CVE List - 2020 / October
Showing 1 - 100 of 1594 CVEs for October 2020 (Page 1 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-20903 | 2020-10-01 | The hyperlinks functionality in atlaskit/editor-core in before version 113.1.5 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in link targets. |
| CVE-2020-8109 | 2020-10-01 | Bitdefender ace.xmd parser out-of-bounds write (VA-8772) |
| CVE-2020-24861 | 2020-10-01 | GetSimple CMS 3.3.16 allows in parameter 'permalink' on the Settings page persistent Cross Site Scripting which is executed when you create and open a new page |
| CVE-2020-24860 | 2020-10-01 | CMS Made Simple 2.2.14 allows an authenticated user with access to the Content Manager to edit content and put persistent XSS payload in the affected text fields. The user can... |
| CVE-2020-25990 | 2020-10-01 | WebsiteBaker 2.12.2 allows SQL Injection via parameter 'display_name' in /websitebaker/admin/preferences/save.php. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in... |
| CVE-2020-4576 | 2020-10-01 | IBM WebSphere Application Server 7.5, 8.0, 8.5, and 9.0 traditional could allow a remote attacker to obtain sensitive information with a specially-crafted sequence of serialized objects. IBM X-Force ID: 184428. |
| CVE-2020-24620 | 2020-10-01 | Unisys Stealth(core) before 4.0.134 stores passwords in a recoverable format. Therefore, a search of Enterprise Manager can potentially reveal credentials. |
| CVE-2020-16844 | 2020-10-01 | In Istio 1.5.0 though 1.5.8 and Istio 1.6.0 through 1.6.7, when users specify an AuthorizationPolicy resource with DENY actions using wildcard suffixes (e.g. *-some-suffix) for source principals or namespace fields,... |
| CVE-2020-25017 | 2020-10-01 | Envoy through 1.15.0 only considers the first value when multiple header values are present for some HTTP headers. Envoy’s setCopy() header map API does not replace all existing occurences of... |
| CVE-2020-25018 | 2020-10-01 | Envoy master between 2d69e30 and 3b5acb2 may fail to parse request URL that requires host canonicalization. |
| CVE-2019-19393 | 2020-10-01 | The Web application on Rittal CMC PU III 7030.000 V3.00 V3.11.00_2 to V3.15.70_4 devices fails to sanitize user input on the system configurations page. This allows an attacker to backdoor... |
| CVE-2020-15228 | 2020-10-01 | Environment Variable Injection in GitHub Actions |
| CVE-2020-25200 | 2020-10-01 | Pritunl 1.29.2145.25 allows attackers to enumerate valid VPN usernames via a series of /auth/session login attempts. Initially, the server will return error 401. However, if the username is valid, then... |
| CVE-2020-15678 | 2020-10-01 | When recursing through graphical layers while scrolling, an iterator may have become invalid, resulting in a potential use-after-free. This occurs because the function APZCTreeManager::ComputeClippedCompositionBounds did not follow iterator invalidation rules.... |
| CVE-2020-15677 | 2020-10-01 | By exploiting an Open Redirect vulnerability on a website, an attacker could have spoofed the site displayed in the download file dialog to show the original site (the one suffering... |
| CVE-2020-15676 | 2020-10-01 | Firefox sometimes ran the onload handler for SVG elements that the DOM sanitizer decided to remove, resulting in JavaScript being executed after pasting attacker-controlled data into a contenteditable element. This... |
| CVE-2020-15675 | 2020-10-01 | When processing surfaces, the lifetime may outlive a persistent buffer leading to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 81. |
| CVE-2020-15674 | 2020-10-01 | Mozilla developers reported memory safety bugs present in Firefox 80. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could... |
| CVE-2020-15673 | 2020-10-01 | Mozilla developers reported memory safety bugs present in Firefox 80 and Firefox ESR 78.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort... |
| CVE-2020-15671 | 2020-10-01 | When typing in a password under certain conditions, a race may have occured where the InputContext was not being correctly set for the input field, resulting in the typed password... |
| CVE-2020-15670 | 2020-10-01 | Mozilla developers reported memory safety bugs present in Firefox for Android 79. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of... |
| CVE-2020-15669 | 2020-10-01 | When aborting an operation, such as a fetch, an abort signal may be deleted while alerting the objects to be notified. This results in a use-after-free and we presume that... |
| CVE-2020-15668 | 2020-10-01 | A lock was missing when accessing a data structure and importing certificate information into the trust database. This vulnerability affects Firefox < 80 and Firefox for Android < 80. |
