|
196651
|
7.5 |
HIGH
Network
|
rockwellautomation
|
factorytalk_linx
|
An attacker can craft and send an OpenNamespace message to port 4241 with valid session-id that triggers an unhandled exception in CFTLDManager::HandleRequest function in RnaDaSvr.dll, resulting in p…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2020-5801
|
2024-11-21 14:34 |
2020-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196652
|
4.8 |
MEDIUM
Network
|
nec
|
ism_server
|
iSM client versions from V5.1 prior to V12.1 running on NEC Storage Manager or NEC Storage Manager Express does not verify a server certificate properly, which allows a man-in-the-middle attacker to …
|
CWE-295
Improper Certificate Validation
|
CVE-2020-5684
|
2024-11-21 14:34 |
2020-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196653
|
7.8 |
HIGH
Local
|
epson
|
offirio_synergyware_printdirector
epsonnet_setupmanager
|
Untrusted search path vulnerability in self-extracting files created by EpsonNet SetupManager versions 2.2.14 and earlier, and Offirio SynergyWare PrintDirector versions 1.6x/1.6y and earlier allows …
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2020-5681
|
2024-11-21 14:34 |
2020-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196654
|
7.5 |
HIGH
Network
|
tenable
|
tenable.sc
|
In certain scenarios in Tenable.sc prior to 5.17.0, a scanner could potentially be used outside the user's defined scan zone without a particular zone being specified within the Automatic Distributio…
|
NVD-CWE-noinfo
|
CVE-2020-5808
|
2024-11-21 14:34 |
2020-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196655
|
8.1 |
HIGH
Network
|
marvell
|
qconvergeconsole
|
Relative Path Traversal in Marvell QConvergeConsole GUI 5.5.0.74 allows a remote, authenticated attacker to delete arbitrary files on disk as SYSTEM or root.
|
CWE-22
Path Traversal
|
CVE-2020-5803
|
2024-11-21 14:34 |
2020-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196656
|
7.5 |
HIGH
Network
|
weseek
|
growi
|
Directory traversal vulnerability in GROWI versions prior to v4.2.3 (v4.2 Series), GROWI versions prior to v4.1.12 (v4.1 Series), and GROWI v3 series and earlier GROWI versions prior to v4.2.3 (v4.2 …
|
CWE-22
Path Traversal
|
CVE-2020-5683
|
2024-11-21 14:34 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196657
|
7.5 |
HIGH
Network
|
weseek
|
growi
|
Improper input validation in GROWI versions prior to v4.2.3 (v4.2 Series), GROWI versions prior to v4.1.12 (v4.1 Series), and GROWI v3 series and earlier GROWI versions prior to v4.2.3 (v4.2 Series),…
|
CWE-20
CWE-400
Improper Input Validation
Uncontrolled Resource Consumption
|
CVE-2020-5682
|
2024-11-21 14:34 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196658
|
7.4 |
HIGH
Adjacent
|
mitsubishielectric
|
melsec_iq-f_fx5u_cpu_firmware
|
Improper check or handling of exceptional conditions in MELSEC iQ-F series FX5U(C) CPU unit firmware version 1.060 and earlier allows an attacker to cause a denial-of-service (DoS) condition on progr…
|
NVD-CWE-noinfo
|
CVE-2020-5665
|
2024-11-21 14:34 |
2020-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196659
|
9.8 |
CRITICAL
Network
|
soliton
|
filezen
|
Directory traversal vulnerability in FileZen versions from V3.0.0 to V4.2.2 allows remote attackers to upload an arbitrary file in a specific directory via unspecified vectors. As a result, an arbitr…
|
CWE-22
Path Traversal
|
CVE-2020-5639
|
2024-11-21 14:34 |
2020-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196660
|
6.8 |
MEDIUM
Adjacent
|
necplatforms
|
aterm_sa3500g_firmware
|
Improper validation of integrity check value vulnerability in Aterm SA3500G firmware versions prior to Ver. 3.5.9 allows an attacker with an administrative privilege to execute a malicious program.
|
CWE-354
Improper Validation of Integrity Check Value
|
CVE-2020-5637
|
2024-11-21 14:34 |
2020-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
