|
208571
|
6.1 |
MEDIUM
Network
|
hashicorp
|
consul
|
HashiCorp Consul and Consul Enterprise up to version 1.9.4 key-value (KV) raw mode was vulnerable to cross-site scripting. Fixed in 1.9.5, 1.8.10 and 1.7.14.
|
CWE-79
Cross-site Scripting
|
CVE-2020-25864
|
2024-11-21 14:18 |
2021-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208572
|
7.5 |
HIGH
Local
|
freebsd
|
freebsd
|
In FreeBSD 13.0-STABLE before n245118, 12.2-STABLE before r369552, 11.4-STABLE before r369560, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9, a superuser inside a FreeBSD jai…
|
CWE-362
Race Condition
|
CVE-2020-25584
|
2024-11-21 14:18 |
2021-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208573
|
9.8 |
CRITICAL
Network
|
freebsd
|
freebsd
|
In FreeBSD 12.2-STABLE before r368250, 11.4-STABLE before r368253, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 when processing a DNSSL option, rtsold(8) decodes domain …
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-25583
|
2024-11-21 14:18 |
2021-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208574
|
9.8 |
CRITICAL
Network
|
freebsd
|
freebsd
|
In FreeBSD 12.2-STABLE before r368250, 11.4-STABLE before r368253, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 rtsold(8) does not verify that the RDNSS option does not …
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-25577
|
2024-11-21 14:18 |
2021-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208575
|
8.7 |
HIGH
Network
|
freebsd
|
freebsd
|
In FreeBSD 12.2-STABLE before r369334, 11.4-STABLE before r369335, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 when a process, such as jexec(8) or killall(1), calls jail_attach(2) to enter a ja…
|
CWE-362
Race Condition
|
CVE-2020-25582
|
2024-11-21 14:18 |
2021-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208576
|
7.5 |
HIGH
Network
|
freebsd
|
freebsd
|
In FreeBSD 12.2-STABLE before r369312, 11.4-STABLE before r369313, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 due to a race condition in the jail_remove(2) implementation, it may fail to kill …
|
CWE-362
Race Condition
|
CVE-2020-25581
|
2024-11-21 14:18 |
2021-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208577
|
5.3 |
MEDIUM
Network
|
freebsd
|
freebsd
|
In FreeBSD 12.2-STABLE before r369346, 11.4-STABLE before r369345, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 a regression in the login.access(5) rule processor has the effect of causing rules…
|
CWE-697
Incorrect Comparison
|
CVE-2020-25580
|
2024-11-21 14:18 |
2021-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208578
|
5.3 |
MEDIUM
Network
|
freebsd
|
freebsd
|
In FreeBSD 12.2-STABLE before r368969, 11.4-STABLE before r369047, 12.2-RELEASE before p3, 12.1-RELEASE before p13 and 11.4-RELEASE before p7 msdosfs(5) was failing to zero-fill a pair of padding fie…
|
CWE-909
Missing Initialization of Resource
|
CVE-2020-25579
|
2024-11-21 14:18 |
2021-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208579
|
5.3 |
MEDIUM
Network
|
freebsd
|
freebsd
|
In FreeBSD 12.2-STABLE before r368969, 11.4-STABLE before r369047, 12.2-RELEASE before p3, 12.1-RELEASE before p13 and 11.4-RELEASE before p7 several file systems were not properly initializing the d…
|
CWE-665
Improper Initialization
|
CVE-2020-25578
|
2024-11-21 14:18 |
2021-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208580
|
6.1 |
MEDIUM
Network
|
microfocus
|
access_manager
|
Cross-Site scripting vulnerability in Micro Focus Access Manager product, affects all version prior to version 5.0. The vulnerability could cause configuration destruction.
|
CWE-79
Cross-site Scripting
|
CVE-2020-25840
|
2024-11-21 14:18 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
