CVE List - 2020 / December
Showing 301 - 400 of 1538 CVEs for December 2020 (Page 4 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-26956 | 2020-12-09 | In some cases, removing HTML elements during sanitization would keep existing SVG event handlers and therefore lead to XSS. This vulnerability affects Firefox < 83, Firefox ESR < 78.5, and... |
| CVE-2020-26957 | 2020-12-09 | OneCRL was non-functional in the new Firefox for Android due to a missing service initialization. This could result in a failure to enforce some certificate revocations. *Note: This issue only... |
| CVE-2020-26958 | 2020-12-09 | Firefox did not block execution of scripts with incorrect MIME types when the response was intercepted and cached through a ServiceWorker. This could lead to a cross-site script inclusion vulnerability,... |
| CVE-2020-26959 | 2020-12-09 | During browser shutdown, reference decrementing could have occured on a previously freed object, resulting in a use-after-free, memory corruption, and a potentially exploitable crash. This vulnerability affects Firefox < 83,... |
| CVE-2020-26960 | 2020-12-09 | If the Compact() method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects... |
| CVE-2020-26961 | 2020-12-09 | When DNS over HTTPS is in use, it intentionally filters RFC1918 and related IP ranges from the responses as these do not make sense coming from a DoH resolver. However... |
| CVE-2020-26962 | 2020-12-09 | Cross-origin iframes that contained a login form could have been recognized by the login autofill service, and populated. This could have been used in clickjacking attacks, as well as be... |
| CVE-2020-26963 | 2020-12-09 | Repeated calls to the history and location interfaces could have been used to hang the browser. This was addressed by introducing rate-limiting to these API calls. This vulnerability affects Firefox... |
| CVE-2020-26964 | 2020-12-09 | If the Remote Debugging via USB feature was enabled in Firefox for Android on an Android version prior to Android 6.0, untrusted apps could have connected to the feature and... |
| CVE-2020-26965 | 2020-12-09 | Some websites have a feature "Show Password" where clicking a button will change a password field into a textbook field, revealing the typed password. If, when using a software keyboard... |
| CVE-2020-26966 | 2020-12-09 | Searching for a single word from the address bar caused an mDNS request to be sent on the local network searching for a hostname consisting of that string; resulting in... |
| CVE-2020-26967 | 2020-12-09 | When listening for page changes with a Mutation Observer, a malicious web page could confuse Firefox Screenshots into interacting with elements other than those that it injected into the page.... |
| CVE-2020-26968 | 2020-12-09 | Mozilla developers reported memory safety bugs present in Firefox 82 and Firefox ESR 78.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort... |
| CVE-2020-26969 | 2020-12-09 | Mozilla developers reported memory safety bugs present in Firefox 82. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could... |
| CVE-2020-26970 | 2020-12-09 | When reading SMTP server status codes, Thunderbird writes an integer value to a position on the stack that is intended to contain just one byte. Depending on processor architecture and... |
| CVE-2020-10146 | 2020-12-09 | Microsoft Teams displayName stored cross-site scripting vulnerability |
| CVE-2020-16128 | 2020-12-09 | Aptdaemon error messages disclosed file existence to unprivileged users via dbus properties |
| CVE-2020-27349 | 2020-12-09 | aptdaemon performed policykit permissions checks too late |
| CVE-2020-29651 | 2020-12-09 | A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack... |
| CVE-2020-29656 | 2020-12-09 | An information disclosure vulnerability exists in RT-AC88U Download Master before 3.1.0.108. A direct access to /downloadmaster/dm_apply.cgi?action_mode=initial&download_type=General&special_cgi=get_language makes it possible to reach "unknown functionality" in a "known to be easy" manner... |
| CVE-2020-29655 | 2020-12-09 | An injection vulnerability exists in RT-AC88U Download Master before 3.1.0.108. Accessing Main_Login.asp?flag=1&productname=FOOBAR&url=/downloadmaster/task.asp will redirect to the login site, which will show the value of the parameter productname within the title.... |
| CVE-2020-29657 | 2020-12-09 | In JerryScript 2.3.0, there is an out-of-bounds read in main_print_unhandled_exception in the main-utils.c file. |
| CVE-2020-7337 | 2020-12-09 | Incorrect Permission Assignment for Critical Resource |
| CVE-2020-23520 | 2020-12-09 | imcat 5.2 allows an authenticated file upload and consequently remote code execution via the picture functionality. |
