|
196951
|
7.8 |
HIGH
Local
|
fabulatech
|
usb_for_remote_desktop
|
ftusbbus2.sys in FabulaTech USB for Remote Desktop through 2020-02-19 allows privilege escalation via crafted IoCtl code related to a USB HID device.
|
NVD-CWE-noinfo
|
CVE-2020-9332
|
2024-11-21 14:40 |
2020-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196952
|
7.5 |
HIGH
Network
|
fortinet
|
fortimanager
fortianalyzer
|
Use of a hard-coded cryptographic key to encrypt password data in CLI configuration in FortiManager 6.2.3 and below, FortiAnalyzer 6.2.3 and below may allow an attacker with access to the CLI configu…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2020-9289
|
2024-11-21 14:40 |
2020-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196953
|
6.1 |
MEDIUM
Network
|
microfocus
|
arcsight_enterprise_security_manager_express
|
Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Enterprise Security Manager (ESM) product, Affecting versions 7.0.x, 7.2 and 7.2.1 . The vulnerabilities could be remotely exploited r…
|
CWE-79
Cross-site Scripting
|
CVE-2020-9522
|
2024-11-21 14:40 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196954
|
9.8 |
CRITICAL
Network
|
netflix
|
conductor
|
Netflix Titus uses Java Bean Validation (JSR 380) custom constraint validators. When building custom constraint violation error messages, different types of interpolation are supported, including Jav…
|
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')
|
CVE-2020-9296
|
2024-11-21 14:40 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196955
|
5.0 |
MEDIUM
Network
|
open-xchange
|
ox_guard
|
OX Guard 2.10.3 and earlier allows SSRF.
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2020-9427
|
2024-11-21 14:40 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196956
|
6.1 |
MEDIUM
Network
|
open-xchange
|
ox_guard
|
OX Guard 2.10.3 and earlier allows XSS.
|
CWE-79
Cross-site Scripting
|
CVE-2020-9426
|
2024-11-21 14:40 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196957
|
9.8 |
CRITICAL
Network
|
tibco
|
managed_file_transfer_platform_server
|
The file transfer component of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i contains a vulnerability that theoretically allows execution of arbitrary commands at the pr…
|
NVD-CWE-noinfo
|
CVE-2020-9412
|
2024-11-21 14:40 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196958
|
9.8 |
CRITICAL
Network
|
tibco
|
managed_file_transfer_platform_server
|
The file transfer component of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i contains a vulnerability that theoretically allows an attacker to perform unauthorized netwo…
|
NVD-CWE-noinfo
|
CVE-2020-9411
|
2024-11-21 14:40 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196959
|
9.8 |
CRITICAL
Network
|
huawei
|
ips_module_firmware
ngfw_module_firmware
nip6300_firmware
nip6600_firmware
nip6800_firmware
secospace_usg6300_firmware
secospace_usg6500_firmware
secospace_usg6600_firmware
us…
|
Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Secospace USG6600; USG9500 with versions of V500R001C00; V500R001C20; V500R001C30; V500R001C5…
|
CWE-287
Improper Authentication
|
CVE-2020-9099
|
2024-11-21 14:40 |
2020-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196960
|
4.3 |
MEDIUM
Adjacent
|
homey
|
homey_firmware
homey_pro_firmware
|
An issue was discovered in all Athom Homey and Homey Pro devices up to the current version 4.2.0. An attacker within RF range can obtain a cleartext copy of the network configuration of the device, i…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2020-9462
|
2024-11-21 14:40 |
2020-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