| CVE-2020-15667 | 2020-10-01 | When processing a MAR update file, after the signature has been validated, an invalid name length could result in a heap overflow, leading to memory corruption and potentially arbitrary code... |
| CVE-2020-15666 | 2020-10-01 | When trying to load a non-video in an audio/video context the exact status code (200, 302, 404, 500, 412, 403, etc.) was disclosed via the MediaError Message. This level of... |
| CVE-2020-15665 | 2020-10-01 | Firefox did not reset the address bar after the beforeunload dialog was shown if the user chose to remain on the page. This could have resulted in an incorrect URL... |
| CVE-2020-15664 | 2020-10-01 | By holding a reference to the eval() function from an about:blank window, a malicious webpage could have gained access to the InstallTrigger object which would allow them to prompt the... |
| CVE-2020-15663 | 2020-10-01 | If Firefox is installed to a user-writable directory, the Mozilla Maintenance Service would execute updater.exe from the install location with system privileges. Although the Mozilla Maintenance Service does ensure that... |
| CVE-2020-15533 | 2020-10-01 | In Zoho ManageEngine Application Manager 14.7 Build 14730 (before 14684, and between 14689 and 14750), the AlarmEscalation module is vulnerable to unauthenticated SQL Injection attack. |
| CVE-2020-15227 | 2020-10-01 | Remote Code Execution vulnerability |
| CVE-2020-11979 | 2020-10-01 | As mitigation for CVE-2020-1945 Apache Ant 1.10.8 changed the permissions of temporary files it created so that only the current user was allowed to access them. Unfortunately the fixcrlf task... |
| CVE-2020-14223 | 2020-10-01 | HCL Digital Experience 8.5, 9.0, 9.5 is susceptible to cross-site scripting (XSS). The vulnerability could be employed in a reflected or non-persistent XSS attack. |
| CVE-2020-5784 | 2020-10-01 | Server-Side Request Forgery in Teltonika firmware TRB2_R_00.02.04.3 allows a low privileged user to cause the application to perform HTTP GET requests to arbitrary URLs. |
| CVE-2020-5789 | 2020-10-01 | Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to read the contents of arbitrary files on disk. |
| CVE-2020-5786 | 2020-10-01 | Cross-site request forgery in Teltonika firmware TRB2_R_00.02.04.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link. |
| CVE-2020-5785 | 2020-10-01 | Insufficient output sanitization in Teltonika firmware TRB2_R_00.02.04.3 allows an unauthenticated attacker to conduct reflected cross-site scripting via a crafted ‘action’ or ‘pkg_name’ parameter. |
| CVE-2020-5787 | 2020-10-01 | Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to delete arbitrary files on disk via the admin/services/packages/remove action. |
| CVE-2020-5788 | 2020-10-01 | Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to delete arbitrary files on disk via the admin/system/admin/certificates/delete action. |
| CVE-2020-9486 | 2020-10-01 | In Apache NiFi 1.10.0 to 1.11.4, the NiFi stateless execution engine produced log output which included sensitive property values. When a flow was triggered, the flow definition configuration JSON was... |
| CVE-2020-9487 | 2020-10-01 | In Apache NiFi 1.0.0 to 1.11.4, the NiFi download token (one-time password) mechanism used a fixed cache size and did not authenticate a request to create a download token, only... |
| CVE-2020-13940 | 2020-10-01 | In Apache NiFi 1.0.0 to 1.11.4, the notification service manager and various policy authorizer and user group provider objects allowed trusted administrators to inadvertently configure a potentially malicious XML file.... |
| CVE-2020-9491 | 2020-10-01 | In Apache NiFi 1.2.0 to 1.11.4, the NiFi UI and API were protected by mandating TLS v1.2, as well as listening connections established by processors like ListenHTTP, HandleHttpRequest, etc. However... |
| CVE-2020-5387 | 2020-10-01 | Dell XPS 13 9370 BIOS versions prior to 1.13.1 contains an Improper Exception Handling vulnerability. A local attacker with physical access could exploit this vulnerability to prevent the system from... |
| CVE-2020-26511 | 2020-10-02 | The wpo365-login plugin before v11.7 for WordPress allows use of a symmetric algorithm to decrypt a JWT token. This leads to authentication bypass. |
| CVE-2020-26518 | 2020-10-02 | Artica Pandora FMS before 743 allows unauthenticated attackers to conduct SQL injection attacks via the pandora_console/include/chart_generator.php session_id parameter. |
| CVE-2020-26519 | 2020-10-02 | Artifex MuPDF before 1.18.0 has a heap based buffer over-write when parsing JBIG2 files allowing attackers to cause a denial of service. |
