|
201721
|
7.5 |
HIGH
Network
|
dlink
|
dir-610_firmware
|
D-Link DIR-610 devices allow Information Disclosure via SERVICES=DEVICE.ACCOUNT%0AAUTHORIZED_GROUP=1 to getcfg.php. NOTE: This vulnerability only affects products that are no longer supported by the …
|
CWE-74
Injection
|
CVE-2020-9376
|
2024-11-21 14:40 |
2020-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201722
|
8.0 |
HIGH
Adjacent
|
realtek
|
rtl8711af_firmware
rtl8711am_firmware
rtl8195am_firmware
rtl8710af_firmware
|
An issue was discovered on Realtek RTL8195AM, RTL8711AM, RTL8711AF, and RTL8710AF devices before 2.0.6. A stack-based buffer overflow exists in the client code that takes care of WPA2's 4-way-handsha…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-9395
|
2024-11-21 14:40 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201723
|
7.8 |
HIGH
Local
|
huawei
|
mate_30_firmware
|
HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a use after free vulnerability. There is a condition exists that the system would reference memory after it has been freed, the …
|
CWE-416
Use After Free
|
CVE-2020-9262
|
2024-11-21 14:40 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201724
|
7.8 |
HIGH
Local
|
huawei
|
mate_30_firmware
|
HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a type confusion vulnerability. The system does not properly check and transform the type of certain variable, the attacker tric…
|
CWE-843
Type Confusion
|
CVE-2020-9261
|
2024-11-21 14:40 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201725
|
5.5 |
MEDIUM
Local
|
huawei
|
p30_firmware
|
HUAWEI P30 with versions earlier than 10.1.0.135(C00E135R2P11) have an improper signature verification vulnerability. The system does not improper check signature of specific software package, an att…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2020-9226
|
2024-11-21 14:40 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201726
|
7.8 |
HIGH
Local
|
huawei
|
hisuite
|
Earlier than HiSuite 10.1.0.500 have a DLL hijacking vulnerability. This vulnerability exists due to some DLL file is loaded by HiSuite improperly. And it allows an attacker to load this DLL file of …
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2020-9100
|
2024-11-21 14:40 |
2020-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201727
|
6.7 |
MEDIUM
Local
|
apache
fedoraproject
debian
|
guacamole
fedora
debian_linux
|
Apache Guacamole 1.1.0 and older may mishandle pointers involved inprocessing data received via RDP static virtual channels. If a userconnects to a malicious or compromised RDP server, a series ofspe…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-9498
|
2024-11-21 14:40 |
2020-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201728
|
4.4 |
MEDIUM
Local
|
apache
fedoraproject
debian
|
guacamole
fedora
debian_linux
|
Apache Guacamole 1.1.0 and older do not properly validate datareceived from RDP servers via static virtual channels. If a userconnects to a malicious or compromised RDP server, specially-craftedPDUs …
|
CWE-20
Improper Input Validation
|
CVE-2020-9497
|
2024-11-21 14:40 |
2020-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201729
|
8.8 |
HIGH
Network
|
tibco
|
managed_file_transfer_internet_server
managed_file_transfer_command_center
|
The MFT admin service component of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center and TIBCO Managed File Transfer Internet Server contains a vulnerability that theoretically allows …
|
CWE-79
Cross-site Scripting
|
CVE-2020-9414
|
2024-11-21 14:40 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201730
|
9.6 |
CRITICAL
Network
|
tibco
|
managed_file_transfer_internet_server
managed_file_transfer_command_center
|
The MFT Browser file transfer client and MFT Browser admin client components of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center and TIBCO Managed File Transfer Internet Server contai…
|
CWE-79
Cross-site Scripting
|
CVE-2020-9413
|
2024-11-21 14:40 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
