|
208311
|
5.4 |
MEDIUM
Network
|
redhat
|
wildfly
|
A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidenti…
|
-
|
CVE-2020-1719
|
2024-11-21 14:11 |
2021-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208312
|
7.5 |
HIGH
Network
|
facebook
|
react-native
|
A regular expression denial of service (ReDoS) vulnerability in the validateBaseUrl function can cause the application to use excessive resources, become unresponsive, or crash. This was introduced i…
|
CWE-697
Incorrect Comparison
|
CVE-2020-1920
|
2024-11-21 14:11 |
2021-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208313
|
4.4 |
MEDIUM
Local
|
redhat
|
smallrye_config
|
A flaw was found in SmallRye's API through version 1.6.1. The API can allow other code running within the application server to potentially obtain the ClassLoader, bypassing any permissions checks th…
|
CWE-863
Incorrect Authorization
|
CVE-2020-1729
|
2024-11-21 14:11 |
2021-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208314
|
8.8 |
HIGH
Network
|
ceph
|
ceph-ansible
|
A flaw was found in the ceph-ansible playbook where it contained hardcoded passwords that were being used as default passwords while deploying Ceph services. Any authenticated attacker can abuse this…
|
-
|
CVE-2020-1716
|
2024-11-21 14:11 |
2021-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208315
|
6.1 |
MEDIUM
Network
|
redhat
|
openshift
|
A flaw was found in the OpenShift web console, where the access token is stored in the browser's local storage. An attacker can use this flaw to get the access token via physical access, or an XSS at…
|
NVD-CWE-Other
|
CVE-2020-1761
|
2024-11-21 14:11 |
2021-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208316
|
3.3 |
LOW
Local
|
containers-image_project
redhat
|
containers-image
enterprise_linux
|
A malicious container image can consume an unbounded amount of memory when being pulled to a container runtime host, such as Red Hat Enterprise Linux using podman, or OpenShift Container Platform. An…
|
-
|
CVE-2020-1702
|
2024-11-21 14:11 |
2021-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208317
|
6.5 |
MEDIUM
Network
|
kubevirt
|
kubevirt
|
A flaw was found in the KubeVirt main virt-handler versions before 0.26.0 regarding the access permissions of virt-handler. An attacker with access to create VMs could attach any secret within their …
|
-
|
CVE-2020-1701
|
2024-11-21 14:11 |
2021-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208318
|
7.5 |
HIGH
Network
|
whohas_project
|
whohas
|
Ethereum 0xe933c0cd9784414d5f278c114904f5a84b396919#code.sol latest version is affected by a denial of service vulnerability in the affected payout function. Once the length of this array is too long…
|
NVD-CWE-noinfo
|
CVE-2020-20178
|
2024-11-21 14:11 |
2021-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208319
|
6.5 |
MEDIUM
Network
|
mikrotik
|
routeros
|
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the /nova/bin/dot1x process. An authenticated remote attacker can cause a Denial of Service (NULL pointer…
|
CWE-787
CWE-476
Out-of-bounds Write
NULL Pointer Dereference
|
CVE-2020-20266
|
2024-11-21 14:11 |
2021-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208320
|
6.5 |
MEDIUM
Network
|
mikrotik
|
routeros
|
Mikrotik RouterOs before 6.47 (stable tree) in the /ram/pckg/advanced-tools/nova/bin/netwatch process. An authenticated remote attacker can cause a Denial of Service due to a divide by zero error.
|
CWE-369
Divide By Zero
|
CVE-2020-20264
|
2024-11-21 14:11 |
2021-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
