CVE List - 2020 / October
Showing 1201 - 1300 of 1594 CVEs for October 2020 (Page 13 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-17006 | 2020-10-22 | In Network Security Services (NSS) before 3.46, several cryptographic primitives... |
| CVE-2020-18129 | 2020-10-22 | A CSRF vulnerability in Eyoucms v1.2.7 allows an attacker to... |
| CVE-2019-17007 | 2020-10-22 | In Network Security Services before 3.44, a malformed Netscape Certificate... |
| CVE-2020-15684 | 2020-10-22 | Mozilla developers reported memory safety bugs present in Firefox 81.... |
| CVE-2020-15683 | 2020-10-22 | Mozilla developers and community members reported memory safety bugs present... |
| CVE-2020-15682 | 2020-10-22 | When a link to an external protocol was clicked, a... |
| CVE-2020-15681 | 2020-10-22 | When multiple WASM threads had a reference to a module,... |
| CVE-2020-15680 | 2020-10-22 | If a valid external protocol handler was referenced in an... |
| CVE-2020-27675 | 2020-10-22 | An issue was discovered in the Linux kernel through 5.9.1,... |
| CVE-2020-27674 | 2020-10-22 | An issue was discovered in Xen through 4.14.x allowing x86... |
| CVE-2020-27673 | 2020-10-22 | An issue was discovered in the Linux kernel through 5.9.1,... |
| CVE-2020-27672 | 2020-10-22 | An issue was discovered in Xen through 4.14.x allowing x86... |
| CVE-2020-27671 | 2020-10-22 | An issue was discovered in Xen through 4.14.x allowing x86... |
| CVE-2020-27670 | 2020-10-22 | An issue was discovered in Xen through 4.14.x allowing x86... |
| CVE-2020-11853 | 2020-10-22 | Arbitrary code execution vulnerability on multiple Micro Focus products |
| CVE-2020-15270 | 2020-10-22 | Improper session expiration in Parse Server |
| CVE-2020-27216 | 2020-10-23 | In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thru 10.0.0.beta2,... |
| CVE-2018-8062 | 2020-10-23 | A cross-site scripting (XSS) vulnerability on Comtrend AR-5387un devices with... |
| CVE-2019-14711 | 2020-10-23 | Verifone MX900 series Pinpad Payment Terminals with OS 30251000 have... |
| CVE-2019-14712 | 2020-10-23 | Verifone VerixV Pinpad Payment Terminals with QT000530 allow bypass of... |
| CVE-2019-14713 | 2020-10-23 | Verifone MX900 series Pinpad Payment Terminals with OS 30251000 allow... |
| CVE-2019-14719 | 2020-10-23 | Verifone MX900 series Pinpad Payment Terminals with OS 30251000 allow... |
| CVE-2019-14718 | 2020-10-23 | Verifone MX900 series Pinpad Payment Terminals with OS 30251000 have... |
| CVE-2019-14717 | 2020-10-23 | Verifone Verix OS on VerixV Pinpad Payment Terminals with QT000530... |
| CVE-2019-14716 | 2020-10-23 | Verifone VerixV Pinpad Payment Terminals with QT000530 have an undocumented... |
| CVE-2020-9361 | 2020-10-23 | CryptoPro CSP through 5.0.0.10004 on 64-bit platforms allows local users... |
| CVE-2020-9331 | 2020-10-23 | CryptoPro CSP through 5.0.0.10004 on 32-bit platforms allows Local Privilege... |
| CVE-2020-15002 | 2020-10-23 | OX App Suite through 7.10.3 allows SSRF via the the... |
| CVE-2020-15003 | 2020-10-23 | OX App Suite through 7.10.3 allows Information Exposure because a... |
| CVE-2020-15004 | 2020-10-23 | OX App Suite through 7.10.3 allows stats/diagnostic?param= XSS. |
| CVE-2020-26887 | 2020-10-23 | FRITZ!OS before 7.21 on FRITZ!Box devices allows a bypass of... |
| CVE-2019-14715 | 2020-10-23 | Verifone Pinpad Payment Terminals allow undocumented physical access to the... |
