|
209191
|
7.8 |
HIGH
Local
|
paloaltonetworks
|
pan-os
|
A format string vulnerability in the PAN-OS log daemon (logd) on Panorama allows a network based attacker with knowledge of registered firewall devices and access to Panorama management interfaces to…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2020-1979
|
2024-11-21 14:11 |
2020-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209192
|
5.0 |
MEDIUM
Local
|
redhat
fedoraproject
debian
|
cloudforms_management_engine
ansible_tower
ansible
openstack
fedora
debian_linux
|
A race condition flaw was found in Ansible Engine 2.7.17 and prior, 2.8.9 and prior, 2.9.6 and prior when running a playbook with an unprivileged become user. When Ansible needs to run a module with …
|
CWE-362
Race Condition
|
CVE-2020-1733
|
2024-11-21 14:11 |
2020-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209193
|
7.8 |
HIGH
Local
|
redhat
|
ansible_tower
ansible_engine
|
A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.9.6 and prior when using the Extract-Zip function from the win_unzip module as the extracted file(s) are not checked if they belon…
|
CWE-22
Path Traversal
|
CVE-2020-1737
|
2024-11-21 14:11 |
2020-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209194
|
7.0 |
HIGH
Local
|
redhat
|
openshift_container_platform
|
It has been found that in openshift-enterprise version 3.11 and openshift-enterprise versions 4.1 up to, including 4.3, multiple containers modify the permissions of /etc/passwd to make them modifiab…
|
-
|
CVE-2020-1706
|
2024-11-21 14:11 |
2020-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209195
|
7.4 |
HIGH
Local
|
redhat
|
ansible_tower
ansible_engine
|
A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variabl…
|
-
|
CVE-2020-1734
|
2024-11-21 14:11 |
2020-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209196
|
7.5 |
HIGH
Network
|
facebook
|
hhvm
|
Insufficient boundary checks when decoding JSON in TryParse reads out of bounds memory, potentially leading to DOS. This issue affects HHVM 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39.0, ver…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-1893
|
2024-11-21 14:11 |
2020-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209197
|
8.1 |
HIGH
Network
|
facebook
|
hhvm
|
Insufficient boundary checks when decoding JSON in JSON_parser allows read access to out of bounds memory, potentially leading to information leak and DOS. This issue affects HHVM 4.45.0, 4.44.0, 4.4…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-1892
|
2024-11-21 14:11 |
2020-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209198
|
7.5 |
HIGH
Network
|
facebook
|
hhvm
|
Insufficient boundary checks when decoding JSON in handleBackslash reads out of bounds memory, potentially leading to DOS. This issue affects HHVM 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-1888
|
2024-11-21 14:11 |
2020-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209199
|
9.8 |
CRITICAL
Network
|
redhat
|
keycloak_operator
|
A flaw was found in all versions of the Keycloak operator, before version 8.0.2,(community only) where the operator generates a random admin password when installing Keycloak, however the password re…
|
CWE-330
Use of Insufficiently Random Values
|
CVE-2020-1731
|
2024-11-21 14:11 |
2020-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209200
|
7.5 |
HIGH
Network
|
huawei
|
nip6800_firmware
secospace_usg6600_firmware
usg9500_firmware
oceanstor_5310_firmware
|
NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have have a resource management error vulnerability. An attacker needs to perform specifi…
|
NVD-CWE-noinfo
|
CVE-2020-1881
|
2024-11-21 14:11 |
2020-02-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
