|
197411
|
8.1 |
HIGH
Network
|
avaya
|
equinox_conferencing
|
An XML External Entities (XXE) vulnerability in Media Server component of Avaya Equinox Conferencing could allow an authenticated, remote attacker to gain read access to information that is stored on…
|
CWE-611
XXE
|
CVE-2020-7037
|
2024-11-21 14:36 |
2021-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197412
|
7.8 |
HIGH
Local
|
arubanetworks
|
clearpass_policy_manager
|
A local escalation of privilege vulnerability was discovered in Aruba ClearPass Policy Manager version(s) prior to 6.9.5, 6.8.9, 6.7.14-HF1. Aruba has released patches for Aruba ClearPass Policy Mana…
|
NVD-CWE-noinfo
|
CVE-2020-7123
|
2024-11-21 14:36 |
2021-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197413
|
6.5 |
MEDIUM
Network
|
avaya
|
callback_assist
|
An XML External Entities (XXE)vulnerability in Callback Assist could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system. The affected vers…
|
CWE-611
XXE
|
CVE-2020-7036
|
2024-11-21 14:36 |
2021-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197414
|
6.5 |
MEDIUM
Network
|
avaya
|
aura_orchestration_designer
|
An XML External Entities (XXE)vulnerability in the web-based user interface of Avaya Aura Orchestration Designer could allow an authenticated, remote attacker to gain read access to information that …
|
CWE-611
XXE
|
CVE-2020-7035
|
2024-11-21 14:36 |
2021-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197415
|
8.8 |
HIGH
Network
|
avaya
|
session_border_controller_for_enterprise
|
A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow an authenticated, remote attacker to send specially crafted messages and execute arbitrary commands wit…
|
CWE-77
Command Injection
|
CVE-2020-7034
|
2024-11-21 14:36 |
2021-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197416
|
4.3 |
MEDIUM
Network
|
mcafee
|
advanced_threat_defense
|
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefu…
|
NVD-CWE-noinfo
|
CVE-2020-7270
|
2024-11-21 14:36 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197417
|
4.3 |
MEDIUM
Network
|
mcafee
|
advanced_threat_defense
|
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefu…
|
NVD-CWE-noinfo
|
CVE-2020-7269
|
2024-11-21 14:36 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197418
|
7.5 |
HIGH
Network
|
forcepoint
|
web_security_content_gateway
data_loss_prevention
email_security
|
Forcepoint Web Security Content Gateway versions prior to 8.5.4 improperly process XML input, leading to information disclosure.
|
CWE-611
XXE
|
CVE-2020-6590
|
2024-11-21 14:36 |
2021-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197419
|
7.8 |
HIGH
Local
|
bosch
|
video_streaming_gateway
|
Calling an executable through an Uncontrolled Search Path Element in the Bosch Video Streaming Gateway installer up to and including version 6.45.10 potentially allows an attacker to execute arbitrar…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2020-6790
|
2024-11-21 14:36 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197420
|
7.8 |
HIGH
Local
|
bosch
|
monitor_wall
|
Loading a DLL through an Uncontrolled Search Path Element in the Bosch Monitor Wall installer up to and including version 10.00.0164 potentially allows an attacker to execute arbitrary code on a vict…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2020-6789
|
2024-11-21 14:36 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
