Lista CVE - 2020 / Agosto
Visualizzazione 601 - 700 di 1160 CVE per Agosto 2020 (Pagina 7 di 12)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2020-1543 | 2020-08-17 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-1544 | 2020-08-17 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-1545 | 2020-08-17 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-1546 | 2020-08-17 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-1547 | 2020-08-17 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-1548 | 2020-08-17 | Windows WaasMedic Service Information Disclosure Vulnerability |
| CVE-2020-1549 | 2020-08-17 | Windows CDP User Components Elevation of Privilege Vulnerability |
| CVE-2020-1550 | 2020-08-17 | Windows CDP User Components Elevation of Privilege Vulnerability |
| CVE-2020-1551 | 2020-08-17 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-1552 | 2020-08-17 | Windows Work Folder Service Elevation of Privilege Vulnerability |
| CVE-2020-1553 | 2020-08-17 | Windows Runtime Elevation of Privilege Vulnerability |
| CVE-2020-1554 | 2020-08-17 | Media Foundation Memory Corruption Vulnerability |
| CVE-2020-1555 | 2020-08-17 | Scripting Engine Memory Corruption Vulnerability |
| CVE-2020-1556 | 2020-08-17 | Windows WalletService Elevation of Privilege Vulnerability |
| CVE-2020-1557 | 2020-08-17 | Jet Database Engine Remote Code Execution Vulnerability |
| CVE-2020-1558 | 2020-08-17 | Jet Database Engine Remote Code Execution Vulnerability |
| CVE-2020-1560 | 2020-08-17 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability |
| CVE-2020-1561 | 2020-08-17 | Microsoft Graphics Components Remote Code Execution Vulnerability |
| CVE-2020-1562 | 2020-08-17 | Microsoft Graphics Components Remote Code Execution Vulnerability |
| CVE-2020-1563 | 2020-08-17 | Microsoft Office Remote Code Execution Vulnerability |
| CVE-2020-1564 | 2020-08-17 | Jet Database Engine Remote Code Execution Vulnerability |
| CVE-2020-1565 | 2020-08-17 | Windows Elevation of Privilege Vulnerability |
| CVE-2020-1566 | 2020-08-17 | Windows Kernel Elevation of Privilege Vulnerability |
| CVE-2020-1567 | 2020-08-17 | MSHTML Engine Remote Code Execution Vulnerability |
| CVE-2020-1568 | 2020-08-17 | Microsoft Edge PDF Remote Code Execution Vulnerability |
| CVE-2020-1569 | 2020-08-17 | Microsoft Edge Memory Corruption Vulnerability |
| CVE-2020-1570 | 2020-08-17 | Scripting Engine Memory Corruption Vulnerability |
| CVE-2020-1571 | 2020-08-17 | Windows Setup Elevation of Privilege Vulnerability |
| CVE-2020-1573 | 2020-08-17 | Microsoft Office SharePoint XSS Vulnerability |
| CVE-2020-1574 | 2020-08-17 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability |
| CVE-2020-1577 | 2020-08-17 | DirectWrite Information Disclosure Vulnerability |
| CVE-2020-1578 | 2020-08-17 | Windows Kernel Information Disclosure Vulnerability |
| CVE-2020-1579 | 2020-08-17 | Windows Function Discovery SSDP Provider Elevation of Privilege Vulnerability |
| CVE-2020-1580 | 2020-08-17 | Microsoft Office SharePoint XSS Vulnerability |
| CVE-2020-1581 | 2020-08-17 | Microsoft Office Click-to-Run Elevation of Privilege Vulnerability |
| CVE-2020-1582 | 2020-08-17 | Microsoft Access Remote Code Execution Vulnerability |
| CVE-2020-1583 | 2020-08-17 | Microsoft Word Information Disclosure Vulnerability |
| CVE-2020-1584 | 2020-08-17 | Windows dnsrslvr.dll Elevation of Privilege Vulnerability |
| CVE-2020-1585 | 2020-08-17 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability |
| CVE-2020-1587 | 2020-08-17 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability |
| CVE-2020-1591 | 2020-08-17 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability |
| CVE-2020-1597 | 2020-08-17 | ASP.NET Core Denial of Service Vulnerability |
| CVE-2020-13933 | 2020-08-17 | Apache Shiro before 1.6.0, when using Apache Shiro, a specially crafted HTTP request may cause an authentication bypass. |
| CVE-2020-13183 | 2020-08-17 | Reflected Cross Site Scripting in Teradici PCoIP Management Console prior to 20.07 could allow an attacker to take over the user's active session if the user is exposed to a... |
