|
210291
|
7.5 |
HIGH
Network
|
pilz
|
pmc
|
In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), a user's password may be changed by an attacker without knowledge of the current password.
|
CWE-640
Weak Password Recovery Mechanism for Forgotten Password
|
CVE-2020-12067
|
2024-11-21 13:59 |
2022-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210292
|
7.5 |
HIGH
Network
|
badgermeter
|
moni\
|
In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the image-relocator module.
|
-
|
CVE-2020-12508
|
2024-11-21 13:59 |
2022-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210293
|
8.8 |
HIGH
Network
|
badgermeter
|
moni\
|
In s::can moni::tools before version 4.2 an authenticated attacker could get full access to the database through SQL injection. This may result in loss of confidentiality, loss of integrity and DoS.
|
-
|
CVE-2020-12507
|
2024-11-21 13:59 |
2022-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210294
|
7.5 |
HIGH
Network
|
badgermeter
|
moni\
|
In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the camera-file module.
|
-
|
CVE-2020-12509
|
2024-11-21 13:59 |
2022-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210295
|
8.8 |
HIGH
Adjacent
|
contiki-ng
|
contiki-ng
|
A buffer overflow in os/net/mac/ble/ble-l2cap.c in the BLE stack in Contiki-NG 4.4 and earlier allows an attacker to execute arbitrary code via malicious L2CAP frames.
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-12140
|
2024-11-21 13:59 |
2021-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210296
|
5.5 |
MEDIUM
Local
|
vivo
|
jovi_smart_scene
|
The attacker can access the sensitive information stored within the jovi Smart Scene module by entering carefully constructed commands without requesting permission.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2020-12488
|
2024-11-21 13:59 |
2021-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210297
|
9.1 |
CRITICAL
Network
|
contiki-ng
|
contiki-ng
|
An out-of-bounds read in the SNMP stack in Contiki-NG 4.4 and earlier allows an attacker to cause a denial of service and potentially disclose information via crafted SNMP packets to snmp_ber_decode_…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-12141
|
2024-11-21 13:59 |
2021-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210298
|
10.0 |
CRITICAL
Network
|
emerson
|
wireless_1410_gateway_firmware
wireless_1420_gateway_firmware
wireless_1552wu_gateway_firmware
|
There is a flaw in the code used to configure the internal gateway firewall when the gateway's VLAN feature is enabled. If a user enables the VLAN setting, the internal gateway firewall becomes disab…
|
NVD-CWE-Other
|
CVE-2020-12030
|
2024-11-21 13:59 |
2021-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210299
|
9.9 |
CRITICAL
Network
|
flexera
|
flexnet_code_insight
|
An elevated privileges issue related to Spring MVC calls impacts Code Insight v7.x releases up to and including 2020 R1 (7.11.0-64).
|
NVD-CWE-noinfo
|
CVE-2020-12083
|
2024-11-21 13:59 |
2021-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210300
|
5.4 |
MEDIUM
Network
|
flexera
|
flexnet_code_insight
|
A stored cross-site scripting issue impacts certain areas of the Web UI for Code Insight v7.x releases up to and including 2020 R1 (7.11.0-64).
|
CWE-79
Cross-site Scripting
|
CVE-2020-12082
|
2024-11-21 13:59 |
2021-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
