|
208521
|
7.8 |
HIGH
Local
|
paloaltonetworks
|
secdo
|
Secdo tries to execute a script at a hardcoded path if present, which allows a local authenticated user with 'create folders or append data' access to the root of the OS disk (C:\) to gain system pri…
|
CWE-20
Improper Input Validation
|
CVE-2020-1984
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208522
|
4.6 |
MEDIUM
Physics
|
huawei
|
osca-550_firmware
osca-550a_firmware
osca-550ax_firmware
osca-550x_firmware
|
There is an insufficient integrity validation vulnerability in several products. The device does not sufficiently validate the integrity of certain file in certain loading processes, successful explo…
|
CWE-354
Improper Validation of Integrity Check Value
|
CVE-2020-1802
|
2024-11-21 14:11 |
2020-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208523
|
6.5 |
MEDIUM
Adjacent
|
juniper
|
junos
|
Due to a new NDP proxy feature for EVPN leaf nodes introduced in Junos OS 17.4, crafted NDPv6 packets could transit a Junos device configured as a Broadband Network Gateway (BNG) and reach the EVPN l…
|
NVD-CWE-noinfo
|
CVE-2020-1633
|
2024-11-21 14:11 |
2020-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208524
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
When an attacker sends a specific crafted Ethernet Operation, Administration, and Maintenance (Ethernet OAM) packet to a target device, it may improperly handle the incoming malformed data and fail t…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2020-1639
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208525
|
7.5 |
HIGH
Network
|
juniper
|
junos
junos_os_evolved
|
The FPC (Flexible PIC Concentrator) of Juniper Networks Junos OS and Junos OS Evolved may restart after processing a specific IPv4 packet. Only packets destined to the device itself, successfully rea…
|
NVD-CWE-noinfo
|
CVE-2020-1638
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208526
|
6.5 |
MEDIUM
Network
|
juniper
|
junos
|
A vulnerability in Juniper Networks SRX Series device configured as a Junos OS Enforcer device may allow a user to access network resources that are not permitted by a UAC policy. This issue might oc…
|
CWE-287
Improper Authentication
|
CVE-2020-1637
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208527
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
On High-End SRX Series devices, in specific configurations and when specific networking events or operator actions occur, an SPC receiving genuine multicast traffic may core. Subsequently, all FPCs i…
|
NVD-CWE-noinfo
|
CVE-2020-1634
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208528
|
5.5 |
MEDIUM
Local
|
juniper
|
junos
|
A privilege escalation vulnerability in Juniper Networks Junos OS devices configured with dual Routing Engines (RE), Virtual Chassis (VC) or high-availability cluster may allow a local authenticated …
|
NVD-CWE-noinfo
|
CVE-2020-1630
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208529
|
5.9 |
MEDIUM
Network
|
juniper
|
junos
|
A race condition vulnerability on Juniper Network Junos OS devices may cause the routing protocol daemon (RPD) process to crash and restart while processing a BGP NOTIFICATION message. This issue aff…
|
CWE-362
Race Condition
|
CVE-2020-1629
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208530
|
5.3 |
MEDIUM
Network
|
juniper
|
junos
|
Juniper Networks Junos OS uses the 128.0.0.0/2 subnet for internal communications between the RE and PFEs. It was discovered that packets utilizing these IP addresses may egress an EX4300 switch, lea…
|
NVD-CWE-noinfo
|
CVE-2020-1628
|
2024-11-21 14:11 |
2020-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