| CVE-2020-12480 | 2020-08-17 | In Play Framework 2.6.0 through 2.8.1, the CSRF filter can be bypassed by making CORS simple requests with content types that contain parameters that can't be parsed. |
| CVE-2020-15152 | 2020-08-17 | Server-Side Request Forgery in ftp-srv |
| CVE-2020-7706 | 2020-08-18 | Prototype Pollution |
| CVE-2020-14333 | 2020-08-18 | A flaw was found in Ovirt Engine's web interface in ovirt 4.4 and earlier, where it did not filter user-controllable parameters completely, resulting in a reflected cross-site scripting attack. This... |
| CVE-2020-7707 | 2020-08-18 | Prototype Pollution |
| CVE-2020-7708 | 2020-08-18 | Prototype Pollution |
| CVE-2020-14937 | 2020-08-18 | Memory access out of buffer boundaries issues was discovered in Contiki-NG 4.4 through 4.5, in the SNMP BER encoder/decoder. The length of provided input/output buffers is insufficiently verified during the... |
| CVE-2020-14934 | 2020-08-18 | Buffer overflows were discovered in Contiki-NG 4.4 through 4.5, in the SNMP agent. The function parsing the received SNMP request does not verify the input message's requested variables against the... |
| CVE-2020-14935 | 2020-08-18 | Buffer overflows were discovered in Contiki-NG 4.4 through 4.5, in the SNMP bulk get request response encoding function. The function parsing the received SNMP request does not verify the input... |
| CVE-2020-14936 | 2020-08-18 | Buffer overflows were discovered in Contiki-NG 4.4 through 4.5, in the SNMP agent. Functions parsing the OIDs in SNMP requests lack sufficient allocated target-buffer capacity verification when writing parsed OID... |
| CVE-2020-7018 | 2020-08-18 | Elastic Enterprise Search before 7.9.0 contain a credential exposure flaw in the App Search interface. If a user is given the �developer� role, they will be able to view the... |
| CVE-2020-7019 | 2020-08-18 | In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same query another more... |
| CVE-2019-6258 | 2020-08-18 | D-Link DIR-822 Rev.Bx devices with firmware v.202KRb06 and older allow a buffer overflow via long MacAddress data in a /HNAP1/SetClientInfo HNAP protocol message, which is mishandled in /usr/sbin/udhcpd during reading... |
| CVE-2020-9415 | 2020-08-18 | TIBCO Data Virtualization |
| CVE-2020-15865 | 2020-08-18 | A Remote Code Execution vulnerability in Stimulsoft (aka Stimulsoft Reports) 2013.1.1600.0 allows an attacker to encode C# scripts as base-64 in the report XML file so that they will be... |
| CVE-2020-24032 | 2020-08-18 | tz.pl on XoruX LPAR2RRD and STOR2RRD 2.70 virtual appliances allows cmd=set&tz=OS command injection via shell metacharacters in a timezone. |
| CVE-2020-5385 | 2020-08-18 | Dell Encryption versions prior to 10.8 and Dell Endpoint Security Suite versions prior to 2.8 contain a privilege escalation vulnerability because of an incomplete fix for CVE-2020-5358. A local malicious... |
| CVE-2020-15926 | 2020-08-18 | Rocket.Chat through 3.4.2 allows XSS where an attacker can send a specially crafted message to a channel or in a direct message to the client which results in remote code... |
| CVE-2020-23934 | 2020-08-18 | An issue was discovered in RiteCMS 2.2.1. An authenticated user can directly execute system commands by uploading a php web shell in the "Filemanager" section. |
| CVE-2020-15862 | 2020-08-19 | Net-SNMP through 5.8 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides the ability to run arbitrary commands as root. |
| CVE-2020-24394 | 2020-08-19 | In the Linux kernel before 5.7.8, fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions on new filesystem objects when the filesystem lacks ACL support, aka CID-22cf8419f131. This occurs because... |
| CVE-2020-9715 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution . |
| CVE-2020-24381 | 2020-08-19 | GUnet Open eClass Platform (aka openeclass) before 3.11 might allow remote attackers to read students' submitted assessments because it does not ensure that the web server blocks directory listings, and... |