| CVE-2020-25199 | 2020-12-09 | A heap-based buffer overflow vulnerability exists within the WECON LeviStudioU Release Build 2019-09-21 and prior when processing project files. Opening a specially crafted project file could allow an attacker to... |
| CVE-2020-29659 | 2020-12-09 | A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET... |
| CVE-2020-26260 | 2020-12-09 | Server Side Request Forgery in BookStack |
| CVE-2020-26816 | 2020-12-09 | SAP AS JAVA (Key Storage Service), versions - 7.10, 7.11, 7.20 ,7.30, 7.31, 7.40, 7.50, has the key material which is stored in the SAP NetWeaver AS Java Key Storage... |
| CVE-2020-26829 | 2020-12-09 | SAP NetWeaver AS JAVA (P2P Cluster Communication), versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows arbitrary connections from processes because of missing authentication check, that are outside the cluster... |
| CVE-2020-26830 | 2020-12-09 | SAP Solution Manager 7.2 (User Experience Monitoring), version - 7.2, does not perform necessary authorization checks for an authenticated user. Due to inadequate access control, a network attacker authenticated as... |
| CVE-2020-26831 | 2020-12-09 | SAP BusinessObjects BI Platform (Crystal Report), versions - 4.1, 4.2, 4.3, does not sufficiently validate uploaded XML entities during crystal report generation due to missing XML validation, An attacker with... |
| CVE-2020-26261 | 2020-12-09 | user-readable api tokens in systemd units |
| CVE-2020-26828 | 2020-12-09 | SAP Disclosure Management, version - 10.1, provides capabilities for authorized users to upload and download content of specific file type. In some file types it is possible to enter formulas... |
| CVE-2020-26826 | 2020-12-09 | Process Integration Monitoring of SAP NetWeaver AS JAVA, versions - 7.31, 7.40, 7.50, allows an attacker to upload any file (including script files) without proper file format validation, leading to... |
| CVE-2020-26834 | 2020-12-09 | SAP HANA Database, version - 2.0, does not correctly validate the username when performing SAML bearer token-based user authentication. It is possible to manipulate a valid existing SAML bearer token... |
| CVE-2020-26835 | 2020-12-09 | SAP NetWeaver AS ABAP, versions - 740, 750, 751, 752, 753, 754 , does not sufficiently encode URL which allows an attacker to input malicious java script in the URL... |
| CVE-2020-26832 | 2020-12-09 | SAP AS ABAP (SAP Landscape Transformation), versions - 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 2011_1_731, 2011_1_752, 2020 and SAP S4 HANA (SAP Landscape Transformation), versions - 101, 102, 103, 104, 105,... |
| CVE-2020-26838 | 2020-12-09 | SAP Business Warehouse, versions - 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 782, and SAP BW4HANA, versions - 100, 200 allows an attacker authenticated with (high)... |
| CVE-2020-26837 | 2020-12-09 | SAP Solution Manager 7.2 (User Experience Monitoring), version - 7.2, allows an authenticated user to upload a malicious script that can exploit an existing path traversal vulnerability to compromise confidentiality... |
| CVE-2020-26836 | 2020-12-09 | SAP Solution Manager (Trace Analysis), version - 720, allows for misuse of a parameter in the application URL leading to Open Redirect vulnerability, an attacker can enter a link to... |
| CVE-2020-17528 | 2020-12-09 | Apache NuttX (incubating) Out of Bound Write from invalid TCP Urgent length |
| CVE-2020-17529 | 2020-12-09 | Apache NuttX (incubating) Out of Bound Write from invalid fragmentation offset value specified in the IP header |
| CVE-2020-7787 | 2020-12-09 | Improper Authentication |
| CVE-2020-7776 | 2020-12-09 | Cross-site Scripting (XSS) |
| CVE-2020-29661 | 2020-12-09 | A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b. |
| CVE-2020-29660 | 2020-12-09 | A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24. |
| CVE-2020-2020 | 2020-12-09 | Cortex XDR Agent: Exceptional condition denial-of-service (DoS) |
| CVE-2020-2049 | 2020-12-09 | Cortex XDR Agent: Improper control of loaded DLL leads to local privilege escalation |
| CVE-2020-28086 | 2020-12-09 | pass through 1.7.3 has a possibility of using a password for an unintended resource. For exploitation to occur, the user must do a git pull, decrypt a password, and log... |
| CVE-2020-26257 | 2020-12-09 | Denial of service attack via incorrect parameters to federation APIs |
| CVE-2020-25499 | 2020-12-09 | TOTOLINK A3002RU-V2.0.0 B20190814.1034 allows authenticated remote users to modify the system's 'Run Command'. An attacker can use this functionality to execute arbitrary OS commands on the router. |
| CVE-2020-16590 | 2020-12-09 | A double free vulnerability exists in the Binary File Descriptor (BFD) (aka libbrd) in GNU Binutils 2.35 in the process_symbol_table, as demonstrated in readelf, via a crafted file. |
| CVE-2020-16591 | 2020-12-09 | A Denial of Service vulnerability exists in the Binary File Descriptor (BFD) in GNU Binutils 2.35 due to an invalid read in process_symbol_table, as demonstrated in readeif. |
