|
210651
|
7.5 |
HIGH
Network
|
thinkadmin
|
thinkadmin
|
ThinkAdmin v6 is affected by a directory traversal vulnerability. An unauthorized attacker can read arbitrarily file on a remote server via GET request encode parameter.
|
CWE-22
Path Traversal
|
CVE-2020-25540
|
2024-11-21 14:18 |
2020-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210652
|
7.5 |
HIGH
Network
|
webank
|
federated_ai_technology_enabler
|
An issue was discovered in function sync_tree in hetero_decision_tree_guest.py in WeBank FATE (Federated AI Technology Enabler) 0.1 through 1.4.2 allows attackers to read sensitive information during…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2020-25459
|
2024-11-21 14:17 |
2022-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210653
|
6.5 |
MEDIUM
Network
|
osisoft
|
pi_vision
|
OSIsoft PI Vision 2020 versions prior to 3.5.0 could disclose information to a user with insufficient privileges for an AF attribute.
|
-
|
CVE-2020-25167
|
2024-11-21 14:17 |
2022-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210654
|
7.3 |
HIGH
Network
|
osisoft
|
pi_vision
|
A remote attacker with write access to PI ProcessBook files could inject code that is imported into OSIsoft PI Vision 2020 versions prior to 3.5.0. Unauthorized information disclosure, modification, …
|
-
|
CVE-2020-25163
|
2024-11-21 14:17 |
2022-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210655
|
3.3 |
LOW
Local
|
bbraun
|
datamodule_compactplus
spacecom
|
Hard-coded credentials in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 enable attackers with command line access to access the …
|
-
|
CVE-2020-25168
|
2024-11-21 14:17 |
2022-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210656
|
7.1 |
HIGH
Network
|
bbraun
|
datamodule_compactplus
spacecom
|
An improper verification of the cryptographic signature of firmware updates of the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 all…
|
-
|
CVE-2020-25166
|
2024-11-21 14:17 |
2022-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210657
|
7.5 |
HIGH
Network
|
bbraun
|
datamodule_compactplus
spacecom
|
A vulnerability in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows attackers to recover user credentials of the administrat…
|
-
|
CVE-2020-25164
|
2024-11-21 14:17 |
2022-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210658
|
7.5 |
HIGH
Network
|
bbraun
|
datamodule_compactplus
spacecom
|
A XPath injection vulnerability in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows unauthenticated remote attackers to acce…
|
-
|
CVE-2020-25162
|
2024-11-21 14:17 |
2022-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210659
|
6.3 |
MEDIUM
Local
|
bbraun
|
datamodule_compactplus
spacecom
|
Improper access controls in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 enables attackers to extract and tamper with the devic…
|
NVD-CWE-Other
|
CVE-2020-25160
|
2024-11-21 14:17 |
2022-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210660
|
6.1 |
MEDIUM
Network
|
bbraun
|
datamodule_compactplus
spacecom
|
A reflected cross-site scripting (XSS) vulnerability in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows remote attackers to…
|
-
|
CVE-2020-25158
|
2024-11-21 14:17 |
2022-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
