Lista CVE - 2020 / Maggio
Visualizzazione 501 - 600 di 1017 CVE per Maggio 2020 (Pagina 6 di 11)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2020-0101 | 2020-05-14 | In BnCrypto::onTransact of ICrypto.cpp, there is a possible information disclosure... |
| CVE-2020-0092 | 2020-05-14 | In setHideSensitive of NotificationStackScrollLayout.java, there is a possible disclosure of... |
| CVE-2020-0096 | 2020-05-14 | In startActivities of ActivityStartController.java, there is a possible escalation of... |
| CVE-2020-0097 | 2020-05-14 | In various methods of PackageManagerService.java, there is a possible permission... |
| CVE-2020-0109 | 2020-05-14 | In simulatePackageSuspendBroadcast of NotificationManagerService.java, there is a missing permission check.... |
| CVE-2020-0103 | 2020-05-14 | In a2dp_aac_decoder_cleanup of a2dp_aac_decoder.cc, there is a possible invalid free... |
| CVE-2020-0110 | 2020-05-14 | In psi_write of psi.c, there is a possible out of... |
| CVE-2020-0094 | 2020-05-14 | In setImageHeight and setImageWidth of ExifUtils.cpp, there is a possible... |
| CVE-2020-0106 | 2020-05-14 | In getCellLocation of PhoneInterfaceManager.java, there is a possible permission bypass... |
| CVE-2020-0093 | 2020-05-14 | In exif_data_save_data_entry of exif-data.c, there is a possible out of... |
| CVE-2020-0091 | 2020-05-14 | In mnld, an incorrect configuration in driver_cfg of mnld for... |
| CVE-2020-0090 | 2020-05-14 | An improper authorization in the receiver component of Email.Product: AndroidVersions:... |
| CVE-2020-0065 | 2020-05-14 | An improper authorization in the receiver component of the Android... |
| CVE-2020-0064 | 2020-05-14 | An improper authorization while processing the provisioning data.Product: AndroidVersions: Android... |
| CVE-2020-0100 | 2020-05-14 | In onTransact of IHDCP.cpp, there is a possible out of... |
| CVE-2020-0220 | 2020-05-14 | In crus_afe_callback of msm-cirrus-playback.c, there is a possible out of... |
| CVE-2020-0221 | 2020-05-14 | Airbrush FW's scratch memory allocator is susceptible to numeric overflow.... |
| CVE-2020-12042 | 2020-05-14 | Opto 22 SoftPAC Project Version 9.6 and prior. Paths specified... |
| CVE-2020-12068 | 2020-05-14 | An issue was discovered in CODESYS Development System before 3.5.16.0.... |
| CVE-2020-12046 | 2020-05-14 | Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC’s firmware... |
| CVE-2020-10612 | 2020-05-14 | Opto 22 SoftPAC Project Version 9.6 and prior. SoftPACAgent communicates... |
| CVE-2020-10616 | 2020-05-14 | Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC does... |
| CVE-2020-10620 | 2020-05-14 | Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC communication... |
| CVE-2020-11931 | 2020-05-15 | Ubuntu modifications to pulseaudio to provide snap security enforcement could be unloaded |
| CVE-2020-12882 | 2020-05-15 | Submitty through 20.04.01 allows XSS via upload of an SVG... |
| CVE-2020-8100 | 2020-05-15 | Incomplete validation in detection code in Bitdefender Engines (VA-8589) |
| CVE-2020-3810 | 2020-05-15 | Missing input validation in the ar/tar implementations of APT before... |
| CVE-2020-10744 | 2020-05-15 | An incomplete fix was found for the fix of the... |
| CVE-2020-1808 | 2020-05-15 | Honor 20;HONOR 20 PRO;Honor Magic2;HUAWEI Mate 20 X;HUAWEI P30;HUAWEI P30... |
| CVE-2020-9073 | 2020-05-15 | Huawei P20 smartphones with versions earlier than 10.0.0.156(C00E156R1P4) have an... |
| CVE-2020-7809 | 2020-05-15 | Estsoft ALSong DOM-Based XSS Vulnerability |
| CVE-2018-10756 | 2020-05-15 | Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers... |