| CVE-2020-26561 | 2020-10-23 | Belkin LINKSYS WRT160NL 1.0.04.002_US_20130619 devices have a stack-based buffer overflow... |
| CVE-2020-3997 | 2020-10-23 | VMware Horizon Server (7.x prior to 7.10.3 or 7.13.0) contains... |
| CVE-2020-3998 | 2020-10-23 | VMware Horizon Client for Windows (5.x prior to 5.5.0) contains... |
| CVE-2020-25466 | 2020-10-23 | A SSRF vulnerability exists in the downloadimage interface of CRMEB... |
| CVE-2020-25483 | 2020-10-23 | An arbitrary command execution vulnerability exists in the fopen() function... |
| CVE-2020-5977 | 2020-10-23 | NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a... |
| CVE-2020-5978 | 2020-10-23 | NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a... |
| CVE-2020-5990 | 2020-10-23 | NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a... |
| CVE-2020-24847 | 2020-10-23 | A Cross-Site Request Forgery (CSRF) vulnerability is identified in FruityWifi... |
| CVE-2020-24848 | 2020-10-23 | FruityWifi through 2.4 has an unsafe Sudo configuration [(ALL :... |
| CVE-2020-27388 | 2020-10-23 | Multiple Stored Cross Site Scripting (XSS) vulnerabilities exist in the... |
| CVE-2020-27678 | 2020-10-23 | An issue was discovered in illumos before 2020-10-22, as used... |
| CVE-2020-7751 | 2020-10-25 | Prototype Pollution |
| CVE-2020-25470 | 2020-10-26 | AntSword 2.1.8.1 contains a cross-site scripting (XSS) vulnerability in the... |
| CVE-2020-13100 | 2020-10-26 | Arista’s CloudVision eXchange (CVX) server before 4.21.12M, 4.22.x before 4.22.7M,... |
| CVE-2020-7196 | 2020-10-26 | The HPE BlueData EPIC Software Platform version 4.0 and HPE... |
| CVE-2020-7197 | 2020-10-26 | SSMC3.7.0.0 is vulnerable to remote authentication bypass. HPE StoreServ Management... |
| CVE-2020-15897 | 2020-10-26 | Arista EOS before 4.21.12M, 4.22.x before 4.22.7M, 4.23.x before 4.23.5M,... |
| CVE-2020-24631 | 2020-10-26 | A remote execution of arbitrary commands vulnerability was discovered in... |
| CVE-2020-24632 | 2020-10-26 | A remote execution of arbitrary commandss vulnerability was discovered in... |
| CVE-2020-7124 | 2020-10-26 | A remote unauthorized access vulnerability was discovered in Aruba Airwave... |
| CVE-2020-7125 | 2020-10-26 | A remote escalation of privilege vulnerability was discovered in Aruba... |
| CVE-2020-7126 | 2020-10-26 | A remote server-side request forgery (ssrf) vulnerability was discovered in... |
| CVE-2020-7127 | 2020-10-26 | A remote unauthenticated arbitrary code execution vulnerability was discovered in... |
| CVE-2020-18766 | 2020-10-26 | A cross-site scripting (XSS) vulnerability AntSword v2.0.7 can remotely execute... |
| CVE-2020-6876 | 2020-10-26 | A ZTE product is impacted by an XSS vulnerability. The... |
| CVE-2020-27187 | 2020-10-26 | An issue was discovered in KDE Partition Manager 4.1.0 before... |
| CVE-2020-7752 | 2020-10-26 | Command Injection |
| CVE-2020-26161 | 2020-10-26 | In Octopus Deploy through 2020.4.2, an attacker could redirect users... |
| CVE-2020-26566 | 2020-10-26 | A Denial of Service condition in Motion-Project Motion 3.2 through... |
| CVE-2017-18925 | 2020-10-26 | opentmpfiles through 0.3.1 allows local users to take ownership of... |
| CVE-2020-15271 | 2020-10-26 | Shell Command Execution in lookatme |
| CVE-2020-15272 | 2020-10-26 | Shell-injection in git-tag-annotation GitHub action |
| CVE-2020-15274 | 2020-10-26 | Stored XSS via search result in Wiki.js |
| CVE-2020-25034 | 2020-10-26 | eMPS prior to eMPS 9.0 FireEye EX 3500 devices allows... |
