CVE List - 2020 / January
Showing 1201 - 1300 of 1655 CVEs for January 2020 (Page 13 of 17)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2015-2929 | 2020-01-24 | The Hidden Service (HS) client implementation in Tor before 0.2.4.27,... |
| CVE-2015-2689 | 2020-01-24 | Tor before 0.2.4.26 and 0.2.5.x before 0.2.5.11 does not properly... |
| CVE-2015-2688 | 2020-01-24 | buf_pullup in Tor before 0.2.4.26 and 0.2.5.x before 0.2.5.11 does... |
| CVE-2013-1596 | 2020-01-24 | An Authentication Bypass Vulnerability exists in Vivotek PT7135 IP Camera... |
| CVE-2013-1597 | 2020-01-24 | A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras... |
| CVE-2014-4172 | 2020-01-24 | A URL parameter injection vulnerability was found in the back-channel... |
| CVE-2013-1598 | 2020-01-24 | A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras... |
| CVE-2020-7052 | 2020-01-24 | CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30... |
| CVE-2020-7964 | 2020-01-24 | An issue was discovered in Mirumee Saleor 2.x before 2.9.1.... |
| CVE-2020-5224 | 2020-01-24 | Session key exposure through session list in Django User Sessions |
| CVE-2018-8654 | 2020-01-24 | An elevation of privilege vulnerability exists in Microsoft Dynamics 365... |
| CVE-2019-1349 | 2020-01-24 | A remote code execution vulnerability exists when Git for Visual... |
| CVE-2019-1350 | 2020-01-24 | A remote code execution vulnerability exists when Git for Visual... |
| CVE-2019-1351 | 2020-01-24 | A tampering vulnerability exists when Git for Visual Studio improperly... |
| CVE-2019-1352 | 2020-01-24 | A remote code execution vulnerability exists when Git for Visual... |
| CVE-2019-1354 | 2020-01-24 | A remote code execution vulnerability exists when Git for Visual... |
| CVE-2019-1414 | 2020-01-24 | An elevation of privilege vulnerability exists in Visual Studio Code... |
| CVE-2019-1454 | 2020-01-24 | An elevation of privilege vulnerability exists when the Windows User... |
| CVE-2019-1460 | 2020-01-24 | A spoofing vulnerability exists in the way Microsoft Outlook for... |
| CVE-2020-5225 | 2020-01-24 | Log injection in SimpleSAMLphp |
| CVE-2019-1348 | 2020-01-24 | An issue was found in Git before v2.24.1, v2.23.1, v2.22.2,... |
| CVE-2019-1353 | 2020-01-24 | An issue was found in Git before v2.24.1, v2.23.1, v2.22.2,... |
| CVE-2020-5226 | 2020-01-24 | Cross-site scripting in SimpleSAMLphp |
| CVE-2015-9541 | 2020-01-24 | Qt through 5.14 allows an exponential XML entity expansion attack... |
| CVE-2014-9630 | 2020-01-24 | The rtp_packetize_xiph_config function in modules/stream_out/rtpfmt.c in VideoLAN VLC media player... |
| CVE-2014-9629 | 2020-01-24 | Integer overflow in the Encode function in modules/codec/schroedinger.c in VideoLAN... |
| CVE-2014-9628 | 2020-01-24 | The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player... |
| CVE-2014-9627 | 2020-01-24 | The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player... |
| CVE-2014-9626 | 2020-01-24 | Integer underflow in the MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN... |
| CVE-2014-9625 | 2020-01-24 | The GetUpdateFile function in misc/update.c in the Updater in VideoLAN... |
| CVE-2019-5124 | 2020-01-25 | An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver,... |
| CVE-2019-5147 | 2020-01-25 | An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver,... |
| CVE-2019-5146 | 2020-01-25 | An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver,... |
