|
196951
|
4.3 |
MEDIUM
Network
|
ibm
|
urbancode_deploy
|
IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. Thi…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2020-4483
|
2024-11-21 14:32 |
2020-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196952
|
6.5 |
MEDIUM
Network
|
ibm
|
urbancode_deploy
|
IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 could allow an authenticated user to bypass security. A user with access to a snapshot could apply unauthorized additional statuses v…
|
NVD-CWE-noinfo
|
CVE-2020-4482
|
2024-11-21 14:32 |
2020-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196953
|
6.8 |
MEDIUM
Physics
|
hcltech
|
notes
|
In HCL Notes version 9 previous to release 9.0.1 FixPack 10 Interim Fix 8, version 10 previous to release 10.0.1 FixPack 6 and version 11 previous to 11.0.1 FixPack 1, a vulnerability in the input pa…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-4097
|
2024-11-21 14:32 |
2020-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196954
|
7.8 |
HIGH
Local
|
ibm
|
i2_ibase
|
IBM i2 iBase 8.9.13 could allow an attacker to upload arbitrary executable files which, when executed by an unsuspecting victim could result in code execution. IBM X-Force ID: 184579.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2020-4588
|
2024-11-21 14:32 |
2020-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196955
|
7.5 |
HIGH
Network
|
ibm
|
i2_ibase
|
IBM i2 iBase 8.9.13 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2020-4584
|
2024-11-21 14:32 |
2020-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196956
|
6.5 |
MEDIUM
Network
|
vmware
|
horizon_client
|
VMware Horizon Client for Windows (5.x prior to 5.5.0) contains an information disclosure vulnerability. A malicious attacker with local privileges on the machine where Horizon Client for Windows is …
|
NVD-CWE-noinfo
|
CVE-2020-3998
|
2024-11-21 14:32 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196957
|
5.4 |
MEDIUM
Network
|
vmware
|
horizon
|
VMware Horizon Server (7.x prior to 7.10.3 or 7.13.0) contains a Cross Site Scripting (XSS) vulnerability. Successful exploitation of this issue may allow an attacker to inject malicious script which…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3997
|
2024-11-21 14:32 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196958
|
5.5 |
MEDIUM
Local
|
vmware
|
velero
|
Velero (prior to 1.4.3 and 1.5.2) in some instances doesn’t properly manage volume identifiers which may result in information leakage to unauthorized users.
|
NVD-CWE-noinfo
|
CVE-2020-3996
|
2024-11-21 14:32 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196959
|
5.3 |
MEDIUM
Network
|
vmware
|
esxi
workstation
cloud_foundation
fusion
|
In VMware ESXi (6.7 before ESXi670-201908101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x before 15.1.0), Fusion (11.x before 11.1.0), the VMCI host drivers used by VMware hypervisors cont…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2020-3995
|
2024-11-21 14:32 |
2020-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196960
|
7.4 |
HIGH
Network
|
vmware
|
vcenter_server
cloud_foundation
|
VMware vCenter Server (6.7 before 6.7u3, 6.6 before 6.5u3k) contains a session hijack vulnerability in the vCenter Server Appliance Management Interface update function due to a lack of certificate v…
|
CWE-295
Improper Certificate Validation
|
CVE-2020-3994
|
2024-11-21 14:32 |
2020-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
