|
199221
|
6.7 |
MEDIUM
Local
|
dell
|
emc_powerstore
|
Dell EMC PowerStore versions prior to 1.0.3.0.5.006 contain an OS Command Injection vulnerability in PowerStore X environment . A locally authenticated attacker could potentially exploit this vulnera…
|
CWE-78
OS Command
|
CVE-2020-29499
|
2024-11-21 14:24 |
2021-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199222
|
4.3 |
MEDIUM
Network
|
atlassian
|
confluence_server
|
Affected versions of Confluence Server before 7.4.8, and versions from 7.5.0 before 7.11.0 allow attackers to identify internal hosts and ports via a blind server-side request forgery vulnerability i…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2020-29445
|
2024-11-21 14:24 |
2021-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199223
|
5.4 |
MEDIUM
Network
|
atlassian
|
confluence_server
confluence_data_center
|
Affected versions of Team Calendar in Confluence Server before 7.11.0 allow attackers to inject arbitrary HTML or Javascript via a Cross Site Scripting Vulnerability in admin global setting parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2020-29444
|
2024-11-21 14:24 |
2021-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199224
|
5.4 |
MEDIUM
Network
|
orchardproject
|
orchard
|
An issue was discovered in Orchard before 1.10. The Media Settings Allowed File Types list field allows an attacker to add a XSS payload that will execute when users attempt to upload a disallowed fi…
|
CWE-79
Cross-site Scripting
|
CVE-2020-29593
|
2024-11-21 14:24 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199225
|
9.8 |
CRITICAL
Network
|
orchardproject
|
orchard
|
An issue was discovered in Orchard before 1.10. A broken access control issue in Orchard components that use the TinyMCE HTML editor's file upload allows an attacker to upload dangerous executables t…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2020-29592
|
2024-11-21 14:24 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199226
|
5.5 |
MEDIUM
Local
|
apple
|
iphone_os
ipados
|
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0. Processing a maliciously crafted font may result in the disclosure of process memo…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-29639
|
2024-11-21 14:24 |
2021-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199227
|
8.8 |
HIGH
Network
|
apple
|
mac_os_x
macos
|
An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, macOS Big Sur 11.1…
|
NVD-CWE-noinfo
|
CVE-2020-29633
|
2024-11-21 14:24 |
2021-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199228
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
macos
|
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. Processing a maliciously crafted image ma…
|
NVD-CWE-noinfo
|
CVE-2020-29625
|
2024-11-21 14:24 |
2021-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199229
|
7.8 |
HIGH
Local
|
apple
|
ipados
watchos
tvos
iphone_os
mac_os_x
macos
|
A memory corruption issue existed in the processing of font files. This issue was addressed with improved input validation. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 202…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-29624
|
2024-11-21 14:24 |
2021-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199230
|
3.3 |
LOW
Local
|
apple
fedoraproject
webkitgtk
|
ipados
tvos
iphone_os
mac_os_x
macos
fedora
webkitgtk
|
"Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security…
|
NVD-CWE-noinfo
|
CVE-2020-29623
|
2024-11-21 14:24 |
2021-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
