|
210331
|
4.3 |
MEDIUM
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes a list of strings to `dlpack.to_dlpack` there is a memory leak following an expected validation failure. The issue occurs because the `…
|
CWE-20
Improper Input Validation
|
CVE-2020-15192
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210332
|
5.3 |
MEDIUM
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes an invalid argument to `dlpack.to_dlpack` the expected validations will cause variables to bind to `nullptr` while setting a `status` v…
|
CWE-252
Unchecked Return Value
|
CVE-2020-15191
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210333
|
5.3 |
MEDIUM
Network
|
google
opensuse
|
tensorflow
leap
|
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `tf.raw_ops.Switch` operation takes as input a tensor and a boolean and outputs two tensors. Depending on the boolean value, o…
|
-
|
CVE-2020-15190
|
2024-11-21 14:05 |
2020-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210334
|
9.8 |
CRITICAL
Network
|
broadcom
|
fabric_operating_system
|
Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input.
|
NVD-CWE-noinfo
|
CVE-2020-15374
|
2024-11-21 14:05 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210335
|
9.8 |
CRITICAL
Network
|
broadcom
|
fabric_operating_system
|
Multiple buffer overflow vulnerabilities in REST API in Brocade Fabric OS versions v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c could allow remote unauthenticated attackers to perform va…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2020-15373
|
2024-11-21 14:05 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210336
|
5.5 |
MEDIUM
Local
|
broadcom
|
fabric_operating_system
|
A vulnerability in the command-line interface in Brocade Fabric OS before Brocade Fabric OS v8.2.2a1, 8.2.2c, v7.4.2g, v8.2.0_CBN3, v8.2.1e, v8.1.2k, v9.0.0, could allow a local authenticated attacke…
|
CWE-913
Improper Control of Dynamically-Managed Code Resources
|
CVE-2020-15372
|
2024-11-21 14:05 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210337
|
9.8 |
CRITICAL
Network
|
broadcom
|
fabric_operating_system
|
Brocade Fabric OS versions before Brocade Fabric OS v9.0.0, v8.2.2c, v8.2.1e, v8.1.2k, v8.2.0_CBN3, contains code injection and privilege escalation vulnerability.
|
CWE-94
Code Injection
|
CVE-2020-15371
|
2024-11-21 14:05 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210338
|
6.5 |
MEDIUM
Network
|
broadcom
|
fabric_operating_system
|
Brocade Fabric OS versions before Brocade Fabric OS v7.4.2g could allow an authenticated, remote attacker to view a user password in cleartext. The vulnerability is due to incorrectly logging the use…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2020-15370
|
2024-11-21 14:05 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210339
|
8.8 |
HIGH
Network
|
broadcom
|
fabric_operating_system
|
Supportlink CLI in Brocade Fabric OS Versions v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c does not obfuscate the password field, which could expose users’ credentials of the remote serv…
|
CWE-521
Weak Password Requirements
|
CVE-2020-15369
|
2024-11-21 14:05 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210340
|
6.1 |
MEDIUM
Network
|
zohocorp
|
manageengine_applications_manager
|
Zoho ManageEngine Applications Manager before 14 build 14730 has no protection against jsp/header.jsp Cross-site Scripting (XSS) .
|
CWE-79
Cross-site Scripting
|
CVE-2020-15521
|
2024-11-21 14:05 |
2020-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
