|
210581
|
7.8 |
HIGH
Local
|
apple
|
macos
|
A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1. An application may be able to execute arbitrary c…
|
NVD-CWE-Other
|
CVE-2020-27904
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210582
|
7.8 |
HIGH
Local
|
apple
|
macos
|
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Big Sur 11.0.1. An application may be able to gain elevated privileges.
|
NVD-CWE-noinfo
|
CVE-2020-27903
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210583
|
4.6 |
MEDIUM
Physics
|
apple
|
iphone_os
ipados
|
An authentication issue was addressed with improved state management. This issue is fixed in iOS 14.2 and iPadOS 14.2. A person with physical access to an iOS device may be able to access stored pass…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-27902
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210584
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
An issue existed in the handling of snapshots. The issue was resolved with improved permissions logic. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to preview file…
|
NVD-CWE-noinfo
|
CVE-2020-27900
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210585
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
A denial of service issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.0.1. An attacker may be able to bypass Managed Frame Protection.
|
CWE-252
Unchecked Return Value
|
CVE-2020-27898
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210586
|
3.3 |
LOW
Local
|
apple
|
itunes
|
An information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling. This issue is fixed in iTunes 12.11 for Windows. A malicious applica…
|
NVD-CWE-noinfo
|
CVE-2020-27895
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210587
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
The issue was addressed with additional user controls. This issue is fixed in macOS Big Sur 11.0.1. Users may be unable to remove metadata indicating where files were downloaded from.
|
NVD-CWE-noinfo
|
CVE-2020-27894
|
2024-11-21 14:22 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210588
|
7.8 |
HIGH
Local
|
almico
|
speedfan
|
There is a local privilege escalation vulnerability in Alfredo Milani Comparetti SpeedFan 4.52. Attackers can use constructed programs to increase user privileges
|
NVD-CWE-noinfo
|
CVE-2020-28175
|
2024-11-21 14:22 |
2020-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210589
|
8.1 |
HIGH
Network
|
netscout
|
airmagnet_enterprise
|
NETSCOUT AirMagnet Enterprise 11.1.4 build 37257 and earlier has a sensor escalated privileges vulnerability that can be exploited to provide someone with administrative access to a sensor, with cred…
|
NVD-CWE-noinfo
|
CVE-2020-28251
|
2024-11-21 14:22 |
2020-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210590
|
6.5 |
MEDIUM
Network
|
bitrix24
|
bitrix_framework
|
An issue was discovered in Bitrix24 Bitrix Framework (1c site management) 20.0. An "User enumeration and Improper Restriction of Excessive Authentication Attempts" vulnerability exists in the admin l…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2020-28206
|
2024-11-21 14:22 |
2020-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
