CVE List - 2020 / October
Showing 1501 - 1594 of 1594 CVEs for October 2020 (Page 16 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-14323 | 2020-10-29 | A null pointer dereference flaw was found in samba's Winbind... |
| CVE-2020-11483 | 2020-10-29 | NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior... |
| CVE-2020-11484 | 2020-10-29 | NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior... |
| CVE-2020-11485 | 2020-10-29 | NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior... |
| CVE-2020-11486 | 2020-10-29 | NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior... |
| CVE-2020-11487 | 2020-10-29 | NVIDIA DGX servers, DGX-1 with BMC firmware versions prior to... |
| CVE-2020-11488 | 2020-10-29 | NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior... |
| CVE-2020-11489 | 2020-10-29 | NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior... |
| CVE-2020-11615 | 2020-10-29 | NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30,... |
| CVE-2020-11616 | 2020-10-29 | NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30,... |
| CVE-2020-7746 | 2020-10-29 | Prototype Pollution |
| CVE-2020-27649 | 2020-10-29 | Improper certificate validation vulnerability in OpenVPN client in Synology Router... |
| CVE-2020-27651 | 2020-10-29 | Synology Router Manager (SRM) before 1.2.4-8081 does not set the... |
| CVE-2020-27653 | 2020-10-29 | Algorithm downgrade vulnerability in QuickConnect in Synology Router Manager (SRM)... |
| CVE-2020-27654 | 2020-10-29 | Improper access control vulnerability in lbd in Synology Router Manager... |
| CVE-2020-27655 | 2020-10-29 | Improper access control vulnerability in Synology Router Manager (SRM) before... |
| CVE-2020-27657 | 2020-10-29 | Cleartext transmission of sensitive information vulnerability in DDNS in Synology... |
| CVE-2020-27658 | 2020-10-29 | Synology Router Manager (SRM) before 1.2.4-8081 does not include the... |
| CVE-2020-27648 | 2020-10-29 | Improper certificate validation vulnerability in OpenVPN client in Synology DiskStation... |
| CVE-2020-27650 | 2020-10-29 | Synology DiskStation Manager (DSM) before 6.2.3-25426-2 does not set the... |
| CVE-2020-27652 | 2020-10-29 | Algorithm downgrade vulnerability in QuickConnect in Synology DiskStation Manager (DSM)... |
| CVE-2020-27656 | 2020-10-29 | Cleartext transmission of sensitive information vulnerability in DDNS in Synology... |
| CVE-2020-25516 | 2020-10-29 | WSO2 Enterprise Integrator 6.6.0 or earlier contains a stored cross-site... |
| CVE-2020-5938 | 2020-10-29 | On BIG-IP 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, when negotiating IPSec tunnels... |
| CVE-2020-5937 | 2020-10-29 | On BIG-IP AFM 15.1.0-15.1.0.5, the Traffic Management Microkernel (TMM) may... |
| CVE-2020-21266 | 2020-10-29 | Broadleaf Commerce 5.1.14-GA is affected by cross-site scripting (XSS) due... |
| CVE-2020-7384 | 2020-10-29 | Client-Side Command Injection in Rapid7 Metasploit |
| CVE-2020-27993 | 2020-10-29 | Hrsale 2.0.0 allows download?type=files&filename=../ directory traversal to read arbitrary files. |
| CVE-2020-5935 | 2020-10-29 | On BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, FPS,... |
| CVE-2020-5933 | 2020-10-29 | On versions 15.1.0-15.1.0.5, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, when a... |
| CVE-2020-5932 | 2020-10-29 | On BIG-IP ASM 15.1.0-15.1.0.5, a cross-site scripting (XSS) vulnerability exists... |
| CVE-2020-5931 | 2020-10-29 | On BIG-IP 15.1.0-15.1.0.5, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, Virtual servers... |
| CVE-2020-5934 | 2020-10-29 | On BIG-IP APM 15.1.0-15.1.0.5, 14.1.0-14.1.2.3, and 13.1.0-13.1.3.3, when multiple HTTP... |
| CVE-2020-5936 | 2020-10-29 | On BIG-IP LTM 15.1.0-15.1.0.5, 14.1.0-14.1.2.7, 13.1.0-13.1.3.4, and 12.1.0-12.1.5.1, the Traffic... |
| CVE-2019-4547 | 2020-10-29 | IBM Security Directory Server 6.4.0 generates an error message that... |
| CVE-2019-4563 | 2020-10-29 | IBM Security Directory Server 6.4.0 does not set the secure... |
| CVE-2020-4721 | 2020-10-29 | IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a... |
| CVE-2020-4722 | 2020-10-29 | IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a... |
| CVE-2020-4723 | 2020-10-29 | IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a... |
| CVE-2020-4724 | 2020-10-29 | IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a... |
| CVE-2020-4864 | 2020-10-29 | IBM Resilient SOAR V38.0 could allow an attacker on the... |
| CVE-2020-25780 | 2020-10-29 | In CommCell in Commvault before 14.68, 15.x before 15.58, 16.x... |
| CVE-2020-27744 | 2020-10-29 | An issue was discovered on Western Digital My Cloud NAS... |
| CVE-2020-27995 | 2020-10-29 | SQL Injection in Zoho ManageEngine Applications Manager 14 before 14560... |
| CVE-2020-27996 | 2020-10-29 | An issue was discovered in SmartStoreNET before 4.0.1. It does... |
