|
196211
|
7.8 |
HIGH
Local
|
mcafee
|
endpoint_security
|
Privilege escalation vulnerability in McTray.exe in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update allows local users to spawn unrelated processes with elevated privileg…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7274
|
2024-11-21 14:36 |
2020-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196212
|
5.5 |
MEDIUM
Local
|
mcafee
|
endpoint_security
|
Accessing functionality not properly constrained by ACLs vulnerability in the autorun start-up protection in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update allows local …
|
CWE-269
Improper Privilege Management
|
CVE-2020-7273
|
2024-11-21 14:36 |
2020-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196213
|
5.5 |
MEDIUM
Local
|
mcafee
|
endpoint_security
|
Buffer Overflow via Environment Variables vulnerability in AMSI component in McAfee Endpoint Security (ENS) Prior to 10.7.0 February 2020 Update allows local users to disable Endpoint Security via a …
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-7261
|
2024-11-21 14:36 |
2020-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196214
|
7.8 |
HIGH
Local
|
mcafee
|
endpoint_security
|
Exploitation of Privilege/Trust vulnerability in file in McAfee Endpoint Security (ENS) Prior to 10.7.0 February 2020 Update allows local users to bypass local security protection via a carefully cra…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7259
|
2024-11-21 14:36 |
2020-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196215
|
6.3 |
MEDIUM
Local
|
mcafee
|
endpoint_security
|
Privilege escalation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2020 Update allows local users to cause the deletion and creation of files they would not nor…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7257
|
2024-11-21 14:36 |
2020-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196216
|
6.5 |
MEDIUM
Network
|
mcafee
|
endpoint_security
|
Exploiting incorrectly configured access control security levels vulnerability in ENS Firewall in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 and 10.6.1 April 2020 updates a…
|
CWE-862
Missing Authorization
|
CVE-2020-7278
|
2024-11-21 14:36 |
2020-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196217
|
7.2 |
HIGH
Network
|
dlink
|
dsl-gs225_firmware
|
D-Link DSL-GS225 J1 AU_1.0.4 devices allow an admin to execute OS commands by placing shell metacharacters after a supported CLI command, as demonstrated by ping -c1 127.0.0.1; cat/etc/passwd. The CL…
|
CWE-78
OS Command
|
CVE-2020-6765
|
2024-11-21 14:36 |
2020-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196218
|
5.4 |
MEDIUM
Network
|
fortinet
|
fortiadc_firmware
|
An improper neutralization of input vulnerability in the dashboard of FortiADC may allow an authenticated attacker to perform a cross site scripting attack (XSS) via the name parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2020-6647
|
2024-11-21 14:36 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196219
|
9.8 |
CRITICAL
Network
|
honeywell
|
notifier_webserver
|
Honeywell Notifier Web Server (NWS) Version 3.50 is vulnerable to a path traversal attack, which allows an attacker to bypass access to restricted directories. Honeywell has released a firmware updat…
|
CWE-22
Path Traversal
|
CVE-2020-6974
|
2024-11-21 14:36 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196220
|
7.5 |
HIGH
Network
|
visam
|
vbase_web-remote
vbase_editor
|
VISAM VBASE Editor version 11.5.0.2 and VBASE Web-Remote Module may allow input passed in the URL that is not properly verified before use, which may allow an attacker to read arbitrary files from lo…
|
CWE-22
Path Traversal
|
CVE-2020-7008
|
2024-11-21 14:36 |
2020-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
