|
196701
|
8.4 |
HIGH
Local
|
mcafee
|
endpoint_security
|
Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Mac prior to 10.6.9 allows local users to delete files the user would otherwise not have access to via manipulating symbolic l…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7265
|
2024-11-21 14:36 |
2020-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196702
|
8.4 |
HIGH
Local
|
mcafee
|
endpoint_security
|
Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 Hotfix 199847 allows local users to delete files the user would otherwise not have access to via manip…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7264
|
2024-11-21 14:36 |
2020-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196703
|
7.8 |
HIGH
Local
|
eaton
|
intelligent_power_manager
|
Incorrect Privilege Assignment vulnerability in Eaton's Intelligent Power Manager (IPM) v1.67 & prior allow non-admin users to upload the system configuration files by sending specially crafted reque…
|
CWE-269
Improper Privilege Management
|
CVE-2020-6652
|
2024-11-21 14:36 |
2020-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196704
|
7.3 |
HIGH
Local
|
eaton
|
intelligent_power_manager
|
Improper Input Validation in Eaton's Intelligent Power Manager (IPM) v 1.67 & prior on file name during configuration file import functionality allows attackers to perform command injection or code e…
|
CWE-20
CWE-78
Improper Input Validation
OS Command
|
CVE-2020-6651
|
2024-11-21 14:36 |
2020-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196705
|
5.5 |
MEDIUM
Local
|
ledger
|
monero
|
A flawed protocol design in the Ledger Monero app before 1.5.1 for Ledger Nano and Ledger S devices allows a local attacker to extract the master spending key by sending crafted messages to this app …
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2020-6861
|
2024-11-21 14:36 |
2020-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196706
|
5.5 |
MEDIUM
Local
|
zte
|
zenic_one_r22b
|
ZTE's SDON controller is impacted by the resource management error vulnerability. When RPC is frequently called by other applications in the case of mass traffic data in the system, it will result in…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2020-6867
|
2024-11-21 14:36 |
2020-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196707
|
4.9 |
MEDIUM
Network
|
zte
|
zxctn_6500_firmware
|
A ZTE product is impacted by a resource management error vulnerability. An attacker could exploit this vulnerability to cause a denial of service by issuing a specific command. This affects: ZXCTN 65…
|
NVD-CWE-noinfo
|
CVE-2020-6866
|
2024-11-21 14:36 |
2020-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196708
|
6.5 |
MEDIUM
Network
|
zte
|
oscp
|
ZTE SDN controller platform is impacted by an information leakage vulnerability. Due to the program's failure to optimize the response of failure to the request, the caller can directly view the inte…
|
CWE-200
Information Exposure
|
CVE-2020-6865
|
2024-11-21 14:36 |
2020-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196709
|
9.8 |
CRITICAL
Network
|
hpe
|
smart_update_manager
|
A security vulnerability in HPE Smart Update Manager (SUM) prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vul…
|
NVD-CWE-noinfo
|
CVE-2020-7136
|
2024-11-21 14:36 |
2020-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196710
|
6.1 |
MEDIUM
Network
|
mailbeez
|
mailbeez
|
Cross-site scripting (XSS) vulnerability in mailhive/cloudbeez/cloudloader.php and mailhive/cloudbeez/cloudloader_core.php in the MailBeez plugin for ZenCart before 3.9.22 allows remote attackers to …
|
CWE-79
Cross-site Scripting
|
CVE-2020-6579
|
2024-11-21 14:36 |
2020-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
