|
196721
|
6.5 |
MEDIUM
Network
|
arcadyan
|
vrv9506jac23_firmware
|
The login password of the web administrative dashboard in Arcadyan Wifi routers VRV9506JAC23 is sent in cleartext, allowing an attacker to sniff and intercept traffic to learn the administrative cred…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2020-9420
|
2024-11-21 14:40 |
2022-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196722
|
6.8 |
MEDIUM
Physics
|
sonos
|
one_firmware
|
Some versions of Sonos One (1st and 2nd generation) allow partial or full memory access via attacker controlled hardware that can be attached to the Mini-PCI Express slot on the motherboard that host…
|
NVD-CWE-noinfo
|
CVE-2020-9285
|
2024-11-21 14:40 |
2022-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196723
|
7.5 |
HIGH
Network
|
huawei
|
magic_ui
emui
|
There is a Missing Cryptographic Step vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause DoS of Samgr.
|
NVD-CWE-Other
|
CVE-2020-9158
|
2024-11-21 14:40 |
2021-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196724
|
9.8 |
CRITICAL
Network
|
apache
qos
|
chainsaw
log4j
reload4j
|
A deserialization flaw was found in Apache Chainsaw versions prior to 2.1.0 which could lead to malicious code execution.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2020-9493
|
2024-11-21 14:40 |
2021-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196725
|
7.8 |
HIGH
Local
|
acronis
|
true_image_2020
|
An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe exposes a REST API that can be used by everyone, even unprivileged users. This API is used to communicate fr…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-9450
|
2024-11-21 14:40 |
2021-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196726
|
7.8 |
HIGH
Local
|
acronis
|
true_image_2020
|
An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe includes functionality to quarantine files by copying a suspected ransomware file from one directory to anot…
|
CWE-59
Link Following
|
CVE-2020-9452
|
2024-11-21 14:40 |
2021-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196727
|
5.5 |
MEDIUM
Local
|
acronis
|
true_image_2020
|
An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe keeps a log in a folder where unprivileged users have write permissions. The logs are generated in a predict…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-9451
|
2024-11-21 14:40 |
2021-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196728
|
5.5 |
MEDIUM
Local
|
huawei
|
magic_ui
emui
|
An application error verification vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to modify and delete user SMS messages.
|
NVD-CWE-noinfo
|
CVE-2020-9149
|
2024-11-21 14:40 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196729
|
5.5 |
MEDIUM
Local
|
huawei
|
magic_ui
emui
|
An application bypass mechanism vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to delete user SMS messages.
|
NVD-CWE-noinfo
|
CVE-2020-9148
|
2024-11-21 14:40 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196730
|
7.8 |
HIGH
Local
|
huawei
|
magic_ui
emui
|
A memory buffer error vulnerability exists in a component interface of Huawei Smartphone. Local attackers may exploit this vulnerability by carefully constructing attack scenarios to cause out-of-bou…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-9147
|
2024-11-21 14:40 |
2021-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