| CVE-2020-11521 | 2020-05-15 | libfreerdp/codec/planar.c in FreeRDP version > 1.0 through 2.0.0-rc4 has an... |
| CVE-2020-11522 | 2020-05-15 | libfreerdp/gdi/gdi.c in FreeRDP > 1.0 through 2.0.0-rc4 has an Out-of-bounds... |
| CVE-2020-11523 | 2020-05-15 | libfreerdp/gdi/region.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an... |
| CVE-2020-11524 | 2020-05-15 | libfreerdp/codec/interleaved.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an... |
| CVE-2020-12834 | 2020-05-15 | eQ-3 Homematic Central Control Unit (CCU)2 through 2.51.6 and CCU3... |
| CVE-2020-11525 | 2020-05-15 | libfreerdp/cache/bitmap.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an... |
| CVE-2020-11526 | 2020-05-15 | libfreerdp/core/update.c in FreeRDP versions > 1.1 through 2.0.0-rc4 has an... |
| CVE-2020-12685 | 2020-05-15 | XSS in the admin help system admin/help.html and admin/quicklinks.html in... |
| CVE-2020-12888 | 2020-05-15 | The VFIO PCI driver in the Linux kernel through 5.6.13... |
| CVE-2019-20389 | 2020-05-15 | An XSS issue was identified on the Subrion CMS 4.2.1... |
| CVE-2019-20390 | 2020-05-15 | A Cross-Site Request Forgery (CSRF) vulnerability was discovered in Subrion... |
| CVE-2019-18666 | 2020-05-15 | An issue was discovered on D-Link DAP-1360 revision F devices.... |
| CVE-2019-19721 | 2020-05-15 | An off-by-one error in the DecodeBlock function in codec/sdl_image.c in... |
| CVE-2020-12651 | 2020-05-15 | SecureCRT before 8.7.2 allows remote attackers to execute arbitrary code... |
| CVE-2020-12798 | 2020-05-15 | Cellebrite UFED 5.0 to 7.5.0.845 implements local operating system policies... |
| CVE-2020-12889 | 2020-05-15 | MISP MISP-maltego 1.4.4 incorrectly shares a MISP connection across users... |
| CVE-2020-12872 | 2020-05-15 | yaws_config.erl in Yaws through 2.0.2 and/or 2.0.7 loads obsolete TLS... |
| CVE-2020-13092 | 2020-05-15 | scikit-learn (aka sklearn) through 0.23.0 can unserialize and execute commands... |
| CVE-2020-13091 | 2020-05-15 | pandas through 1.0.3 can unserialize and execute commands from an... |
| CVE-2020-8149 | 2020-05-15 | Lack of output sanitization allowed an attack to execute arbitrary... |
| CVE-2020-13093 | 2020-05-15 | iSpyConnect.com Agent DVR before 2.7.1.0 allows directory traversal. |
| CVE-2020-1758 | 2020-05-15 | A flaw was found in Keycloak in versions before 10.0.0,... |
| CVE-2020-13109 | 2020-05-16 | Morita Shogi 64 through 2020-05-02 for Nintendo 64 devices allows... |
| CVE-2020-13110 | 2020-05-16 | The kerberos package before 1.0.0 for Node.js allows arbitrary code... |
| CVE-2020-13111 | 2020-05-16 | NaviServer 4.99.4 to 4.99.19 allows denial of service due to... |
| CVE-2020-13118 | 2020-05-16 | An issue was discovered in Mikrotik-Router-Monitoring-System through 2018-10-22. SQL Injection... |
| CVE-2020-13121 | 2020-05-16 | Submitty through 20.04.01 has an open redirect via authentication/login?old= during... |
| CVE-2020-13126 | 2020-05-17 | An issue was discovered in the Elementor Pro plugin before... |
| CVE-2020-13125 | 2020-05-17 | An issue was discovered in the "Ultimate Addons for Elementor"... |
| CVE-2020-4345 | 2020-05-17 | IBM i 7.2, 7.3, and 7.4 users running complex SQL... |
| CVE-2020-13128 | 2020-05-17 | An issue was discovered in Manolo GWTUpload 1.0.3. server/UploadServlet.java (the... |
| CVE-2019-20802 | 2020-05-17 | An issue was discovered in the Readdle Documents app before... |
| CVE-2019-20801 | 2020-05-17 | An issue was discovered in the Readdle Documents app before... |
| CVE-2019-20800 | 2020-05-17 | In Cherokee through 1.2.104, remote attackers can trigger an out-of-bounds... |