| CVE-2020-4381 | 2020-08-19 | IBM Spectrum Scale for IBM Elastic Storage Server 5.3.0 through 5.3.6 could allow an authenticated user to cause a denial of service during deployment or upgrade if GUI specific services... |
| CVE-2020-4648 | 2020-08-19 | A vulnerability exsists in IBM Planning Analytics 2.0 whereby avatars in Planning Analytics Workspace could be modified by other users without authorization to do so. IBM X-Force ID: 186019. |
| CVE-2020-4653 | 2020-08-19 | IBM Planning Analytics 2.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote... |
| CVE-2020-9698 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution . |
| CVE-2020-9699 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution . |
| CVE-2020-9700 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution . |
| CVE-2020-9701 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution . |
| CVE-2020-9702 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a stack exhaustion vulnerability. Successful exploitation could lead to application denial-of-service. |
| CVE-2020-9703 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a stack exhaustion vulnerability. Successful exploitation could lead to application denial-of-service. |
| CVE-2020-9704 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution . |
| CVE-2020-9705 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2020-9706 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2020-9707 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2020-9693 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution . |
| CVE-2020-9694 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution . |
| CVE-2020-9696 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a security bypass vulnerability. Successful exploitation could lead to security feature bypass. |
| CVE-2020-9697 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a disclosure of sensitive data vulnerability. Successful exploitation could lead to memory leak. |
| CVE-2020-9710 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2020-9712 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a security bypass vulnerability. Successful exploitation could lead to security feature bypass. |
| CVE-2020-9714 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a security bypass vulnerability. Successful exploitation could lead to privilege escalation . |
| CVE-2020-9716 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2020-9717 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2020-9718 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2020-9719 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2020-9720 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2020-9721 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2020-9722 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution . |
| CVE-2020-9723 | 2020-08-19 | Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2020-9724 | 2020-08-19 | Adobe Lightroom versions 9.2.0.10 and earlier have an insecure library loading vulnerability. Successful exploitation could lead to privilege escalation. |
| CVE-2020-24368 | 2020-08-19 | Icinga Icinga Web2 2.0.0 through 2.6.4, 2.7.4 and 2.8.2 has a Directory Traversal vulnerability which allows an attacker to access arbitrary files that are readable by the process running Icinga... |
| CVE-2020-11848 | 2020-08-19 | Denial of service vulnerability on Micro Focus ArcSight Management Center. Affecting all versions prior to version 2.9.5. The vulnerability could cause the server to become unavailable, causing a denial of... |
| CVE-2020-14356 | 2020-08-19 | A flaw null pointer dereference in the Linux kernel cgroupv2 subsystem in versions before 5.7.10 was found in the way when reboot the system. A local user could use this... |
| CVE-2020-23574 | 2020-08-19 | When uploading a file in Sysax Multi Server 6.90, an authenticated user can modify the filename="" parameter in the uploadfile_name1.htm form to a length of 368 or more bytes. This... |