|
213071
|
- |
|
-
|
-
|
An attacker could exploit the vulnerability by
injecting garbage data or specially crafted data. Depending on the data injected each process might be
affected differently. The process could crash or …
|
-
|
CVE-2020-11639
|
2024-11-21 13:58 |
2024-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213072
|
6.5 |
MEDIUM
Network
|
netiq
|
access_manager
|
This allows the information exposure to unauthorized users. This issue affects NetIQ Access Manager using version 4.5 or before
|
NVD-CWE-noinfo
|
CVE-2020-11843
|
2024-11-21 13:58 |
2024-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213073
|
- |
|
-
|
-
|
Allocation of Resources Without Limits or Throttling vulnerability in OpenText NetIQ Privileged Account Manager on Linux, Windows, 64 bit allows Flooding.This issue affects NetIQ Privileged Account M…
|
-
|
CVE-2020-11862
|
2024-11-21 13:58 |
2024-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213074
|
4.8 |
MEDIUM
Network
|
stormshield
|
stormshield_network_security
|
An issue was discovered in Stormshield SNS 3.8.0. Authenticated Stored XSS in the admin login panel leads to SSL VPN credential theft. A malicious disclaimer file can be uploaded from the admin panel…
|
CWE-79
Cross-site Scripting
|
CVE-2020-11711
|
2024-11-21 13:58 |
2023-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213075
|
5.5 |
MEDIUM
Local
|
canonical
debian
|
ubuntu_linux
debian_linux
|
It was discovered that aufs improperly managed inode reference counts in the vfsub_dentry_open() method. A local attacker could use this vulnerability to cause a denial of service attack.
|
NVD-CWE-Other
|
CVE-2020-11935
|
2024-11-21 13:58 |
2023-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213076
|
8.1 |
HIGH
Network
|
thimpress
|
learnpress
|
The LearnPress plugin before 3.2.6.9 for WordPress allows remote attackers to escalate the privileges of any user to LP Instructor via the accept-to-be-teacher action parameter.
|
CWE-862
Missing Authorization
|
CVE-2020-11511
|
2024-11-21 13:58 |
2021-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213077
|
7.8 |
HIGH
Local
|
zscaler
|
client_connector
|
The Zscaler Client Connector for Windows prior to 2.1.2.105 had a DLL hijacking vulnerability caused due to the configuration of OpenSSL. A local adversary may be able to execute arbitrary code in th…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2020-11634
|
2024-11-21 13:58 |
2021-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213078
|
7.8 |
HIGH
Local
|
zscaler
|
client_connector
|
The Zscaler Client Connector prior to 2.1.2.150 did not quote the search path for services, which allows a local adversary to execute code with system privileges.
|
CWE-428
Unquoted Search Path or Element
|
CVE-2020-11632
|
2024-11-21 13:58 |
2021-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213079
|
9.8 |
CRITICAL
Network
|
zscaler
|
client_connector
|
The Zscaler Client Connector for Windows prior to 2.1.2.74 had a stack based buffer overflow when connecting to misconfigured TLS servers. An adversary would potentially have been able to execute arb…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-11633
|
2024-11-21 13:58 |
2021-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213080
|
5.5 |
MEDIUM
Local
|
wizconnected
|
colors_a60_firmware
|
An issue was discovered in WiZ Colors A60 1.14.0. Wi-Fi credentials are stored in cleartext in flash memory, which presents an information-disclosure risk for a discarded or resold device.
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2020-11924
|
2024-11-21 13:58 |
2021-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