| CVE-2019-5183 | 2020-01-25 | An exploitable type confusion vulnerability exists in AMD ATIDXX64.DLL driver,... |
| CVE-2020-7596 | 2020-01-25 | Codecov npm module before 3.6.2 allows remote attackers to execute... |
| CVE-2012-6344 | 2020-01-25 | Novell ZENworks Configuration Management before 11.2.4 allows XSS. |
| CVE-2012-6345 | 2020-01-25 | Novell ZENworks Configuration Management before 11.2.4 allows obtaining sensitive trace... |
| CVE-2012-6494 | 2020-01-25 | Rapid7 Nexpose before 5.5.4 contains a session hijacking vulnerability which... |
| CVE-2020-7980 | 2020-01-25 | Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary... |
| CVE-2012-6613 | 2020-01-25 | D-Link DSR-250N devices with firmware 1.05B73_WW allow Persistent Root Access... |
| CVE-2013-1744 | 2020-01-25 | IRIS citations management tool through 1.3 allows remote attackers to... |
| CVE-2020-7981 | 2020-01-25 | sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when... |
| CVE-2019-12629 | 2020-01-26 | Cisco SD-WAN vManage Command Injection Vulnerability |
| CVE-2019-12619 | 2020-01-26 | Cisco SD-WAN Solution SQL Injection Vulnerability |
| CVE-2020-3136 | 2020-01-26 | Cisco Jabber Guest Cross-Site Scripting Vulnerability |
| CVE-2020-3139 | 2020-01-26 | Cisco Application Policy Infrastructure Controller Out Of Band Management IP Tables Bypass Vulnerability |
| CVE-2019-15989 | 2020-01-26 | Cisco IOS XR Software Border Gateway Protocol Attribute Denial of Service Vulnerability |
| CVE-2019-16018 | 2020-01-26 | Cisco IOS XR Software EVPN Operational Routes Denial of Service Vulnerability |
| CVE-2019-16020 | 2020-01-26 | Cisco IOS XR Software BGP EVPN Denial of Service Vulnerabilities |
| CVE-2019-16022 | 2020-01-26 | Cisco IOS XR Software BGP EVPN Denial of Service Vulnerabilities |
| CVE-2019-16027 | 2020-01-26 | Cisco IOS XR Software Intermediate System–to–Intermediate System Denial of Service Vulnerability |
| CVE-2019-16029 | 2020-01-26 | Cisco Smart Software Manager On-Prem Web Interface Denial of Service Vulnerability |
| CVE-2020-3115 | 2020-01-26 | Cisco SD-WAN Solution Local Privilege Escalation Vulnerability |
| CVE-2020-3121 | 2020-01-26 | Cisco Small Business Smart and Managed Switches Cross-Site Scripting Vulnerability |
| CVE-2020-3129 | 2020-01-26 | Cisco Unity Connection Stored Cross-Site Scripting Vulnerability |
| CVE-2020-3131 | 2020-01-26 | Cisco Webex Teams Adaptive Cards Denial of Service Vulnerability |
| CVE-2020-3134 | 2020-01-26 | Cisco Email Security Appliance Zip Decompression Engine Denial of Service Vulnerability |
| CVE-2019-16015 | 2020-01-26 | Cisco Data Center Analytics Framework Cross-Site Scripting Vulnerability |
| CVE-2019-15255 | 2020-01-26 | Cisco Identity Services Engine Authorization Bypass Vulnerability |
| CVE-2019-16026 | 2020-01-26 | Cisco Mobility Management Entity Denial of Service Vulnerability |
| CVE-2019-16024 | 2020-01-26 | Cisco Crosswork Change Automation Cross-Site Scripting Vulnerability |
| CVE-2019-16008 | 2020-01-26 | Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware Cross-Site Scripting Vulnerability |
| CVE-2019-16005 | 2020-01-26 | Cisco Webex Video Mesh Node Command Injection Vulnerability |
| CVE-2019-16003 | 2020-01-26 | Cisco UCS Director Information Disclosure Vulnerability |
| CVE-2019-15278 | 2020-01-26 | Cisco Finesse Cross-Site Scripting Vulnerability |
| CVE-2020-3142 | 2020-01-26 | Cisco Webex Meetings Suite and Cisco Webex Meetings Online Unauthenticated Meeting Join Vulnerability |