| CVE-2020-16592 | 2020-12-09 | A use after free issue exists in the Binary File Descriptor (BFD) library (aka libbfd) in GNU Binutils 2.34 in bfd_hash_lookup, as demonstrated in nm-new, that can cause a denial... |
| CVE-2020-16593 | 2020-12-09 | A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in scan_unit_for_symbols, as demonstrated in addr2line, that can cause... |
| CVE-2020-16599 | 2020-12-09 | A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in _bfd_elf_get_symbol_version_string, as demonstrated in nm-new, that can cause... |
| CVE-2020-16600 | 2020-12-09 | A Use After Free vulnerability exists in Artifex Software, Inc. MuPDF library 1.17.0-rc1 and earlier when a valid page was followed by a page with invalid pixmap dimensions, causing bander... |
| CVE-2020-29257 | 2020-12-09 | Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the q parameter to feedback.php. |
| CVE-2020-29258 | 2020-12-09 | Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the w parameter to index.php. |
| CVE-2020-29259 | 2020-12-09 | Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the subject or feedback parameter to feedback.php. |
| CVE-2020-10143 | 2020-12-09 | Macrium Reflect includes an OpenSSL component that specifies an OPENSSLDIR variable as C:\openssl\. Macrium Reflect contains a privileged service that uses this OpenSSL component. Because unprivileged Windows users can create... |
| CVE-2020-7339 | 2020-12-09 | Database Security(DBS)-Use of a Broken or Risky Cryptographic Algorithm |
| CVE-2020-16958 | 2020-12-09 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-16959 | 2020-12-09 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-16960 | 2020-12-09 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-16961 | 2020-12-09 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-16962 | 2020-12-09 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-16963 | 2020-12-09 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-16964 | 2020-12-09 | Windows Backup Engine Elevation of Privilege Vulnerability |
| CVE-2020-16971 | 2020-12-09 | Azure SDK for Java Security Feature Bypass Vulnerability |
| CVE-2020-16996 | 2020-12-09 | Kerberos Security Feature Bypass Vulnerability |
| CVE-2020-17002 | 2020-12-09 | Azure SDK for C Security Feature Bypass Vulnerability |
| CVE-2020-17089 | 2020-12-09 | Microsoft SharePoint Elevation of Privilege Vulnerability |
| CVE-2020-17092 | 2020-12-09 | Windows Network Connections Service Elevation of Privilege Vulnerability |
| CVE-2020-17094 | 2020-12-09 | Windows Error Reporting Information Disclosure Vulnerability |
| CVE-2020-17095 | 2020-12-09 | Windows Hyper-V Remote Code Execution Vulnerability |
| CVE-2020-17096 | 2020-12-09 | Windows NTFS Remote Code Execution Vulnerability |
| CVE-2020-17097 | 2020-12-09 | Windows Digital Media Receiver Elevation of Privilege Vulnerability |
| CVE-2020-17098 | 2020-12-09 | Windows GDI+ Information Disclosure Vulnerability |
| CVE-2020-17099 | 2020-12-09 | Windows Lock Screen Security Feature Bypass Vulnerability |
| CVE-2020-17103 | 2020-12-09 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |
| CVE-2020-17115 | 2020-12-09 | Microsoft SharePoint Server Spoofing Vulnerability |
| CVE-2020-17117 | 2020-12-09 | Microsoft Exchange Remote Code Execution Vulnerability |
| CVE-2020-17118 | 2020-12-09 | Microsoft SharePoint Remote Code Execution Vulnerability |
| CVE-2020-17119 | 2020-12-09 | Microsoft Outlook Information Disclosure Vulnerability |
| CVE-2020-17120 | 2020-12-09 | Microsoft SharePoint Information Disclosure Vulnerability |
| CVE-2020-17121 | 2020-12-09 | Microsoft SharePoint Remote Code Execution Vulnerability |
| CVE-2020-17122 | 2020-12-09 | Microsoft Excel Remote Code Execution Vulnerability |
| CVE-2020-17123 | 2020-12-09 | Microsoft Excel Remote Code Execution Vulnerability |
| CVE-2020-17124 | 2020-12-09 | Microsoft PowerPoint Remote Code Execution Vulnerability |
| CVE-2020-17125 | 2020-12-09 | Microsoft Excel Remote Code Execution Vulnerability |
| CVE-2020-17126 | 2020-12-09 | Microsoft Excel Information Disclosure Vulnerability |
| CVE-2020-17127 | 2020-12-09 | Microsoft Excel Remote Code Execution Vulnerability |
| CVE-2020-17128 | 2020-12-09 | Microsoft Excel Remote Code Execution Vulnerability |
| CVE-2020-17129 | 2020-12-09 | Microsoft Excel Remote Code Execution Vulnerability |
| CVE-2020-17130 | 2020-12-09 | Microsoft Excel Security Feature Bypass Vulnerability |
| CVE-2020-17131 | 2020-12-09 | Chakra Scripting Engine Memory Corruption Vulnerability |
| CVE-2020-17132 | 2020-12-09 | Microsoft Exchange Remote Code Execution Vulnerability |
| CVE-2020-17133 | 2020-12-09 | Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability |
| CVE-2020-17134 | 2020-12-09 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |