|
209311
|
9.8 |
CRITICAL
Network
|
robotemi
|
robox_os
|
Authentication Bypass Using an Alternate Path or Channel in temi Robox OS prior to120, temi Android app up to 1.3.7931 allows remote attackers to gain elevated privileges on the temi and have it auto…
|
CWE-287
Improper Authentication
|
CVE-2020-16169
|
2024-11-21 14:06 |
2020-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209312
|
9.1 |
CRITICAL
Network
|
robotemi
|
launcher_os
|
Missing Authentication for Critical Function in temi Robox OS prior to 120, temi Android app up to 1.3.7931 allows remote attackers to receive and answer calls intended for another temi user. Answeri…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-16167
|
2024-11-21 14:06 |
2020-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209313
|
6.1 |
MEDIUM
Network
|
mahara
|
mahara
|
In Mahara 19.04 before 19.04.6, 19.10 before 19.10.4, and 20.04 before 20.04.1, certain places could execute file or folder names containing JavaScript.
|
CWE-79
Cross-site Scripting
|
CVE-2020-15907
|
2024-11-21 14:06 |
2020-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209314
|
6.5 |
MEDIUM
Network
|
robotemi
|
temi_firmware
|
Origin Validation Error in temi Robox OS prior to 120, temi Android app up to 1.3.7931 allows remote attackers to access the REST API and MQTT broker used by the temi and send it custom data/requests…
|
CWE-346
Origin Validation Error
|
CVE-2020-16168
|
2024-11-21 14:06 |
2020-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209315
|
7.8 |
HIGH
Local
|
deltaww
|
tpeditor
|
Delta Electronics TPEditor Versions 1.97 and prior. An improper input validation may be exploited by processing a specially crafted project file not validated when the data is entered by a user. Succ…
|
CWE-20
Improper Input Validation
|
CVE-2020-16227
|
2024-11-21 14:06 |
2020-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209316
|
7.8 |
HIGH
Local
|
deltaww
|
tpeditor
|
Delta Electronics TPEditor Versions 1.97 and prior. A write-what-where condition may be exploited by processing a specially crafted project file. Successful exploitation of this vulnerability may all…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-16225
|
2024-11-21 14:06 |
2020-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209317
|
7.8 |
HIGH
Local
|
deltaww
|
tpeditor
|
Delta Electronics TPEditor Versions 1.97 and prior. A heap-based buffer overflow may be exploited by processing a specially crafted project file. Successful exploitation of this vulnerability may all…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-16223
|
2024-11-21 14:06 |
2020-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209318
|
7.8 |
HIGH
Local
|
deltaww
|
tpeditor
|
Delta Electronics TPEditor Versions 1.97 and prior. A stack-based buffer overflow may be exploited by processing a specially crafted project file. Successful exploitation of this vulnerability may al…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-16221
|
2024-11-21 14:06 |
2020-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209319
|
7.8 |
HIGH
Local
|
deltaww
|
tpeditor
|
Delta Electronics TPEditor Versions 1.97 and prior. An out-of-bounds read may be exploited by processing specially crafted project files. Successful exploitation of this vulnerability may allow an at…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-16219
|
2024-11-21 14:06 |
2020-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209320
|
7.0 |
HIGH
Local
|
canonical
|
apport
ubuntu_linux
|
TOCTOU Race Condition vulnerability in apport allows a local attacker to escalate privileges and execute arbitrary code. An attacker may exit the crashed process and exploit PID recycling to spawn a …
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2020-15702
|
2024-11-21 14:06 |
2020-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