| CVE-2020-26523 | 2020-10-02 | Froala Editor before 3.2.2 allows XSS via pasted content. |
| CVE-2020-26524 | 2020-10-02 | CodeLathe FileCloud before 20.2.0.11915 allows username enumeration. |
| CVE-2020-26540 | 2020-10-02 | An issue was discovered in Foxit Reader and PhantomPDF before 4.1 on macOS. Because the Hardened Runtime protection mechanism is not applied to code signing, code injection (or an information... |
| CVE-2020-26539 | 2020-10-02 | An issue was discovered in Foxit Reader and PhantomPDF before 10.1. When there is a multiple interpretation error for /V (in the Additional Action and Field dictionaries), a use-after-free can... |
| CVE-2020-26538 | 2020-10-02 | An issue was discovered in Foxit Reader and PhantomPDF before 10.1. It allows attackers to execute arbitrary code via a Trojan horse taskkill.exe in the current working directory. |
| CVE-2020-26537 | 2020-10-02 | An issue was discovered in Foxit Reader and PhantomPDF before 10.1. In a certain Shading calculation, the number of outputs is unequal to the number of color components in a... |
| CVE-2020-26536 | 2020-10-02 | An issue was discovered in Foxit Reader and PhantomPDF before 10.1. There is a NULL pointer dereference via a crafted PDF document. |
| CVE-2020-26535 | 2020-10-02 | An issue was discovered in Foxit Reader and PhantomPDF before 10.1. If TslAlloc attempts to allocate thread local storage but obtains an unacceptable index value, V8 throws an exception that... |
| CVE-2020-26534 | 2020-10-02 | An issue was discovered in Foxit Reader and PhantomPDF before 10.1. There is an Opt object use-after-free related to Field::ClearItems and Field::DeleteOptions, during AcroForm JavaScript execution. |
| CVE-2019-19199 | 2020-10-02 | REDDOXX MailDepot 2032 SP2 2.2.1242 has Insufficient Session Expiration because tokens are not invalidated upon a logout. |
| CVE-2020-12123 | 2020-10-02 | CSRF vulnerabilities in the /cgi-bin/ directory of the WAVLINK WN530H4 M30H4.V5030.190403 allow an attacker to remotely access router endpoints, because these endpoints do not contain CSRF tokens. If a user... |
| CVE-2020-12124 | 2020-10-02 | A remote command-line injection vulnerability in the /cgi-bin/live_api.cgi endpoint of the WAVLINK WN530H4 M30H4.V5030.190403 allows an attacker to execute arbitrary Linux commands as root without authentication. |
| CVE-2020-12125 | 2020-10-02 | A remote buffer overflow vulnerability in the /cgi-bin/makeRequest.cgi endpoint of the WAVLINK WN530H4 M30H4.V5030.190403 allows an attacker to execute arbitrary machine instructions as root without authentication. |
| CVE-2020-12126 | 2020-10-02 | Multiple authentication bypass vulnerabilities in the /cgi-bin/ endpoint of the WAVLINK WN530H4 M30H4.V5030.190403 allow an attacker to leak router settings, change configuration variables, and cause denial of service via an... |
| CVE-2020-12127 | 2020-10-02 | An information disclosure vulnerability in the /cgi-bin/ExportAllSettings.sh endpoint of the WAVLINK WN530H4 M30H4.V5030.190403 allows an attacker to leak router settings, including cleartext login details, DNS settings, and other sensitive information... |
| CVE-2020-14293 | 2020-10-02 | conf_datetime in Secudos DOMOS 5.8 allows remote attackers to execute arbitrary commands as root via shell metacharacters in the zone field (obtained from the web interface). |
| CVE-2020-14294 | 2020-10-02 | An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board. |
| CVE-2020-17382 | 2020-10-02 | The MSI AmbientLink MsIo64 driver 1.0.0.8 has a Buffer Overflow (0x80102040, 0x80102044, 0x80102050,and 0x80102054). |
| CVE-2020-17482 | 2020-10-02 | An issue has been found in PowerDNS Authoritative Server before 4.3.1 where an authorized user with the ability to insert crafted records into a zone might be able to leak... |
| CVE-2020-24696 | 2020-10-02 | An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker can trigger a race condition leading to a crash, or possibly arbitrary code... |
| CVE-2020-24697 | 2020-10-02 | An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker can cause a denial of service by sending crafted queries with a GSS-TSIG... |
| CVE-2020-24698 | 2020-10-02 | An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker might be able to cause a double-free, leading to a crash or possibly... |
| CVE-2020-25741 | 2020-10-02 | fdctrl_write_data in hw/block/fdc.c in QEMU 5.0.0 has a NULL pointer dereference via a NULL block pointer for the current drive. |
