|
197391
|
4.3 |
MEDIUM
Network
|
ibm
|
planning_analytics_local
|
IBM Planning Analytics Local 2.0.9.2 and IBM Planning Analytics Workspace 57 could expose data to non-privleged users by not invalidating TM1Web user sessions. IBM X-Force ID: 186022.
|
CWE-200
Information Exposure
|
CVE-2020-4649
|
2024-11-21 14:33 |
2020-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197392
|
4.3 |
MEDIUM
Adjacent
|
ibm
|
resilient_security_orchestration_automation_and_response
|
IBM Resilient SOAR V38.0 could allow an attacker on the internal net work to provide the server with a spoofed source IP address. IBM X-Force ID: 190567.
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2020-4864
|
2024-11-21 14:33 |
2020-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197393
|
7.8 |
HIGH
Local
|
ibm
|
i2_analysts_notebook
|
IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, a…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-4724
|
2024-11-21 14:33 |
2020-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197394
|
7.8 |
HIGH
Local
|
ibm
|
i2_analysts_notebook
|
IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, a…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-4723
|
2024-11-21 14:33 |
2020-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197395
|
7.8 |
HIGH
Local
|
ibm
|
i2_analysts_notebook
|
IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, a…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-4722
|
2024-11-21 14:33 |
2020-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197396
|
7.8 |
HIGH
Local
|
ibm
|
i2_analysts_notebook
|
IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, a…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-4721
|
2024-11-21 14:33 |
2020-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197397
|
6.5 |
MEDIUM
Network
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot…
|
CWE-22
Path Traversal
|
CVE-2020-4782
|
2024-11-21 14:33 |
2020-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197398
|
7.5 |
HIGH
Network
|
ibm
|
sterling_connect\
|
IBM Sterling Connect Direct for Microsoft Windows 4.7, 4.8, 6.0, and 6.1 could allow a remote attacker to cause a denial of service, caused by a buffer over-read. Bysending a specially crafted reques…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-4767
|
2024-11-21 14:33 |
2020-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197399
|
8.6 |
HIGH
Local
|
sonicwall
|
global_vpn_client
|
SonicWall Global VPN client version 4.10.4.0314 and earlier have an insecure library loading (DLL hijacking) vulnerability. Successful exploitation could lead to remote code execution in the target s…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2020-5145
|
2024-11-21 14:33 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197400
|
7.8 |
HIGH
Local
|
sonicwall
|
global_vpn_client
|
SonicWall Global VPN client version 4.10.4.0314 and earlier allows unprivileged windows user to elevate privileges to SYSTEM through loaded process hijacking vulnerability.
|
CWE-426
Untrusted Search Path
|
CVE-2020-5144
|
2024-11-21 14:33 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
