|
198471
|
7.5 |
HIGH
Network
|
f5
|
big-ip_advanced_firewall_manager
|
On BIG-IP AFM 15.1.0-15.1.0.5, the Traffic Management Microkernel (TMM) may produce a core file while processing layer 4 (L4) behavioral denial-of-service (DoS) traffic.
|
NVD-CWE-noinfo
|
CVE-2020-5937
|
2024-11-21 14:34 |
2020-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198472
|
5.5 |
MEDIUM
Local
|
checkpoint
|
zonealarm
|
Check Point ZoneAlarm before version 15.8.139.18543 allows a local actor to delete arbitrary files while restoring files in Anti-Ransomware.
|
NVD-CWE-noinfo
|
CVE-2020-6022
|
2024-11-21 14:34 |
2020-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198473
|
7.8 |
HIGH
Local
|
nvidia
|
geforce_experience
|
NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in the ShadowPlay component which may lead to local privilege escalation, code execution, denial of service or inf…
|
NVD-CWE-noinfo
|
CVE-2020-5990
|
2024-11-21 14:34 |
2020-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198474
|
7.8 |
HIGH
Local
|
nvidia
|
geforce_experience
|
NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in its services in which a folder is created by nvcontainer.exe under normal user login with LOCAL_SYSTEM privileg…
|
NVD-CWE-noinfo
|
CVE-2020-5978
|
2024-11-21 14:34 |
2020-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198475
|
7.8 |
HIGH
Local
|
nvidia
|
geforce_experience
|
NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in NVIDIA Web Helper NodeJS Web Server in which an uncontrolled search path is used to load a node module, which m…
|
CWE-426
Untrusted Search Path
|
CVE-2020-5977
|
2024-11-21 14:34 |
2020-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198476
|
8.8 |
HIGH
Network
|
tipsandtricks-hq
|
simple_download_monitor
|
SQL injection vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to execute arbitrary SQL commands via a specially crafted URL.
|
CWE-89
SQL Injection
|
CVE-2020-5651
|
2024-11-21 14:34 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198477
|
6.1 |
MEDIUM
Network
|
tipsandtricks-hq
|
simple_download_monitor
|
Cross-site scripting vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2020-5650
|
2024-11-21 14:34 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198478
|
7.2 |
HIGH
Network
|
nagios
|
nagios_xi
|
Improper neutralization of argument delimiters in a command in Nagios XI 5.7.3 allows a remote, authenticated admin user to write to arbitrary files and ultimately execute code with the privileges of…
|
CWE-88
Argument Injection
|
CVE-2020-5792
|
2024-11-21 14:34 |
2020-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198479
|
7.2 |
HIGH
Network
|
nagios
|
nagios_xi
|
Improper neutralization of special elements used in an OS command in Nagios XI 5.7.3 allows a remote, authenticated admin user to execute operating system commands with the privileges of the apache u…
|
CWE-78
OS Command
|
CVE-2020-5791
|
2024-11-21 14:34 |
2020-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198480
|
6.5 |
MEDIUM
Network
|
nagios
|
nagios_xi
|
Cross-site request forgery in Nagios XI 5.7.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link.
|
CWE-352
Origin Validation Error
|
CVE-2020-5790
|
2024-11-21 14:34 |
2020-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
