|
196781
|
5.3 |
MEDIUM
Network
|
icegram
|
email_subscribers_\&_newsletters
|
Missing Authentication for Critical Function in Icegram Email Subscribers & Newsletters Plugin for WordPress prior to version 4.5.6 allows a remote, unauthenticated attacker to conduct unauthenticate…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-5780
|
2024-11-21 14:34 |
2020-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196782
|
6.1 |
MEDIUM
Network
|
yodobashi
|
yodobashi
|
Yodobashi App for Android versions 1.8.7 and earlier allows remote attackers to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phish…
|
CWE-601
Open Redirect
|
CVE-2020-5627
|
2024-11-21 14:34 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196783
|
7.7 |
HIGH
Network
|
cloudfoundry
|
gorouter
cf-deployment
|
Cloud Foundry Routing (Gorouter) versions prior to 0.206.0 allow a malicious developer with "cf push" access to cause denial-of-service to the CF cluster by pushing an app that returns specially craf…
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2020-5420
|
2024-11-21 14:34 |
2020-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196784
|
4.3 |
MEDIUM
Network
|
cloudfoundry
|
capi-release
cf-deployment
|
Cloud Foundry CAPI (Cloud Controller) versions prior to 1.98.0 allow authenticated users having only the "cloud_controller.read" scope, but no roles in any spaces, to list all droplets in all spaces …
|
CWE-863
Incorrect Authorization
|
CVE-2020-5418
|
2024-11-21 14:34 |
2020-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196785
|
7.5 |
HIGH
Network
|
dell
|
emc_elastic_cloud_storage
|
Dell EMC ECS, versions prior to 3.5, contains an Exposure of Resource vulnerability. A remote unauthenticated attacker can access the list of DT (Directory Table) objects of all internally running se…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2020-5386
|
2024-11-21 14:34 |
2020-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196786
|
6.8 |
MEDIUM
Physics
|
dell
|
inspiron_7352_bios
|
Dell Inspiron 7352 BIOS versions prior to A12 contain a UEFI BIOS Boot Services overwrite vulnerability. A local attacker with access to system memory may exploit this vulnerability by overwriting th…
|
NVD-CWE-Other
|
CVE-2020-5379
|
2024-11-21 14:34 |
2020-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196787
|
6.8 |
MEDIUM
Physics
|
dell
|
g7_17_7790_bios
|
Dell G7 17 7790 BIOS versions prior to 1.13.2 contain a UEFI BIOS Boot Services overwrite vulnerability. A local attacker with access to system memory may exploit this vulnerability by overwriting th…
|
CWE-416
Use After Free
|
CVE-2020-5378
|
2024-11-21 14:34 |
2020-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196788
|
6.8 |
MEDIUM
Physics
|
dell
|
inspiron_7347_bios
|
Dell Inspiron 7347 BIOS versions prior to A13 contain a UEFI BIOS Boot Services overwrite vulnerability. A local attacker with access to system memory may exploit this vulnerability by overwriting th…
|
CWE-416
Use After Free
|
CVE-2020-5376
|
2024-11-21 14:34 |
2020-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196789
|
8.8 |
HIGH
Network
|
dell
|
emc_powerscale_onefs
emc_isilon_onefs
|
Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability. An authenticated malicious user may exploit this vulnerabili…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2020-5369
|
2024-11-21 14:34 |
2020-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196790
|
7.5 |
HIGH
Network
|
tradingtechnologies
|
trading_technologies_messaging
|
A flaw in Trading Technologies Messaging 7.1.28.3 (ttmd.exe) relates to invalid parameter handling when calling strcpy_s() with an invalid parameter (i.e., a long src string parameter) as a part of p…
|
NVD-CWE-Other
|
CVE-2020-5779
|
2024-11-21 14:34 |
2020-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