| CVE-2020-7984 | 2020-01-26 | SolarWinds N-central before 12.1 SP1 HF5 and 12.2 before SP1... |
| CVE-2020-7991 | 2020-01-26 | Adive Framework 2.0.8 has admin/config CSRF to change the Administrator... |
| CVE-2020-7990 | 2020-01-26 | Adive Framework 2.0.8 has admin/user/add userName XSS. |
| CVE-2020-7989 | 2020-01-26 | Adive Framework 2.0.8 has admin/user/add userUsername XSS. |
| CVE-2020-7996 | 2020-01-26 | htdocs/user/passwordforgotten.php in Dolibarr 10.0.6 allows XSS via the Referer HTTP... |
| CVE-2020-7995 | 2020-01-26 | The htdocs/index.php?mainmenu=home login page in Dolibarr 10.0.6 allows an unlimited... |
| CVE-2020-7994 | 2020-01-26 | Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr 10.0.6 allow remote... |
| CVE-2020-8002 | 2020-01-27 | A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1... |
| CVE-2020-8003 | 2020-01-27 | A double-free vulnerability in vrend_renderer.c in virglrenderer through 0.8.1 allows... |
| CVE-2020-7999 | 2020-01-27 | The Intellian Aptus application 1.0.2 for Android has hardcoded values... |
| CVE-2020-8001 | 2020-01-27 | The Intellian Aptus application 1.0.2 for Android has a hardcoded... |
| CVE-2020-8000 | 2020-01-27 | Intellian Aptus Web 1.24 has a hardcoded password of 12345678... |
| CVE-2019-20432 | 2020-01-27 | In the Lustre file system before 2.12.3, the mdt module... |
| CVE-2019-20431 | 2020-01-27 | In the Lustre file system before 2.12.3, the ptlrpc module... |
| CVE-2019-20430 | 2020-01-27 | In the Lustre file system before 2.12.3, the mdt module... |
| CVE-2019-20429 | 2020-01-27 | In the Lustre file system before 2.12.3, the ptlrpc module... |
| CVE-2019-20428 | 2020-01-27 | In the Lustre file system before 2.12.3, the ptlrpc module... |
| CVE-2019-20427 | 2020-01-27 | In the Lustre file system before 2.12.3, the ptlrpc module... |
| CVE-2019-20426 | 2020-01-27 | In the Lustre file system before 2.12.3, the ptlrpc module... |
| CVE-2019-20425 | 2020-01-27 | In the Lustre file system before 2.12.3, the ptlrpc module... |
| CVE-2019-20424 | 2020-01-27 | In the Lustre file system before 2.12.3, mdt_object_remote in the... |
| CVE-2019-20423 | 2020-01-27 | In the Lustre file system before 2.12.3, the ptlrpc module... |
| CVE-2019-20422 | 2020-01-27 | In the Linux kernel before 5.3.4, fib6_rule_lookup in net/ipv6/ip6_fib.c mishandles... |
| CVE-2019-20421 | 2020-01-27 | In Jp2Image::readMetadata() in jp2image.cpp in Exiv2 0.27.2, an input file... |
| CVE-2018-12476 | 2020-01-27 | obs-service-extract_file's outfilename parameter allows to write files outside of package directory |
| CVE-2018-20105 | 2020-01-27 | yast2-rmt exposes CA private key passhrase in log-file |
| CVE-2019-6036 | 2020-01-27 | Cross-site scripting vulnerability in F-RevoCRM 6.0 to F-RevoCRM 6.5 patch6... |
| CVE-2020-5520 | 2020-01-27 | The netprint App for iOS 3.2.3 and earlier does not... |
| CVE-2020-5521 | 2020-01-27 | The kantan netprint App for iOS 2.0.2 and earlier does... |
| CVE-2020-5522 | 2020-01-27 | The kantan netprint App for Android 2.0.3 and earlier does... |
| CVE-2017-14806 | 2020-01-27 | Insecure handling of repodata and packages in SUSE Studio onlite |
| CVE-2017-14807 | 2020-01-27 | SQL injection in ui-server/app/models/diary_entry.rb in SUSE Studio onsite |
| CVE-2020-8009 | 2020-01-27 | AVB MOTU devices through 2020-01-22 allow /.. Directory Traversal, as... |
| CVE-2019-17100 | 2020-01-27 | Untrusted Search Path vulnerability in Bitdefender Total Security 2020 (VA-5895) |