|
210331
|
9.8 |
CRITICAL
Network
|
rockwellautomation
|
factorytalk_linx
rslinx_classic
|
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version …
|
CWE-20
Improper Input Validation
|
CVE-2020-12001
|
2024-11-21 13:59 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210332
|
9.8 |
CRITICAL
Network
|
apache
|
tomee
|
If Apache TomEE is configured to use the embedded ActiveMQ broker, and the broker URI includes the useJMX=true parameter, a JMX port is opened on TCP port 1099, which does not include authentication.…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-11969
|
2024-11-21 13:59 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210333
|
8.1 |
HIGH
Network
|
rockwellautomation
|
factorytalk_linx
rslinx_classic
|
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version …
|
CWE-20
Improper Input Validation
|
CVE-2020-11999
|
2024-11-21 13:59 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210334
|
6.3 |
MEDIUM
Network
|
apache
|
karaf
|
In Karaf, JMX authentication takes place using JAAS and authorization takes place using ACL files. By default, only an "admin" can actually invoke on an MBean. However there is a vulnerability there …
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2020-11980
|
2024-11-21 13:59 |
2020-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210335
|
4.5 |
MEDIUM
Adjacent
|
philips
|
intellibridge_enterprise
|
Philips IntelliBridge Enterprise (IBE), Versions B.12 and prior, IntelliBridge Enterprise system integration with SureSigns (VS4), EarlyVue (VS30) and IntelliVue Guardian (IGS). Unencrypted user cred…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2020-12023
|
2024-11-21 13:59 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210336
|
7.5 |
HIGH
Network
|
inductiveautomation
|
ignition_gateway
|
The affected product lacks proper authentication required to query the server on the Ignition 8 Gateway (versions prior to 8.0.10) and Ignition 7 Gateway (versions prior to 7.9.14), allowing an attac…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-12004
|
2024-11-21 13:59 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210337
|
7.5 |
HIGH
Network
|
inductiveautomation
|
ignition_gateway
|
The affected product is vulnerable to the handling of serialized data. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted dat…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2020-12000
|
2024-11-21 13:59 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210338
|
5.5 |
MEDIUM
Local
|
freedesktop
canonical
|
dbus
ubuntu_linux
|
An issue was discovered in dbus >= 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A loca…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2020-12049
|
2024-11-21 13:59 |
2020-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210339
|
9.8 |
CRITICAL
Network
|
apache
|
unomi
|
Apache Unomi allows conditions to use OGNL scripting which offers the possibility to call static Java classes from the JDK that could execute code with the permission level of the running Java proces…
|
NVD-CWE-noinfo
|
CVE-2020-11975
|
2024-11-21 13:59 |
2020-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210340
|
7.5 |
HIGH
Network
|
fastecdsa_project
|
fastecdsa
|
An issue was discovered in fastecdsa before 2.1.2. When using the NIST P-256 curve in the ECDSA implementation, the point at infinity is mishandled. This means that for an extreme value in k and s^-1…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2020-12607
|
2024-11-21 13:59 |
2020-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
