|
218281
|
5.4 |
MEDIUM
Network
|
intelbras
|
tip200_firmware
tip200lite_firmware
tip300_firmware
|
Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 devices allow /cgi-bin/cgiServer.exx?page= XSS.
|
CWE-79
Cross-site Scripting
|
CVE-2020-12262
|
2024-11-21 13:59 |
2020-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218282
|
6.5 |
MEDIUM
Adjacent
|
linux
|
linux_kernel
|
Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.
|
CWE-909
Missing Initialization of Resource
|
CVE-2020-12352
|
2024-11-21 13:59 |
2020-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218283
|
8.8 |
HIGH
Adjacent
|
linux
|
linux_kernel
|
Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
|
CWE-20
Improper Input Validation
|
CVE-2020-12351
|
2024-11-21 13:59 |
2020-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218284
|
7.3 |
HIGH
Local
|
beckhoff
|
twincat_extended_automation_runtime
|
The default installation path of the TwinCAT XAR 3.1 software in all versions is underneath C:\TwinCAT. If the directory does not exist it and further subdirectories are created with permissions whic…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-12510
|
2024-11-21 13:59 |
2020-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218285
|
6.5 |
MEDIUM
Network
|
endress
|
rsg35_firmware
rsg45_firmware
orsg35_firmware
orsg45_firmware
|
Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) and Memograph M (Neutral/Private Label) (RSG45, ORSG45) with Firmware version V2.0.0 and above is prone to exposure of sensitive info…
|
CWE-200
Information Exposure
|
CVE-2020-12496
|
2024-11-21 13:59 |
2020-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218286
|
8.8 |
HIGH
Network
|
endress
|
rsg35_firmware
rsg45_firmware
orsg35_firmware
orsg45_firmware
|
Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) with Firmware version prior to V2.0.0 is prone to improper privilege management. The affected device has a web-based user interface w…
|
CWE-269
Improper Privilege Management
|
CVE-2020-12495
|
2024-11-21 13:59 |
2020-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218287
|
7.5 |
HIGH
Network
|
symantec
|
endpoint_detection_and_response
|
Symantec Endpoint Detection & Response, prior to 4.5, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data.
|
NVD-CWE-noinfo
|
CVE-2020-12593
|
2024-11-21 13:59 |
2020-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218288
|
9.8 |
CRITICAL
Network
|
intel
|
open_webrtc_toolkit
|
Insufficient control flow management in the Open WebRTC Toolkit before version 4.3.1 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
|
NVD-CWE-Other
|
CVE-2020-12338
|
2024-11-21 13:59 |
2020-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218289
|
8.8 |
HIGH
Adjacent
|
intel
|
proset\/wireless_wifi
|
Insufficient control flow management in some Intel(R) PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent …
|
NVD-CWE-noinfo
|
CVE-2020-12313
|
2024-11-21 13:59 |
2020-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218290
|
6.5 |
MEDIUM
Network
|
intel
|
data_center_manager
|
Improper permissions in the Intel(R) Data Center Manager Console before version 3.6.2 may allow an authenticated user to potentially enable denial of service via network access.
|
CWE-281
Improper Preservation of Permissions
|
CVE-2020-12353
|
2024-11-21 13:59 |
2020-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
