|
209171
|
9.8 |
CRITICAL
Network
|
set-in_project
|
set-in
|
Prototype pollution vulnerability in 'set-in' versions 1.0.0 through 2.0.0 allows attacker to cause a denial of service and may lead to remote code execution.
|
NVD-CWE-noinfo
|
CVE-2020-28273
|
2024-11-21 14:22 |
2020-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209172
|
9.8 |
CRITICAL
Network
|
keyget_project
|
keyget
|
Prototype pollution vulnerability in 'keyget' versions 1.0.0 through 2.2.0 allows attacker to cause a denial of service and may lead to remote code execution.
|
NVD-CWE-noinfo
|
CVE-2020-28272
|
2024-11-21 14:22 |
2020-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209173
|
5.3 |
MEDIUM
Network
|
trendmicro
|
officescan
apex_one
|
An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal version, …
|
NVD-CWE-noinfo
|
CVE-2020-28583
|
2024-11-21 14:22 |
2020-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209174
|
5.3 |
MEDIUM
Network
|
trendmicro
|
officescan
apex_one
|
An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal number of…
|
NVD-CWE-noinfo
|
CVE-2020-28582
|
2024-11-21 14:22 |
2020-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209175
|
5.3 |
MEDIUM
Network
|
trendmicro
|
officescan
apex_one
|
An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal server ho…
|
NVD-CWE-noinfo
|
CVE-2020-28577
|
2024-11-21 14:22 |
2020-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209176
|
5.3 |
MEDIUM
Network
|
trendmicro
|
officescan
apex_one
|
An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal version a…
|
NVD-CWE-noinfo
|
CVE-2020-28576
|
2024-11-21 14:22 |
2020-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209177
|
6.7 |
MEDIUM
Local
|
trendmicro
|
serverprotect
|
A heap-based buffer overflow privilege escalation vulnerability in Trend Micro ServerProtect for Linux 3.0 may allow an attacker to escalate privileges on affected installations. An attacker must fir…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-28575
|
2024-11-21 14:22 |
2020-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209178
|
5.3 |
MEDIUM
Network
|
trendmicro
|
officescan
apex_one
|
An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal the total…
|
NVD-CWE-noinfo
|
CVE-2020-28573
|
2024-11-21 14:22 |
2020-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209179
|
9.8 |
CRITICAL
Network
|
barco
|
wepresent_wipg-1600w_firmware
|
Barco wePresent WiPG-1600W firmware includes a hardcoded API account and password that is discoverable by inspecting the firmware image. A malicious actor could use this password to access authentica…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2020-28329
|
2024-11-21 14:22 |
2020-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209180
|
9.8 |
CRITICAL
Network
|
barco
|
wepresent_wipg-1600w_firmware
|
Barco wePresent WiPG-1600W devices use Hard-coded Credentials (issue 2 of 2). Affected Version(s): 2.5.1.8, 2.5.0.25, 2.5.0.24, 2.4.1.19. The Barco wePresent WiPG-1600W device has a hardcoded root pa…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2020-28334
|
2024-11-21 14:22 |
2020-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
