|
197771
|
5.4 |
MEDIUM
Network
|
vmware
|
app_volumes
|
VMware App Volumes 2.x prior to 2.18.6 and VMware App Volumes 4 prior to 2006 contain a Stored Cross-Site Scripting (XSS) vulnerability. A malicious actor with access to create and edit applications …
|
CWE-79
Cross-site Scripting
|
CVE-2020-3975
|
2024-11-21 14:32 |
2020-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197772
|
5.3 |
MEDIUM
Network
|
vmware
|
vcenter_server
esxi
cloud_foundation
|
VMware ESXi and vCenter Server contain a partial denial of service vulnerability in their respective authentication services. VMware has evaluated the severity of this issue to be in the Moderate sev…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-3976
|
2024-11-21 14:32 |
2020-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197773
|
2.7 |
LOW
Network
|
ibm
|
content_navigator
|
IBM Content Navigator 3.0.7 and 3.0.8 is vulnerable to improper input validation. A malicious administrator could bypass the user interface and send requests to the IBM Content Navigator server with …
|
CWE-20
Improper Input Validation
|
CVE-2020-4548
|
2024-11-21 14:32 |
2020-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197774
|
6.5 |
MEDIUM
Network
|
ibm
|
elastic_storage_server
|
IBM Spectrum Scale for IBM Elastic Storage Server 5.3.0 through 5.3.6 could allow an authenticated user to cause a denial of service during deployment or upgrade if GUI specific services are enabled.…
|
NVD-CWE-noinfo
|
CVE-2020-4381
|
2024-11-21 14:32 |
2020-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197775
|
9.8 |
CRITICAL
Network
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted so…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2020-4589
|
2024-11-21 14:32 |
2020-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197776
|
8.1 |
HIGH
Network
|
ibm
|
qradar_security_information_and_event_manager
|
IBM QRadar 7.2.0 thorugh 7.2.9 could allow an authenticated user to overwrite or delete arbitrary files due to a flaw after WinCollect installation. IBM X-Force ID: 181861.
|
NVD-CWE-noinfo
|
CVE-2020-4486
|
2024-11-21 14:32 |
2020-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197777
|
6.5 |
MEDIUM
Network
|
ibm
|
qradar_security_information_and_event_manager
|
IBM QRadar 7.2.0 through 7.2.9 could allow an authenticated user to disable the Wincollect service which could aid an attacker in bypassing security mechanisms in future attacks. IBM X-Force ID: 1818…
|
NVD-CWE-noinfo
|
CVE-2020-4485
|
2024-11-21 14:32 |
2020-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197778
|
6.1 |
MEDIUM
Network
|
ibm
|
jazz_reporting_service
|
IBM Jazz Reporting Service 7.0 and 7.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionali…
|
CWE-79
Cross-site Scripting
|
CVE-2020-4541
|
2024-11-21 14:32 |
2020-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197779
|
6.1 |
MEDIUM
Network
|
ibm
|
jazz_reporting_service
|
IBM Jazz Reporting Service 6.0.2, 6.0.6, 6.0.6.1, 7.0, and 7.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering …
|
CWE-79
Cross-site Scripting
|
CVE-2020-4539
|
2024-11-21 14:32 |
2020-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197780
|
6.1 |
MEDIUM
Network
|
ibm
|
jazz_reporting_service
|
IBM Jazz Reporting Service 6.0.6, 6.0.6.1, and 7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended f…
|
CWE-79
Cross-site Scripting
|
CVE-2020-4533
|
2024-11-21 14:32 |
2020-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
