CVE List - 2020 / October
Showing 201 - 300 of 1594 CVEs for October 2020 (Page 3 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-26599 | 2020-10-06 | An issue was discovered on Samsung mobile devices with Q(10.0)... |
| CVE-2020-26603 | 2020-10-06 | An issue was discovered on Samsung mobile devices with O(8.x),... |
| CVE-2020-26607 | 2020-10-06 | An issue was discovered in TimaService on Samsung mobile devices... |
| CVE-2020-26606 | 2020-10-06 | An issue was discovered on Samsung mobile devices with O(8.x),... |
| CVE-2020-26605 | 2020-10-06 | An issue was discovered on Samsung mobile devices with Q(10.0)... |
| CVE-2020-26604 | 2020-10-06 | An issue was discovered in SystemUI on Samsung mobile devices... |
| CVE-2020-26602 | 2020-10-06 | An issue was discovered in EthernetNetwork on Samsung mobile devices... |
| CVE-2020-26601 | 2020-10-06 | An issue was discovered in DirEncryptService on Samsung mobile devices... |
| CVE-2020-26600 | 2020-10-06 | An issue was discovered on Samsung mobile devices with Q(10.0)... |
| CVE-2020-15927 | 2020-10-06 | Zoho ManageEngine Applications Manager version 14740 and prior allows an... |
| CVE-2020-16267 | 2020-10-06 | Zoho ManageEngine Applications Manager version 14740 and prior allows an... |
| CVE-2020-14183 | 2020-10-06 | Affected versions of Jira Server & Data Center allow a... |
| CVE-2020-7742 | 2020-10-07 | Prototype Pollution |
| CVE-2020-25985 | 2020-10-07 | MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion. Any... |
| CVE-2020-13335 | 2020-10-07 | Improper group membership validation when deleting a user account in... |
| CVE-2020-13347 | 2020-10-07 | A command injection vulnerability was discovered in Gitlab runner versions... |
| CVE-2020-13334 | 2020-10-07 | In GitLab versions prior to 13.2.10, 13.3.7 and 13.4.2, improper... |
| CVE-2020-13346 | 2020-10-07 | Membership changes are not reflected in ToDo subscriptions in GitLab... |
| CVE-2020-25343 | 2020-10-07 | Cross-site scripting (XSS) vulnerabilities in Symphony CMS 3.0.0 allow remote... |
| CVE-2020-24722 | 2020-10-07 | An issue was discovered in the GAEN (aka Google/Apple Exposure... |
| CVE-2020-14355 | 2020-10-07 | Multiple buffer overflow vulnerabilities were found in the QUIC image... |
| CVE-2020-11800 | 2020-10-07 | Zabbix Server 2.2.x and 3.0.x before 3.0.31, and 3.2 allows... |
| CVE-2019-16160 | 2020-10-07 | An integer underflow in the SMB server of MikroTik RouterOS... |
| CVE-2020-24246 | 2020-10-07 | Peplink Balance before 8.1.0rc1 allows an unauthenticated attacker to download... |
| CVE-2020-26596 | 2020-10-07 | The Dynamic OOO widget for the Elementor Pro plugin through... |
| CVE-2020-26870 | 2020-10-07 | Cure53 DOMPurify before 2.0.17 allows mutation XSS. This occurs because... |
| CVE-2020-13342 | 2020-10-07 | An issue has been discovered in GitLab affecting versions prior... |
| CVE-2020-17551 | 2020-10-07 | ImpressCMS 1.4.0 is affected by XSS in modules/system/admin.php which may... |
| CVE-2020-26876 | 2020-10-07 | The wp-courses plugin through 2.0.27 for WordPress allows remote attackers... |
| CVE-2020-26880 | 2020-10-07 | Sympa through 6.2.57b.2 allows a local privilege escalation from the... |
| CVE-2020-26164 | 2020-10-07 | In kdeconnect-kde (aka KDE Connect) before 20.08.2, an attacker on... |
| CVE-2020-7316 | 2020-10-07 | File and Removable Media Protection update fixes one vulnerability |
| CVE-2020-15175 | 2020-10-07 | Unauthenticated File Deletion in GLPI |
