|
201491
|
8.0 |
HIGH
Adjacent
|
gry_project
|
gry
|
A vulnerability, which was classified as critical, was found in IonicaBizau node-gry up to 5.x. This affects an unknown part. The manipulation leads to command injection. Upgrading to version 6.0.0 i…
|
CWE-77
Command Injection
|
CVE-2020-36650
|
2024-11-21 14:30 |
2023-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201492
|
7.5 |
HIGH
Network
|
papaparse
|
papaparse
|
A vulnerability was found in mholt PapaParse up to 5.1.x. It has been classified as problematic. Affected is an unknown function of the file papaparse.js. The manipulation leads to inefficient regula…
|
-
|
CVE-2020-36649
|
2024-11-21 14:30 |
2023-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201493
|
9.8 |
CRITICAL
Network
|
pouet
|
pouet2.0
|
A vulnerability, which was classified as critical, was found in pouetnet pouet 2.0. This affects an unknown part. The manipulation of the argument howmany leads to sql injection. The identifier of th…
|
CWE-89
SQL Injection
|
CVE-2020-36648
|
2024-11-21 14:30 |
2023-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201494
|
7.5 |
HIGH
Network
|
cisco
|
iot_field_network_director
|
A vulnerability in the API of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to view sensitive information on an affected system. The vulnerability exists beca…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-3392
|
2024-11-21 14:30 |
2020-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201495
|
7.8 |
HIGH
Local
|
cisco
|
asyncos
|
A vulnerability in the log subscription subsystem of Cisco AsyncOS for the Cisco Secure Web Appliance (formerly Web Security Appliance) could allow an authenticated, local attacker to perform command…
|
CWE-78
OS Command
|
CVE-2020-3367
|
2024-11-21 14:30 |
2020-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201496
|
8.8 |
HIGH
Network
|
cisco
|
integrated_management_controller
|
A vulnerability in the web UI of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to inject arbitrary code and execute arbitrary commands at the underlying o…
|
CWE-78
OS Command
|
CVE-2020-3371
|
2024-11-21 14:30 |
2020-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201497
|
9.8 |
CRITICAL
Network
|
cisco
|
a9k-rsp880-se_firmware
ios_xr
a9k-rsp880-tr_firmware
a99-rp2-se_firmware
a99-rp2-tr_firmware
a99-rsp-se_firmware
a99-rsp-tr_firmware
a9k-rsp880-lt-se_firmware
a9k-rsp880-lt-tr…
|
A vulnerability in the enhanced Preboot eXecution Environment (PXE) boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PX…
|
NVD-CWE-noinfo
|
CVE-2020-3284
|
2024-11-21 14:30 |
2020-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201498
|
8.1 |
HIGH
Network
|
cisco
|
firepower_management_center
|
A vulnerability in the Common Access Card (CAC) authentication feature of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to bypass authentication and…
|
CWE-287
Improper Authentication
|
CVE-2020-3410
|
2024-11-21 14:30 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201499
|
8.6 |
HIGH
Network
|
cisco
|
firepower_threat_defense
adaptive_security_appliance_software
|
A vulnerability in the IP fragment-handling implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2020-3373
|
2024-11-21 14:30 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201500
|
5.5 |
MEDIUM
Local
|
cisco
|
firepower_threat_defense
|
A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to access hidden commands. The vulnerability is due to the presence of undocum…
|
NVD-CWE-Other
|
CVE-2020-3352
|
2024-11-21 14:30 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