| CVE-2020-26878 | 2020-10-26 | Ruckus through 1.5.1.0.21 is affected by remote command injection. An... |
| CVE-2020-26879 | 2020-10-26 | Ruckus vRioT through 1.5.1.0.21 has an API backdoor that is... |
| CVE-2020-1915 | 2020-10-26 | An out-of-bounds read in the JavaScript Interpreter in Facebook Hermes... |
| CVE-2020-27743 | 2020-10-26 | libtac in pam_tacplus through 1.5.1 lacks a check for a... |
| CVE-2018-21269 | 2020-10-27 | checkpath in OpenRC through 0.42.1 might allow local users to... |
| CVE-2020-15352 | 2020-10-27 | An XML external entity (XXE) vulnerability in Pulse Connect Secure... |
| CVE-2020-8956 | 2020-10-27 | Pulse Secure Desktop Client 9.0Rx before 9.0R5 and 9.1Rx before... |
| CVE-2020-27180 | 2020-10-27 | konzept-ix publiXone before 2020.015 allows attackers to download files by... |
| CVE-2020-27181 | 2020-10-27 | A hardcoded AES key in CipherUtils.java in the Java applet... |
| CVE-2020-27182 | 2020-10-27 | Multiple cross-site scripting (XSS) vulnerabilities in konzept-ix publiXone before 2020.015... |
| CVE-2020-27183 | 2020-10-27 | A RemoteFunctions endpoint with missing access control in konzept-ix publiXone... |
| CVE-2020-27179 | 2020-10-27 | konzept-ix publiXone before 2020.015 allows attackers to take over arbitrary... |
| CVE-2020-7753 | 2020-10-27 | Regular Expression Denial of Service (ReDoS) |
| CVE-2020-23864 | 2020-10-27 | An issue exits in IOBit Malware Fighter version 8.0.2.547. Local... |
| CVE-2020-10256 | 2020-10-27 | An issue was discovered in beta versions of the 1Password... |
| CVE-2020-8579 | 2020-10-27 | Clustered Data ONTAP versions 9.7 through 9.7P7 are susceptible to... |
| CVE-2020-6022 | 2020-10-27 | Check Point ZoneAlarm before version 15.8.139.18543 allows a local actor... |
| CVE-2020-6023 | 2020-10-27 | Check Point ZoneAlarm before version 15.8.139.18543 allows a local actor... |
| CVE-2020-23945 | 2020-10-27 | A SQL injection vulnerability exists in Victor CMS V1.0 in... |
| CVE-2020-7754 | 2020-10-27 | Regular Expression Denial of Service (ReDoS) |
| CVE-2020-11854 | 2020-10-27 | Arbitrary code execution vlnerability in Operation bridge Manager, Application Performance Management and Operations Bridge (containerized) products. |
| CVE-2020-11858 | 2020-10-27 | Code execution with escalated privilegesn vlnerability in Operation bridge Manager and Operations Bridge (containerized) products. |
| CVE-2020-7755 | 2020-10-27 | Regular Expression Denial of Service (ReDoS) |
| CVE-2020-27853 | 2020-10-27 | Wire before 2020-10-16 allows remote attackers to cause a denial... |
| CVE-2020-15238 | 2020-10-27 | Local privilege escalation Blueman |
| CVE-2018-4296 | 2020-10-27 | This issue is fixed in macOS Mojave 10.14. A permissions... |
| CVE-2018-4339 | 2020-10-27 | This issue was addressed with a new entitlement. This issue... |
| CVE-2018-4390 | 2020-10-27 | An inconsistent user interface issue was addressed with improved state... |
| CVE-2018-4381 | 2020-10-27 | A resource exhaustion issue was addressed with improved input validation.... |
| CVE-2018-4428 | 2020-10-27 | A lock screen issue allowed access to the share function... |
| CVE-2018-4391 | 2020-10-27 | An inconsistent user interface issue was addressed with improved state... |
| CVE-2018-4444 | 2020-10-27 | A logic issue was addressed with improved state management. This... |
| CVE-2018-4433 | 2020-10-27 | A configuration issue was addressed with additional restrictions. This issue... |