|
202311
|
4.3 |
MEDIUM
Network
|
fortinet
|
fortipresence
|
Two authorization bypass through user-controlled key vulnerabilities in the Fortinet FortiPresence 2.1.0 administration interface may allow an attacker to gain access to some user data via portal man…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2020-6641
|
2024-11-21 14:36 |
2021-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202312
|
7.5 |
HIGH
Network
|
avaya
|
equinox_conferencing
|
A vulnerability was discovered in Management component of Avaya Equinox Conferencing that could potentially allow an unauthenticated, remote attacker to gain access to screen sharing and whiteboard s…
|
NVD-CWE-Other
|
CVE-2020-7038
|
2024-11-21 14:36 |
2021-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202313
|
8.1 |
HIGH
Network
|
avaya
|
equinox_conferencing
|
An XML External Entities (XXE) vulnerability in Media Server component of Avaya Equinox Conferencing could allow an authenticated, remote attacker to gain read access to information that is stored on…
|
CWE-611
XXE
|
CVE-2020-7037
|
2024-11-21 14:36 |
2021-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202314
|
7.8 |
HIGH
Local
|
arubanetworks
|
clearpass_policy_manager
|
A local escalation of privilege vulnerability was discovered in Aruba ClearPass Policy Manager version(s) prior to 6.9.5, 6.8.9, 6.7.14-HF1. Aruba has released patches for Aruba ClearPass Policy Mana…
|
NVD-CWE-noinfo
|
CVE-2020-7123
|
2024-11-21 14:36 |
2021-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202315
|
6.5 |
MEDIUM
Network
|
avaya
|
callback_assist
|
An XML External Entities (XXE)vulnerability in Callback Assist could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system. The affected vers…
|
CWE-611
XXE
|
CVE-2020-7036
|
2024-11-21 14:36 |
2021-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202316
|
6.5 |
MEDIUM
Network
|
avaya
|
aura_orchestration_designer
|
An XML External Entities (XXE)vulnerability in the web-based user interface of Avaya Aura Orchestration Designer could allow an authenticated, remote attacker to gain read access to information that …
|
CWE-611
XXE
|
CVE-2020-7035
|
2024-11-21 14:36 |
2021-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202317
|
8.8 |
HIGH
Network
|
avaya
|
session_border_controller_for_enterprise
|
A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow an authenticated, remote attacker to send specially crafted messages and execute arbitrary commands wit…
|
CWE-77
Command Injection
|
CVE-2020-7034
|
2024-11-21 14:36 |
2021-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202318
|
4.3 |
MEDIUM
Network
|
mcafee
|
advanced_threat_defense
|
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefu…
|
NVD-CWE-noinfo
|
CVE-2020-7270
|
2024-11-21 14:36 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202319
|
4.3 |
MEDIUM
Network
|
mcafee
|
advanced_threat_defense
|
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefu…
|
NVD-CWE-noinfo
|
CVE-2020-7269
|
2024-11-21 14:36 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202320
|
7.5 |
HIGH
Network
|
forcepoint
|
web_security_content_gateway
data_loss_prevention
email_security
|
Forcepoint Web Security Content Gateway versions prior to 8.5.4 improperly process XML input, leading to information disclosure.
|
CWE-611
XXE
|
CVE-2020-6590
|
2024-11-21 14:36 |
2021-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
