|
196801
|
8.8 |
HIGH
Network
|
sap
|
businessobjects_business_intelligence_platform
crystal_reports_for_visual_studio
|
SAP Business Objects Business Intelligence Platform (CrystalReports WebForm Viewer), versions 4.1, 4.2, and Crystal Reports for VS version 2010, allows an attacker with basic authorization to perform…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2020-6219
|
2024-11-21 14:35 |
2020-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196802
|
5.0 |
MEDIUM
Network
|
sap
|
businessobjects_business_intelligence_platform
|
Admin tools and Query Builder in SAP Business Objects Business Intelligence Platform, versions 4.1, 4.2, allows an attacker to access information that should otherwise be restricted, leading to Infor…
|
NVD-CWE-noinfo
|
CVE-2020-6218
|
2024-11-21 14:35 |
2020-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196803
|
6.1 |
MEDIUM
Network
|
sap
|
businessobjects_business_intelligence_platform
|
SAP Business Objects Business Intelligence Platform (BI Launchpad), version 4.2, does not sufficiently encode user-controlled inputs, resulting in reflected Cross-Site Scripting (XSS) vulnerability.
|
CWE-79
Cross-site Scripting
|
CVE-2020-6216
|
2024-11-21 14:35 |
2020-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196804
|
4.7 |
MEDIUM
Network
|
sap
|
s\/4hana
|
SAP S/4HANA (Financial Products Subledger), version 100, uses an incorrect authorization object in some reports. Although the affected reports are protected with other authorization objects, exploita…
|
CWE-863
Incorrect Authorization
|
CVE-2020-6214
|
2024-11-21 14:35 |
2020-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196805
|
6.5 |
MEDIUM
Network
|
google
debian
fedoraproject
opensuse
|
chrome
debian_linux
fedora
leap
backports
|
Insufficient validation of untrusted input in clipboard in Google Chrome prior to 81.0.4044.92 allowed a local attacker to bypass site isolation via crafted clipboard contents.
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-6456
|
2024-11-21 14:35 |
2020-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196806
|
8.8 |
HIGH
Network
|
google
debian
fedoraproject
opensuse
|
chrome
debian_linux
fedora
leap
backports
|
Out of bounds read in WebSQL in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-6455
|
2024-11-21 14:35 |
2020-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196807
|
8.8 |
HIGH
Network
|
google
fedoraproject
debian
opensuse
|
chrome
fedora
debian_linux
leap
backports_sle
|
Use after free in extensions in Google Chrome prior to 81.0.4044.92 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chro…
|
CWE-416
Use After Free
|
CVE-2020-6454
|
2024-11-21 14:35 |
2020-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196808
|
8.8 |
HIGH
Network
|
google
fedoraproject
opensuse
|
chrome
fedora
leap
backports
|
Heap buffer overflow in media in Google Chrome prior to 80.0.3987.162 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-6452
|
2024-11-21 14:35 |
2020-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196809
|
8.8 |
HIGH
Network
|
google
fedoraproject
opensuse
|
chrome
fedora
leap
backports_sle
|
Use after free in WebAudio in Google Chrome prior to 80.0.3987.162 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-6451
|
2024-11-21 14:35 |
2020-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196810
|
8.8 |
HIGH
Network
|
google
fedoraproject
opensuse
|
chrome
fedora
leap
backports_sle
|
Use after free in WebAudio in Google Chrome prior to 80.0.3987.162 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2020-6450
|
2024-11-21 14:35 |
2020-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
