|
215651
|
5.9 |
MEDIUM
Network
|
oracle
|
security_service
|
Vulnerability in the Oracle Security Service product of Oracle Fusion Middleware (component: None). The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows una…
|
NVD-CWE-noinfo
|
CVE-2020-14530
|
2024-11-21 14:03 |
2020-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215652
|
5.4 |
MEDIUM
Network
|
oracle
|
primavera_portfolio_management
|
Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Investor Module). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-1…
|
NVD-CWE-noinfo
|
CVE-2020-14529
|
2024-11-21 14:03 |
2020-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215653
|
6.1 |
MEDIUM
Network
|
oracle
|
primavera_portfolio_management
|
Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2…
|
NVD-CWE-noinfo
|
CVE-2020-14528
|
2024-11-21 14:03 |
2020-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215654
|
5.9 |
MEDIUM
Network
|
oracle
|
primavera_portfolio_management
|
Vulnerability in the Primavera Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are affected are 16.1.0.0-16.1.5.1, 18.0.0.0-18.0.2…
|
NVD-CWE-noinfo
|
CVE-2020-14527
|
2024-11-21 14:03 |
2020-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215655
|
7.5 |
HIGH
Network
|
cellebrite
|
ufed_firmware
|
The Cellebrite UFED physical device 5.0 through 7.5.0.845 relies on key material hardcoded within both the executable code supporting the decryption process, and within the encrypted files themselves…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2020-14474
|
2024-11-21 14:03 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215656
|
7.8 |
HIGH
Local
|
deltaww
|
dopsoft
|
Delta Industrial Automation DOPSoft, Version 4.00.08.15 and prior. Opening a specially crafted project file may overflow the heap, which may allow remote code execution, disclosure/modification of in…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-14482
|
2024-11-21 14:03 |
2020-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215657
|
8.8 |
HIGH
Network
|
nedi
|
nedi
|
NeDi 1.9C is vulnerable to Remote Command Execution. pwsec.php improperly escapes shell metacharacters from a POST request. An attacker can exploit this by crafting an arbitrary payload (any system c…
|
CWE-78
OS Command
|
CVE-2020-14414
|
2024-11-21 14:03 |
2020-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215658
|
6.1 |
MEDIUM
Network
|
nedi
|
nedi
|
NeDi 1.9C is vulnerable to XSS because of an incorrect implementation of sanitize() in inc/libmisc.php. This function attempts to escape the SCRIPT tag from user-controllable values, but can be easil…
|
CWE-79
Cross-site Scripting
|
CVE-2020-14413
|
2024-11-21 14:03 |
2020-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215659
|
8.8 |
HIGH
Network
|
nedi
|
nedi
|
NeDi 1.9C is vulnerable to Remote Command Execution. System-Snapshot.php improperly escapes shell metacharacters from a POST request. An attacker can exploit this by crafting an arbitrary payload (an…
|
CWE-78
OS Command
|
CVE-2020-14412
|
2024-11-21 14:03 |
2020-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215660
|
4.4 |
MEDIUM
Local
|
philips
|
clearvue_850_firmware
clearvue_350_firmware
cx50_firmware
affiniti_70_firmware
affiniti_50_firmware
epiq_7_firmware
sparq_firmware
xperius_firmware
|
In Philips Ultrasound ClearVue Versions 3.2 and prior, Ultrasound CX Versions 5.0.2 and prior, Ultrasound EPIQ/Affiniti Versions VM5.0 and prior, Ultrasound Sparq Version 3.0.2 and prior and Ultrasou…
|
CWE-287
Improper Authentication
|
CVE-2020-14477
|
2024-11-21 14:03 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