| CVE-2020-15176 | 2020-10-07 | SQL injection in GLPI |
| CVE-2020-15177 | 2020-10-07 | Unauthenticated Stored XSS in GLPI |
| CVE-2020-15217 | 2020-10-07 | User data exposure in GLPI |
| CVE-2020-15226 | 2020-10-07 | SQL Injection in GLPI Search API |
| CVE-2020-25768 | 2020-10-07 | Contao before 4.4.52, 4.9.x before 4.9.6, and 4.10.x before 4.10.1... |
| CVE-2020-25867 | 2020-10-07 | SoPlanning before 1.47 doesn't correctly check the security key used... |
| CVE-2020-15501 | 2020-10-07 | Smarter Coffee Maker before 2nd generation allows firmware replacement without... |
| CVE-2020-12400 | 2020-10-08 | When converting coordinates from projective to affine, the modular inversion... |
| CVE-2020-12401 | 2020-10-08 | During ECDSA signature generation, padding applied in the nonce designed... |
| CVE-2020-3320 | 2020-10-08 | Cisco Firepower Management Center Cross-Site Scripting Vulnerability |
| CVE-2020-3467 | 2020-10-08 | Cisco Identity Services Engine Authorization Bypass Vulnerability |
| CVE-2020-3535 | 2020-10-08 | Cisco Webex Teams Client for Windows DLL Hijacking Vulnerability |
| CVE-2020-3536 | 2020-10-08 | Cisco SD-WAN vManage Cross-Site Scripting Vulnerability |
| CVE-2020-3543 | 2020-10-08 | Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Memory Leak Vulnerability |
| CVE-2020-3544 | 2020-10-08 | Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Remote Code Execution and Denial of Service Vulnerability |
| CVE-2020-3567 | 2020-10-08 | Cisco Industrial Network Director Denial of Service Vulnerability |
| CVE-2020-3568 | 2020-10-08 | Cisco Email Security Appliance URL Filtering Bypass Vulnerability |
| CVE-2020-3589 | 2020-10-08 | Cisco Identity Services Engine Cross-Site Scripting Vulnerability |
| CVE-2020-3596 | 2020-10-08 | Cisco Expressway Series and TelePresence Video Communication Server Denial of Service Vulnerability |
| CVE-2020-3597 | 2020-10-08 | Cisco Nexus Data Broker Software Path Traversal Vulnerability |
| CVE-2020-3598 | 2020-10-08 | Cisco Vision Dynamic Signage Director Missing Authentication Vulnerability |
| CVE-2020-3601 | 2020-10-08 | Cisco StarOS Privilege Escalation Vulnerability |
| CVE-2020-3602 | 2020-10-08 | Cisco StarOS Privilege Escalation Vulnerability |
| CVE-2020-26567 | 2020-10-08 | An issue was discovered on D-Link DSR-250N before 3.17B devices.... |
| CVE-2020-25272 | 2020-10-08 | In SourceCodester Online Bus Booking System 1.0, there is XSS... |
| CVE-2020-25271 | 2020-10-08 | PHPGurukul hospital-management-system-in-php 4.0 allows XSS via admin/patient-search.php, doctor/search.php, book-appointment.php, doctor/appointment-history.php,... |
| CVE-2020-25270 | 2020-10-08 | PHPGurukul hostel-management-system 2.1 allows XSS via Guardian Name, Guardian Relation,... |
| CVE-2020-25263 | 2020-10-08 | PyroCMS 3.7 is vulnerable to cross-site request forgery (CSRF) via... |
| CVE-2020-25262 | 2020-10-08 | PyroCMS 3.7 is vulnerable to cross-site request forgery (CSRF) via... |
| CVE-2020-25273 | 2020-10-08 | In SourceCodester Online Bus Booking System 1.0, there is Authentication... |
| CVE-2020-2286 | 2020-10-08 | Jenkins Role-based Authorization Strategy Plugin 3.0 and earlier does not... |
| CVE-2020-2287 | 2020-10-08 | Jenkins Audit Trail Plugin 3.6 and earlier applies pattern matching... |
| CVE-2020-2288 | 2020-10-08 | In Jenkins Audit Trail Plugin 3.6 and earlier, the default... |
