|
218081
|
7.5 |
HIGH
Network
|
aviatrix
|
controller
gateway
|
An issue was discovered in Aviatrix Controller before 5.4.1204. It contains credentials unused by the software.
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2020-13414
|
2024-11-21 14:01 |
2020-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218082
|
5.3 |
MEDIUM
Network
|
aviatrix
|
controller
vpn_client
|
An issue was discovered in Aviatrix Controller before 5.4.1204. There is a Observable Response Discrepancy from the API, which makes it easier to perform user enumeration via brute force.
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2020-13413
|
2024-11-21 14:01 |
2020-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218083
|
8.8 |
HIGH
Network
|
aviatrix
|
controller
|
An issue was discovered in Aviatrix Controller before 5.4.1204. An API call on the web interface lacked a session token check to control access, leading to CSRF.
|
CWE-352
Origin Validation Error
|
CVE-2020-13412
|
2024-11-21 14:01 |
2020-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218084
|
8.3 |
HIGH
Network
|
freerdp
debian
opensuse
canonical
|
freerdp
debian_linux
leap
ubuntu_linux
|
An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) write vulnerability has been detected in crypto_rsa_common in libfreerdp/crypto/crypto.c.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-13398
|
2024-11-21 14:01 |
2020-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218085
|
5.5 |
MEDIUM
Local
|
freerdp
debian
opensuse
canonical
|
freerdp
debian_linux
leap
ubuntu_linux
|
An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has been detected in security_fips_decrypt in libfreerdp/core/security.c due to an uninitialized value.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-13397
|
2024-11-21 14:01 |
2020-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218086
|
7.1 |
HIGH
Network
|
freerdp
debian
opensuse
canonical
|
freerdp
debian_linux
leap
ubuntu_linux
|
An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has been detected in ntlm_read_ChallengeMessage in winpr/libwinpr/sspi/NTLM/ntlm_message.c.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-13396
|
2024-11-21 14:01 |
2020-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218087
|
9.8 |
CRITICAL
Network
|
python
|
jw.util
|
An exploitable vulnerability exists in the configuration-loading functionality of the jw.util package before 2.3 for Python. When loading a configuration with FromString or FromStream with YAML, one …
|
CWE-78
OS Command
|
CVE-2020-13388
|
2024-11-21 14:01 |
2020-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218088
|
9.8 |
CRITICAL
Network
|
tendacn
|
ac6_firmware
ac9_firmware
ac15_firmware
ac18_firmware
|
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devi…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-13394
|
2024-11-21 14:01 |
2020-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218089
|
9.8 |
CRITICAL
Network
|
tendacn
|
ac6_firmware
ac9_firmware
ac15_firmware
ac18_firmware
|
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devi…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-13393
|
2024-11-21 14:01 |
2020-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218090
|
9.8 |
CRITICAL
Network
|
tendacn
|
ac6_firmware
ac9_firmware
ac15_firmware
ac18_firmware
|
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devi…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-13392
|
2024-11-21 14:01 |
2020-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
