|
208281
|
6.5 |
MEDIUM
Network
|
siemens
|
nucleus_net
nucleus_source_code
nucleus_readystart_v3
nucleus_readystart_v4
simotics_connect_400_firmware
|
A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-27736
|
2024-11-21 14:21 |
2021-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208282
|
9.8 |
CRITICAL
Network
|
dlink
|
dir-846_firmware
|
HNAP1/control/SetMasterWLanSettings.php in D-Link D-Link Router DIR-846 DIR-846 A1_100.26 allows remote attackers to execute arbitrary commands via shell metacharacters in the ssid0 or ssid1 paramete…
|
CWE-78
OS Command
|
CVE-2020-27600
|
2024-11-21 14:21 |
2021-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208283
|
6.5 |
MEDIUM
Network
|
apple
|
macos
|
An issue existed in screen sharing. This issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1. A user with screen sharing access may be able to view another…
|
NVD-CWE-noinfo
|
CVE-2020-27893
|
2024-11-21 14:21 |
2021-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208284
|
5.5 |
MEDIUM
Local
|
imagemagick
|
imagemagick
|
A heap based buffer overflow in coders/tiff.c may result in program crash and denial of service in ImageMagick before 7.0.10-45.
|
-
|
CVE-2020-27829
|
2024-11-21 14:21 |
2021-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208285
|
7.5 |
HIGH
Network
|
lldpd_project
openvswitch
redhat
fedoraproject
siemens
|
lldpd
openvswitch
enterprise_linux
virtualization
openstack
openshift_container_platform
fedora
simatic_hmi_unified_comfort_panels_firmware
simatic_net_cp_1243-1_firmware
s…
|
A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of…
|
-
|
CVE-2020-27827
|
2024-11-21 14:21 |
2021-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208286
|
4.3 |
MEDIUM
Physics
|
hamilton-medical
|
hamilton-t1_firmware
|
In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, an information disclosure vulnerability in the ventilator allows attackers with physical access to the configuration interface's logs t…
|
-
|
CVE-2020-27290
|
2024-11-21 14:21 |
2021-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208287
|
7.5 |
HIGH
Network
|
siemens
|
simatic_mv420_firmware
simatic_mv440_firmware
|
In SIMATIC MV400 family versions prior to v7.0.6, the ISN generator is initialized with a constant value and has constant increments. An attacker could predict and hijack TCP sessions.
|
NVD-CWE-noinfo
|
CVE-2020-27632
|
2024-11-21 14:21 |
2021-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208288
|
6.5 |
MEDIUM
Network
|
redhat
|
single_sign-on
keycloak
|
A flaw was found in keycloak in versions prior to 13.0.0. The client registration endpoint allows fetching information about PUBLIC clients (like client secret) without authentication which could be …
|
-
|
CVE-2020-27838
|
2024-11-21 14:21 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208289
|
5.4 |
MEDIUM
Network
|
maxum
|
rumpus
|
Maxum Rumpus 8.2.13 and 8.2.14 is affected by cross-site scripting (XSS). Users are able to create folders in the web application. The folder name is insufficiently validated resulting in a stored cr…
|
CWE-79
Cross-site Scripting
|
CVE-2020-27576
|
2024-11-21 14:21 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208290
|
8.8 |
HIGH
Network
|
maxum
|
rumpus
|
Maxum Rumpus 8.2.13 and 8.2.14 is affected by a command injection vulnerability. The web administration contains functionality in which administrators are able to manage users. The edit users form co…
|
CWE-78
OS Command
|
CVE-2020-27575
|
2024-11-21 14:21 |
2021-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
