-21 13:58 |
2020-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214814
|
10.0 |
CRITICAL
Network
|
treck
|
tcp\/ip
|
The Treck TCP/IP stack before 5.0.1.35 has an Out-of-Bounds Write via multiple malformed IPv6 packets.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-11897
|
2024-11-21 13:58 |
2020-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214815
|
10.0 |
CRITICAL
Network
|
treck
|
tcp\/ip
|
The Treck TCP/IP stack before 6.0.1.66 allows Remote Code Execution, related to IPv4 tunneling.
|
CWE-119
CWE-787
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Write
|
CVE-2020-11896
|
2024-11-21 13:58 |
2020-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214816
|
4.3 |
MEDIUM
Network
|
microfocus
|
arcsight_management_center
|
Unauthorized information disclosure vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. The vulnerabilities could be remotel…
|
NVD-CWE-noinfo
|
CVE-2020-11841
|
2024-11-21 13:58 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214817
|
4.3 |
MEDIUM
Network
|
microfocus
|
arcsight_management_center
|
Unauthorized information disclosure vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. The vulnerabilities could be remotel…
|
NVD-CWE-noinfo
|
CVE-2020-11840
|
2024-11-21 13:58 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214818
|
5.4 |
MEDIUM
Network
|
microfocus
|
arcsight_management_center
|
Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. The vulnerabilities could be remotely exploit…
|
CWE-79
Cross-site Scripting
|
CVE-2020-11838
|
2024-11-21 13:58 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214819
|
6.1 |
MEDIUM
Network
|
microfocus
|
arcsight_logger
|
Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Logger product, affecting all version from 6.6.1 up to version 7.0.1. The vulnerabilities could be remotely exploited resulting in Cro…
|
CWE-79
Cross-site Scripting
|
CVE-2020-11839
|
2024-11-21 13:58 |
2020-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214820
|
8.1 |
HIGH
Network
|
mids\'_reborn_hero_designer_project
|
mids\'_reborn_hero_designer
|
Mids' Reborn Hero Designer 2.6.0.7 downloads the update manifest, as well as update files, over cleartext HTTP. Additionally, the application does not perform file integrity validation for files afte…
|
CWE-345
CWE-319
Insufficient Verification of Data Authenticity
Cleartext Transmission of Sensitive Information
|
CVE-2020-11614
|
2024-11-21 13:58 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
