|
196881
|
7.2 |
HIGH
Network
|
comtechtel
|
stampede_fx-1010_firmware
|
Comtech Stampede FX-1010 7.4.3 devices allow remote authenticated administrators to execute arbitrary OS commands by navigating to the Diagnostics Ping page and entering shell metacharacters in the T…
|
CWE-78
OS Command
|
CVE-2020-5179
|
2024-11-21 14:33 |
2020-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196882
|
3.3 |
LOW
Local
|
ibm
|
financial_transaction_manager
|
IBM Financial Transaction Manager for High Value Payments for Multi-Platform 3.2.0 through 3.2.10 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force I…
|
NVD-CWE-noinfo
|
CVE-2020-4556
|
2024-11-21 14:32 |
2023-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196883
|
5.9 |
MEDIUM
Network
|
ibm
|
spectrum_protect_plus
|
IBM Spectrum Protect Plus 10.1.0 through 10.1.12 discloses sensitive information due to unencrypted data being used in the communication flow between Spectrum Protect Plus vSnap and its agents. An a…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2020-4497
|
2024-11-21 14:32 |
2022-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196884
|
7.5 |
HIGH
Network
|
hcltech
|
verse
|
The application was signed using a key length less than or equal to 1024 bits, making it potentially vulnerable to forged digital signatures. An attacker could forge the same digital signature of the…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2020-4099
|
2024-11-21 14:32 |
2022-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196885
|
6.5 |
MEDIUM
Network
|
ibm
netapp
|
cognos_analytics
oncommand_insight
|
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that th…
|
CWE-352
Origin Validation Error
|
CVE-2020-4301
|
2024-11-21 14:32 |
2022-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196886
|
7.5 |
HIGH
Network
|
ibm
|
qradar_network_security
|
IBM QRadar Network Security 5.4.0 and 5.5.0 discloses sensitive information to unauthorized users which could be used to mount further attacks against the system. IBM X-Force ID: 174339.
|
CWE-200
Information Exposure
|
CVE-2020-4159
|
2024-11-21 14:32 |
2022-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196887
|
7.5 |
HIGH
Network
|
ibm
|
qradar_network_security
|
IBM QRadar Network Security 5.4.0 and 5.5.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to exter…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2020-4157
|
2024-11-21 14:32 |
2022-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196888
|
9.8 |
CRITICAL
Network
|
ibm
|
security_siteprotector_system
|
IBM SiteProtector Appliance 3.1.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external compon…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2020-4150
|
2024-11-21 14:32 |
2022-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196889
|
5.5 |
MEDIUM
Local
|
ibm
|
security_siteprotector_system
|
IBM SiteProtector Appliance 3.1.1 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 174049.
|
NVD-CWE-noinfo
|
CVE-2020-4138
|
2024-11-21 14:32 |
2022-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196890
|
7.8 |
HIGH
Local
|
hcltech
|
domino
|
HCL Domino is affected by an Insufficient Access Control vulnerability. An authenticated attacker with local access to the system could exploit this vulnerability to attain escalation of privileges, …
|
NVD-CWE-Other
|
CVE-2020-4107
|
2024-11-21 14:32 |
2022-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