| CVE-2020-27998 | 2020-10-29 | An issue was discovered in FastReport before 2020.4.0. It lacks... |
| CVE-2020-27747 | 2020-10-29 | An issue was discovered in Click Studios Passwordstate 8.9 (Build... |
| CVE-2020-27886 | 2020-10-29 | An issue was discovered in EyesOfNetwork eonweb 5.3-7 through 5.3-8.... |
| CVE-2020-27887 | 2020-10-29 | An issue was discovered in EyesOfNetwork 5.3 through 5.3-8. An... |
| CVE-2020-25646 | 2020-10-29 | A flaw was found in Ansible Collection community.crypto. openssl_privatekey_info exposes... |
| CVE-2020-26205 | 2020-10-29 | XSS in Sal |
| CVE-2020-27885 | 2020-10-29 | Cross-Site Scripting (XSS) vulnerability on WSO2 API Manager 3.1.0. By... |
| CVE-2020-27014 | 2020-10-29 | Trend Micro Antivirus for Mac 2020 (Consumer) contains a race... |
| CVE-2020-27015 | 2020-10-29 | Trend Micro Antivirus for Mac 2020 (Consumer) contains an Error... |
| CVE-2020-25689 | 2020-10-30 | A memory leak flaw was found in WildFly in all... |
| CVE-2020-28002 | 2020-10-30 | In SonarQube 8.4.2.36762, an external attacker can achieve authentication bypass... |
| CVE-2020-5652 | 2020-10-30 | Uncontrolled resource consumption vulnerability in Ethernet Port on MELSEC iQ-R,... |
| CVE-2020-5653 | 2020-10-30 | Buffer overflow vulnerability in TCP/IP function included in the firmware... |
| CVE-2020-5654 | 2020-10-30 | Session fixation vulnerability in TCP/IP function included in the firmware... |
| CVE-2020-5655 | 2020-10-30 | NULL pointer dereferences vulnerability in TCP/IP function included in the... |
| CVE-2020-5656 | 2020-10-30 | Improper access control vulnerability in TCP/IP function included in the... |
| CVE-2020-5657 | 2020-10-30 | Improper neutralization of argument delimiters in a command ('Argument Injection')... |
| CVE-2020-5658 | 2020-10-30 | Resource Management Errors vulnerability in TCP/IP function included in the... |
| CVE-2020-7759 | 2020-10-30 | SQL Injection |
| CVE-2020-7760 | 2020-10-30 | Regular Expression Denial of Service (ReDoS) |
| CVE-2020-4584 | 2020-10-30 | IBM i2 iBase 8.9.13 could allow a remote attacker to... |
| CVE-2020-4588 | 2020-10-30 | IBM i2 iBase 8.9.13 could allow an attacker to upload... |
| CVE-2020-6014 | 2020-10-30 | Check Point Endpoint Security Client for Windows, with Anti-Bot or... |
| CVE-2020-27708 | 2020-10-30 | A vulnerability exists in the Origin Client that could allow... |
| CVE-2020-15914 | 2020-10-30 | A cross-site scripting (XSS) vulnerability exists in the Origin Client... |
| CVE-2020-7373 | 2020-10-30 | vBulletin 5.5.4 through 5.6.2 allows remote command execution via crafted... |
| CVE-2020-15277 | 2020-10-30 | Remote Code Execution in baserCMS |
| CVE-2020-8236 | 2020-10-30 | A wrong configuration in Nextcloud Server 19.0.1 incorrectly made the... |
| CVE-2020-8173 | 2020-10-30 | A too small set of random characters being used for... |
| CVE-2020-8183 | 2020-10-30 | A logic error in Nextcloud Server 19.0.0 caused a plaintext... |
| CVE-2020-15276 | 2020-10-30 | Cross Site Scripting in baserCMS |
| CVE-2020-15273 | 2020-10-30 | Cross-Site Scripting in baserCMS |
| CVE-2020-28030 | 2020-10-30 | In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash.... |
| CVE-2020-5991 | 2020-10-30 | NVIDIA CUDA Toolkit, all versions prior to 11.1.1, contains a... |
| CVE-2020-28031 | 2020-10-30 | eramba through c2.8.1 allows HTTP Host header injection with (for... |
| CVE-2020-28035 | 2020-10-31 | WordPress before 5.5.2 allows attackers to gain privileges via XML-RPC. |
| CVE-2020-28039 | 2020-10-31 | is_protected_meta in wp-includes/meta.php in WordPress before 5.5.2 allows arbitrary file... |
| CVE-2020-28040 | 2020-10-31 | WordPress before 5.5.2 allows CSRF attacks that change a theme's... |
| CVE-2020-28038 | 2020-10-31 | WordPress before 5.5.2 allows stored XSS via post slugs. |
| CVE-2020-28037 | 2020-10-31 | is_blog_installed in wp-includes/functions.php in WordPress before 5.5.2 improperly determines whether... |
| CVE-2020-28036 | 2020-10-31 | wp-includes/class-wp-xmlrpc-server.php in WordPress before 5.5.2 allows attackers to gain privileges... |
| CVE-2020-28034 | 2020-10-31 | WordPress before 5.5.2 allows XSS associated with global variables. |
| CVE-2020-28033 | 2020-10-31 | WordPress before 5.5.2 mishandles embeds from disabled sites on a... |
| CVE-2020-28032 | 2020-10-31 | WordPress before 5.5.2 mishandles deserialization requests in wp-includes/Requests/Utility/FilteredIterator.php. |
| CVE-2020-15703 | 2020-10-31 | aptdaemon allows unprivileged users to test for the presence of local files via the transaction Locale property |
| CVE-2020-27992 | 2020-10-31 | Dr.Fone 3.0.0 allows local users to gain privileges via a... |
| CVE-2020-27358 | 2020-10-31 | An issue was discovered in REDCap 8.11.6 through 9.x before... |
| CVE-2020-27359 | 2020-10-31 | A cross-site scripting (XSS) issue in REDCap 8.11.6 through 9.x... |
| CVE-2020-5425 | 2020-10-31 | User Impersonation possible in Tanzu SSO |