|
210281
|
9.8 |
CRITICAL
Network
|
nim-lang
|
nim
|
In Nim before 1.2.6, the standard library asyncftpclient lacks a check for whether a message contains a newline character.
|
CWE-74
Injection
|
CVE-2020-15690
|
2024-11-21 14:06 |
2021-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210282
|
7.8 |
HIGH
Local
|
panasonic
|
fpwin_pro
|
FPWIN Pro is vulnerable to an out-of-bounds read vulnerability when a user opens a maliciously crafted project file, which may allow an attacker to remotely execute arbitrary code.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-16236
|
2024-11-21 14:06 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210283
|
6.1 |
MEDIUM
Network
|
quali
|
cloudshell
|
An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that execute…
|
CWE-79
Cross-site Scripting
|
CVE-2020-15864
|
2024-11-21 14:06 |
2021-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210284
|
6.1 |
MEDIUM
Network
|
google
|
chrome
|
Script injection in iOSWeb in Google Chrome on iOS prior to 84.0.4147.105 allowed a remote attacker to execute arbitrary code via a crafted HTML page.
|
CWE-79
Cross-site Scripting
|
CVE-2020-16046
|
2024-11-21 14:06 |
2021-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210285
|
9.6 |
CRITICAL
Network
|
google
|
chrome
|
Use after Free in Payments in Google Chrome on Android prior to 87.0.4280.66 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted H…
|
CWE-416
Use After Free
|
CVE-2020-16045
|
2024-11-21 14:06 |
2021-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210286
|
7.8 |
HIGH
Local
|
linux
canonical
debian
|
linux_kernel
ubuntu_linux
debian_linux
|
Use-after-free vulnerability in the Linux kernel exploitable by a local attacker due to reuse of a DCCP socket with an attached dccps_hc_tx_ccid object as a listener after being released. Fixed in Ub…
|
CWE-416
Use After Free
|
CVE-2020-16119
|
2024-11-21 14:06 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210287
|
9.8 |
CRITICAL
Network
|
siemens
|
scalance_x200-4pirt_firmware
scalance_x201-3pirt_firmware
scalance_x202-2irt_firmware
scalance_x202-2pirt_firmware
scalance_x202-2pirt_siplus_net_firmware
scalance_x204irt_firmware
…
|
A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5…
|
-
|
CVE-2020-15800
|
2024-11-21 14:06 |
2021-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210288
|
6.5 |
MEDIUM
Network
|
siemens
|
scalance_x200-4pirt_firmware
scalance_x201-3pirt_firmware
scalance_x202-2irt_firmware
scalance_x202-2pirt_firmware
scalance_x202-2pirt_siplus_net_firmware
scalance_x204irt_firmware
…
|
A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5…
|
-
|
CVE-2020-15799
|
2024-11-21 14:06 |
2021-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210289
|
7.5 |
HIGH
Network
|
espressif
|
esp-idf
|
Espressif ESP-IDF 2.x, 3.0.x through 3.0.9, 3.1.x through 3.1.7, 3.2.x through 3.2.3, 3.3.x through 3.3.2, and 4.0.x through 4.0.1 has a Buffer Overflow in BluFi provisioning in btc_blufi_recv_handle…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-16146
|
2024-11-21 14:06 |
2021-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210290
|
8.8 |
HIGH
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Insufficient data validation in networking in Google Chrome prior to 87.0.4280.141 allowed a remote attacker to bypass discretionary access control via malicious network traffic.
|
NVD-CWE-noinfo
|
CVE-2020-16043
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
