|
197791
|
6.5 |
MEDIUM
Network
|
cisco
|
email_security_appliance
|
A vulnerability in the zip decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) c…
|
CWE-20
Improper Input Validation
|
CVE-2020-3134
|
2024-11-21 14:30 |
2020-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197792
|
6.5 |
MEDIUM
Network
|
cisco
|
webex_teams
|
A vulnerability in the Cisco Webex Teams client for Windows could allow an authenticated, remote attacker to cause the client to crash, resulting in a denial of service (DoS) condition. The attacker …
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-3131
|
2024-11-21 14:30 |
2020-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197793
|
4.8 |
MEDIUM
Network
|
cisco
|
unity_connection
|
A vulnerability in the web-based management interface of Cisco Unity Connection Software could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack. The vulne…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3129
|
2024-11-21 14:30 |
2020-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197794
|
6.1 |
MEDIUM
Network
|
cisco
|
sg250x-24_firmware
sg250x-24p_firmware
sg250x-48_firmware
sg250x-48p_firmware
sg250-08_firmware
sg250-08hp_firmware
sg250-10p_firmware
sg250-18_firmware
sg250-26_firmware
s…
|
A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3121
|
2024-11-21 14:30 |
2020-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197795
|
5.4 |
MEDIUM
Network
|
openmrs
|
appointment_scheduling_module
|
A vulnerability was found in OpenMRS Appointment Scheduling Module up to 1.12.x. It has been classified as problematic. This affects the function validateFieldName of the file api/src/main/java/org/o…
|
CWE-79
Cross-site Scripting
|
CVE-2020-36635
|
2024-11-21 14:29 |
2022-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197796
|
9.1 |
CRITICAL
Network
|
unzip_project
|
unzip
|
Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory.
|
CWE-22
Path Traversal
|
CVE-2020-36561
|
2024-11-21 14:29 |
2022-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197797
|
5.4 |
MEDIUM
Network
|
indeed
|
util
|
A vulnerability classified as problematic has been found in Indeed Engineering util up to 1.0.33. Affected is the function visit/appendTo of the file varexport/src/main/java/com/indeed/util/varexport…
|
-
|
CVE-2020-36634
|
2024-11-21 14:29 |
2022-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197798
|
5.3 |
MEDIUM
Network
|
labstack
|
echo
|
Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has p…
|
CWE-22
Path Traversal
|
CVE-2020-36565
|
2024-11-21 14:29 |
2022-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197799
|
4.4 |
MEDIUM
Local
|
hitachi
|
infrastructure_analytics_advisor
ops_center_analyzer
ops_center_viewpoint
|
Incorrect Default Permissions vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component), Hitachi …
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-36605
|
2024-11-21 14:29 |
2022-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197800
|
7.8 |
HIGH
Local
|
apple
|
macos
|
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.0.1. Processing a maliciously crafted font may lead to arbitrary code execution.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-36615
|
2024-11-21 14:29 |
2023-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