| CVE-2019-20799 | 2020-05-17 | In Cherokee through 1.2.104, multiple memory corruption errors may be... |
| CVE-2019-20798 | 2020-05-17 | An XSS issue was discovered in handler_server_info.c in Cherokee through... |
| CVE-2019-20797 | 2020-05-17 | An issue was discovered in e6y prboom-plus 2.5.1.5. There is... |
| CVE-2020-12856 | 2020-05-18 | OpenTrace, as used in COVIDSafe through v1.0.17, TraceTogether, ABTraceTogether, and... |
| CVE-2020-12857 | 2020-05-18 | Caching of GATT characteristic values (TempID) in COVIDSafe v1.0.15 and... |
| CVE-2020-12858 | 2020-05-18 | Non-reinitialisation of random data in the advertising payload in COVIDSafe... |
| CVE-2020-12859 | 2020-05-18 | Unnecessary fields in the OpenTrace/BlueTrace protocol in COVIDSafe through v1.0.17... |
| CVE-2020-12860 | 2020-05-18 | COVIDSafe through v1.0.17 allows a remote attacker to access phone... |
| CVE-2020-13129 | 2020-05-18 | An issue was discovered in the stashcat app through 3.9.1... |
| CVE-2020-12259 | 2020-05-18 | rConfig 3.9.4 is vulnerable to reflected XSS. The configDevice.php file... |
| CVE-2020-12258 | 2020-05-18 | rConfig 3.9.4 is vulnerable to session fixation because session expiry... |
| CVE-2020-9524 | 2020-05-18 | Cross Site scripting vulnerability on Micro Focus Enterprise Server and... |
| CVE-2020-12257 | 2020-05-18 | rConfig 3.9.4 is vulnerable to cross-site request forgery (CSRF) because... |
| CVE-2020-10957 | 2020-05-18 | In Dovecot before 2.3.10.1, unauthenticated sending of malformed parameters to... |
| CVE-2020-10958 | 2020-05-18 | In Dovecot before 2.3.10.1, a crafted SMTP/LMTP message triggers an... |
| CVE-2020-10967 | 2020-05-18 | In Dovecot before 2.3.10.1, remote unauthenticated attackers can crash the... |
| CVE-2020-12256 | 2020-05-18 | rConfig 3.9.4 is vulnerable to reflected XSS. The devicemgmnt.php file... |
| CVE-2020-12255 | 2020-05-18 | rConfig 3.9.4 is vulnerable to remote code execution due to... |
| CVE-2020-12801 | 2020-05-18 | Crash-recovered MSOffice encrypted documents defaulted to not to using encryption on next save |
| CVE-2020-8035 | 2020-05-18 | The image view functionality in Horde Groupware Webmail Edition before... |
| CVE-2020-11551 | 2020-05-18 | An issue was discovered on NETGEAR Orbi Tri-Band Business WiFi... |
| CVE-2020-11550 | 2020-05-18 | An issue was discovered on NETGEAR Orbi Tri-Band Business WiFi... |
| CVE-2020-11549 | 2020-05-18 | An issue was discovered on NETGEAR Orbi Tri-Band Business WiFi... |
| CVE-2019-7247 | 2020-05-18 | An issue was discovered in AODDriver2.sys in AMD OverDrive. The... |
| CVE-2019-7246 | 2020-05-18 | An issue was discovered in atillk64.sys in AMD ATI Diagnostics... |
| CVE-2020-13136 | 2020-05-18 | D-Link DSP-W215 1.26b03 devices send an obfuscated hash that can... |
| CVE-2020-13135 | 2020-05-18 | D-Link DSP-W215 1.26b03 devices allow information disclosure by intercepting messages... |
| CVE-2020-8034 | 2020-05-18 | Gollem before 3.0.13, as used in Horde Groupware Webmail Edition... |
| CVE-2020-6074 | 2020-05-18 | An exploitable code execution vulnerability exists in the PDF parser... |
| CVE-2020-6092 | 2020-05-18 | An exploitable code execution vulnerability exists in the way Nitro... |
| CVE-2020-6093 | 2020-05-18 | An exploitable information disclosure vulnerability exists in the way Nitro... |
| CVE-2019-19454 | 2020-05-18 | An arbitrary file download was found in the "Download Log"... |
| CVE-2019-19456 | 2020-05-18 | A Reflected XSS was found in the server selection box... |
| CVE-2020-13143 | 2020-05-18 | gadget_dev_desc_UDC_store in drivers/usb/gadget/configfs.c in the Linux kernel 3.16 through 5.6.13... |