|
197321
|
6.7 |
MEDIUM
Local
|
apache
fedoraproject
debian
|
guacamole
fedora
debian_linux
|
Apache Guacamole 1.1.0 and older may mishandle pointers involved inprocessing data received via RDP static virtual channels. If a userconnects to a malicious or compromised RDP server, a series ofspe…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-9498
|
2024-11-21 14:40 |
2020-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197322
|
4.4 |
MEDIUM
Local
|
apache
fedoraproject
debian
|
guacamole
fedora
debian_linux
|
Apache Guacamole 1.1.0 and older do not properly validate datareceived from RDP servers via static virtual channels. If a userconnects to a malicious or compromised RDP server, specially-craftedPDUs …
|
CWE-20
Improper Input Validation
|
CVE-2020-9497
|
2024-11-21 14:40 |
2020-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197323
|
8.8 |
HIGH
Network
|
tibco
|
managed_file_transfer_internet_server
managed_file_transfer_command_center
|
The MFT admin service component of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center and TIBCO Managed File Transfer Internet Server contains a vulnerability that theoretically allows …
|
CWE-79
Cross-site Scripting
|
CVE-2020-9414
|
2024-11-21 14:40 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197324
|
9.6 |
CRITICAL
Network
|
tibco
|
managed_file_transfer_internet_server
managed_file_transfer_command_center
|
The MFT Browser file transfer client and MFT Browser admin client components of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center and TIBCO Managed File Transfer Internet Server contai…
|
CWE-79
Cross-site Scripting
|
CVE-2020-9413
|
2024-11-21 14:40 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197325
|
7.5 |
HIGH
Network
|
apache
|
skywalking
|
**Resolved** When use H2/MySQL/TiDB as Apache SkyWalking storage, the metadata query through GraphQL protocol, there is a SQL injection vulnerability, which allows to access unpexcted data. Apache Sk…
|
CWE-89
SQL Injection
|
CVE-2020-9483
|
2024-11-21 14:40 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197326
|
9.8 |
CRITICAL
Network
|
magento
|
magento
|
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a security mitigation bypass vulnerability. Successful exploitation could lead to…
|
NVD-CWE-noinfo
|
CVE-2020-9632
|
2024-11-21 14:40 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197327
|
9.8 |
CRITICAL
Network
|
magento
|
magento
|
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a security mitigation bypass vulnerability. Successful exploitation could lead to…
|
NVD-CWE-noinfo
|
CVE-2020-9631
|
2024-11-21 14:40 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197328
|
9.8 |
CRITICAL
Network
|
magento
|
magento
|
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a business logic error vulnerability. Successful exploitation could lead to privi…
|
NVD-CWE-noinfo
|
CVE-2020-9630
|
2024-11-21 14:40 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197329
|
7.5 |
HIGH
Network
|
adobe
|
dng_software_development_kit
|
Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-9628
|
2024-11-21 14:40 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197330
|
7.5 |
HIGH
Network
|
adobe
|
dng_software_development_kit
|
Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-9627
|
2024-11-21 14:40 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
