|
198241
|
9.8 |
CRITICAL
Network
|
mozilla
canonical
debian
opensuse
|
thunderbird
firefox
firefox_esr
ubuntu_linux
debian_linux
leap
|
A buffer overflow could occur when parsing and validating SCTP chunks in WebRTC. This could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox ESR <…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-6831
|
2024-11-21 14:36 |
2020-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198242
|
7.5 |
HIGH
Network
|
mozilla
|
firefox
|
For native-to-JS bridging, the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token was being used for JS-to-native also, but it isn't need…
|
CWE-200
Information Exposure
|
CVE-2020-6830
|
2024-11-21 14:36 |
2020-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198243
|
8.1 |
HIGH
Network
|
hpe
|
nimbleos
|
Potential remote access security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to access and modify sensitive information on the system. …
|
NVD-CWE-noinfo
|
CVE-2020-7139
|
2024-11-21 14:36 |
2020-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198244
|
8.8 |
HIGH
Network
|
hpe
|
nimbleos
|
Potential remote code execution security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to gain elevated privileges on the array. The foll…
|
NVD-CWE-noinfo
|
CVE-2020-7138
|
2024-11-21 14:36 |
2020-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198245
|
6.7 |
MEDIUM
Local
|
hpe
|
superdome_flex_server_firmware
|
A validation issue in HPE Superdome Flex's RMC component may allow local elevation of privilege. Apply HPE Superdome Flex Server version 3.25.46 or later to resolve this issue.
|
CWE-20
Improper Input Validation
|
CVE-2020-7137
|
2024-11-21 14:36 |
2020-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198246
|
6.1 |
MEDIUM
Network
|
pcs
|
dexicon_enterprise
|
PCS DEXICON 3.4.1 allows XSS via the loginName parameter in login_action.jsp.
|
CWE-79
Cross-site Scripting
|
CVE-2020-6956
|
2024-11-21 14:36 |
2020-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198247
|
6.5 |
MEDIUM
Adjacent
|
google
apple
|
android
iphone_os
ipados
mac_os_x
|
Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations where a Hardware Random Number Generator (HRNG) shou…
|
NVD-CWE-noinfo
|
CVE-2020-6616
|
2024-11-21 14:36 |
2020-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198248
|
7.8 |
HIGH
Local
|
mcafee
|
active_response
|
Privilege Escalation vulnerability in McAfee Active Response (MAR) for Linux prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not be…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7290
|
2024-11-21 14:36 |
2020-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198249
|
7.8 |
HIGH
Local
|
mcafee
|
active_response
|
Privilege Escalation vulnerability in McAfee Active Response (MAR) for Windows prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not …
|
CWE-269
Improper Privilege Management
|
CVE-2020-7289
|
2024-11-21 14:36 |
2020-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198250
|
7.8 |
HIGH
Local
|
mcafee
|
endpoint_detection_and_response
|
Privilege Escalation vulnerability in McAfee Exploit Detection and Response (EDR) for Mac prior to 3.1.0 Hotfix 1 allows a malicious script or program to perform functions that the local executing us…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7288
|
2024-11-21 14:36 |
2020-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
