|
209481
|
6.1 |
MEDIUM
Network
|
combodo
|
itop
|
Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 3.0.0, two cookies are created for the same session, which leads to a possibility to steal user session. This…
|
-
|
CVE-2020-15220
|
2024-11-21 14:05 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209482
|
4.3 |
MEDIUM
Network
|
combodo
|
itop
|
Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 3.0.0, when a download error is triggered in the user portal, an SQL query is displayed to the user. This is …
|
-
|
CVE-2020-15219
|
2024-11-21 14:05 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209483
|
6.8 |
MEDIUM
Network
|
combodo
|
itop
|
Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 3.0.0, admin pages are cached, so that their content is visible after deconnection by using the browser back …
|
-
|
CVE-2020-15218
|
2024-11-21 14:05 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209484
|
7.0 |
HIGH
Local
|
bitdefender
|
hypervisor_introspection
|
Compiler Optimization Removal or Modification of Security-critical Code vulnerability in IntPeParseUnwindData() results in multiple dereferences to the same pointer. If the pointer is located in memo…
|
NVD-CWE-Other
|
CVE-2020-15294
|
2024-11-21 14:05 |
2020-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209485
|
5.5 |
MEDIUM
Local
|
bitdefender
|
hypervisor_introspection
|
Memory corruption in IntLixCrashDumpDmesg, IntLixTaskFetchCmdLine, IntLixFileReadDentry and IntLixFileGetPath due to insufficient guest-data input validation may lead to denial of service conditions.
|
CWE-20
Improper Input Validation
|
CVE-2020-15293
|
2024-11-21 14:05 |
2020-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209486
|
5.5 |
MEDIUM
Local
|
bitdefender
|
hypervisor_introspection
|
Lack of validation on data read from guest memory in IntPeGetDirectory, IntPeParseUnwindData, IntLogExceptionRecord, IntKsymExpandSymbol and IntLixTaskDumpTree may lead to out-of-bounds read or it co…
|
CWE-20
Improper Input Validation
|
CVE-2020-15292
|
2024-11-21 14:05 |
2020-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209487
|
4.3 |
MEDIUM
Network
|
broadcom
|
fabric_operating_system
|
Brocade Fabric OS versions before v9.0.0 and after version v8.1.0, configured in Virtual Fabric mode contain a weakness in the ldap implementation that could allow a remote ldap user to login in the …
|
NVD-CWE-noinfo
|
CVE-2020-15376
|
2024-11-21 14:05 |
2020-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209488
|
6.7 |
MEDIUM
Local
|
broadcom
|
fabric_operating_system
|
Brocade Fabric OS versions before v9.0.0, v8.2.2c, v8.2.1e, v8.1.2k, v8.2.0_CBN3, v7.4.2g contain an improper input validation weakness in the command line interface when secccrypptocfg is invoked. T…
|
CWE-20
Improper Input Validation
|
CVE-2020-15375
|
2024-11-21 14:05 |
2020-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209489
|
9.8 |
CRITICAL
Network
|
askey
|
ap5100w_firmware
|
Network Analysis functionality in Askey AP5100W_Dual_SIG_1.01.097 and all prior versions allows remote attackers to execute arbitrary commands via a shell metacharacter in the ping, traceroute, or ro…
|
CWE-78
OS Command
|
CVE-2020-15357
|
2024-11-21 14:05 |
2020-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209490
|
5.2 |
MEDIUM
Local
|
linuxfoundation
fedoraproject
debian
|
containerd
fedora
debian_linux
|
containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows. In containerd before versions 1.3.9 and 1.4.3, the containerd-shim API is improperly exposed t…
|
-
|
CVE-2020-15257
|
2024-11-21 14:05 |
2020-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