| CVE-2020-2289 | 2020-10-08 | Jenkins Active Choices Plugin 2.4 and earlier does not escape... |
| CVE-2020-2290 | 2020-10-08 | Jenkins Active Choices Plugin 2.4 and earlier does not escape... |
| CVE-2020-2291 | 2020-10-08 | Jenkins couchdb-statistics Plugin 0.3 and earlier stores its server password... |
| CVE-2020-2292 | 2020-10-08 | Jenkins Release Plugin 2.10.2 and earlier does not escape the... |
| CVE-2020-2293 | 2020-10-08 | Jenkins Persona Plugin 2.4 and earlier allows users with Overall/Read... |
| CVE-2020-2294 | 2020-10-08 | Jenkins Maven Cascade Release Plugin 1.3.2 and earlier does not... |
| CVE-2020-2295 | 2020-10-08 | A cross-site request forgery (CSRF) vulnerability in Jenkins Maven Cascade... |
| CVE-2020-2296 | 2020-10-08 | A cross-site request forgery (CSRF) vulnerability in Jenkins Shared Objects... |
| CVE-2020-2297 | 2020-10-08 | Jenkins SMS Notification Plugin 1.2 and earlier stores an access... |
| CVE-2020-2298 | 2020-10-08 | Jenkins Nerrvana Plugin 1.02.06 and earlier does not configure its... |
| CVE-2019-4545 | 2020-10-08 | IBM QRadar SIEM 7.3 and 7.4 when configured to use... |
| CVE-2020-4280 | 2020-10-08 | IBM QRadar SIEM 7.3 and 7.4 could allow a remote... |
| CVE-2020-4799 | 2020-10-08 | IBM Informix spatial 14.10 could allow a local user to... |
| CVE-2020-24301 | 2020-10-08 | Users of the HAPI FHIR Testpage Overlay 5.0.0 and below... |
| CVE-2020-15646 | 2020-10-08 | If an attacker intercepts Thunderbird's initial attempt to perform automatic... |
| CVE-2020-13344 | 2020-10-08 | An issue has been discovered in GitLab affecting all versions... |
| CVE-2020-13340 | 2020-10-08 | An issue has been discovered in GitLab affecting all versions... |
| CVE-2020-13339 | 2020-10-08 | An issue has been discovered in GitLab affecting all versions... |
| CVE-2020-5389 | 2020-10-08 | Dell EMC OpenManage Integration for Microsoft System Center (OMIMSSC) for... |
| CVE-2020-26802 | 2020-10-08 | forma.lms 2.3.0.2 is affected by Cross Site Request Forgery (CSRF)... |
| CVE-2020-10816 | 2020-10-08 | Zoho ManageEngine Applications Manager 14780 and before allows a remote... |
| CVE-2020-9048 | 2020-10-08 | victor Web Client - Arbitrary File Deletion Vulnerability |
| CVE-2020-1914 | 2020-10-08 | A logic vulnerability when handling the SaveGeneratorLong instruction in Facebook... |
| CVE-2020-15242 | 2020-10-08 | Open Redirect in Next.js |
| CVE-2020-26894 | 2020-10-08 | LiveCode v9.6.1 on Windows allows local, low-privileged users to gain... |
| CVE-2020-15241 | 2020-10-08 | Cross-Site Scripting in TYPO3 Fluid Engine |
| CVE-2019-19115 | 2020-10-08 | An escalation of privilege vulnerability in Nahimic APO Software Component... |
| CVE-2020-15243 | 2020-10-08 | WebApi Authentication attribute missing in Smartstore |
| CVE-2020-13626 | 2020-10-09 | OnePlus App Locker through 2020-10-06 allows physically proximate attackers to... |
| CVE-2020-26931 | 2020-10-09 | Certain NETGEAR devices are affected by disclosure of sensitive information.... |
| CVE-2020-26930 | 2020-10-09 | NETGEAR EX7700 devices before 1.0.0.210 are affected by incorrect configuration... |
| CVE-2020-26929 | 2020-10-09 | Certain NETGEAR devices are affected by command injection by an... |
| CVE-2020-26928 | 2020-10-09 | Certain NETGEAR devices are affected by authentication bypass. This affects... |
| CVE-2020-26927 | 2020-10-09 | Certain NETGEAR devices are affected by authentication bypass. This affects... |