| CVE-2020-26124 | 2020-10-02 | openmediavault before 4.1.36 and 5.x before 5.5.12 allows authenticated PHP code injection attacks, via the sortfield POST parameter of rpc.php, because json_encode_safe is not used in config/databasebackend.inc. Successful exploitation allows... |
| CVE-2020-26134 | 2020-10-02 | Live Helper Chat before 3.44v allows stored XSS in chat messages with an operator via BBCode. |
| CVE-2020-26135 | 2020-10-02 | Live Helper Chat before 3.44v allows reflected XSS via the setsettingajax PATH_INFO. |
| CVE-2020-13168 | 2020-10-02 | SysAid 20.1.11b26 allows reflected XSS via the ForgotPassword.jsp accountid parameter. |
| CVE-2020-7736 | 2020-10-02 | Prototype Pollution |
| CVE-2020-7737 | 2020-10-02 | Prototype Pollution |
| CVE-2020-8110 | 2020-10-02 | Bitdefender ceva_emu.cvd module denial-of-service (VA-8766) |
| CVE-2020-7738 | 2020-10-02 | Arbitrary Code Execution |
| CVE-2020-25623 | 2020-10-02 | Erlang/OTP 22.3.x before 22.3.4.6 and 23.x before 23.1 allows Directory Traversal. An attacker can send a crafted HTTP request to read arbitrary files, if httpd in the inets application is... |
| CVE-2020-18184 | 2020-10-02 | In PluxXml V5.7,the theme edit function /PluXml/core/admin/parametres_edittpl.php allows remote attackers to execute arbitrary PHP code by placing this code into a template. |
| CVE-2020-18185 | 2020-10-02 | class.plx.admin.php in PluXml 5.7 allows attackers to execute arbitrary PHP code by modify the configuration file in a linux environment. |
| CVE-2020-18190 | 2020-10-02 | Bludit v3.8.1 is affected by directory traversal. Remote attackers are able to delete arbitrary files via /admin/ajax/upload-profile-picture. |
| CVE-2020-18191 | 2020-10-02 | GetSimpleCMS-3.3.15 is affected by directory traversal. Remote attackers are able to delete arbitrary files via /GetSimpleCMS-3.3.15/admin/log.php |
| CVE-2020-7069 | 2020-10-02 | Wrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV |
| CVE-2020-7070 | 2020-10-02 | PHP parses encoded cookie names so malicious `__Host-` cookies can be sent |
| CVE-2020-24356 | 2020-10-02 | Local Privilege Escalation in cloudflared |
| CVE-2020-5422 | 2020-10-02 | UAA password may appear in BOSH System Metrics Server process arguments |
| CVE-2020-26541 | 2020-10-02 | The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c. |
| CVE-2020-5979 | 2020-10-02 | NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component in which a user is presented with a dialog box for input by a... |
| CVE-2020-5980 | 2020-10-02 | NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in multiple components in which a securely loaded system DLL will load its dependencies in an insecure fashion, which may... |
| CVE-2020-5981 | 2020-10-02 | NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the DirectX11 user mode driver (nvwgf2um/x.dll), in which a specially crafted shader can cause an out of bounds access,... |
| CVE-2020-5982 | 2020-10-02 | NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) scheduler, in which the software does not properly limit the number or frequency of... |
| CVE-2020-24568 | 2020-10-02 | An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.1. There is a blind SQL injection in the lancompenent component, allowing logged-in attackers to discover arbitrary information. |
| CVE-2020-24627 | 2020-10-02 | A remote stored xss vulnerability was discovered in HPE KVM IP Console Switches version(s): G2 4x1Ex32 Prior to 2.8.3. |
| CVE-2020-24628 | 2020-10-02 | A remote code injection vulnerability was discovered in HPE KVM IP Console Switches version(s): G2 4x1Ex32 Prior to 2.8.3. |
| CVE-2020-15230 | 2020-10-02 | Arbitrary file read un Vapor |
| CVE-2020-24397 | 2020-10-02 | An issue was discovered in the client side of Zoho ManageEngine Desktop Central 10.0.0.SP-534. An attacker-controlled server can trigger an integer overflow in InternetSendRequestEx and InternetSendRequestByBitrate that leads to a... |
| CVE-2020-15589 | 2020-10-02 | A design issue was discovered in GetInternetRequestHandle, InternetSendRequestEx and InternetSendRequestByBitrate in the client side of Zoho ManageEngine Desktop Central 10.0.552.W and Remote Access Plus before 10.1.2119.1. By exploiting this issue,... |
| CVE-2020-13337 | 2020-10-02 | An issue has been discovered in GitLab affecting versions from 12.10 to 12.10.12 that allowed for a stored XSS payload to be added as a group name. |
| CVE-2020-13338 | 2020-10-02 | An issue has been discovered in GitLab affecting versions prior to 12.10.13, 13.0.8, 13.1.2. A stored cross-site scripting vulnerability was discovered when editing references. |
| CVE-2020-15231 | 2020-10-02 | Cross-site scripting attack in mapfish-print |