CVE List - 2020 / February
Showing 1101 - 1200 of 1397 CVEs for February 2020 (Page 12 of 14)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-16297 | 2020-02-20 | An issue was discovered in Open Network Operating System (ONOS)... |
| CVE-2020-9015 | 2020-02-20 | Arista DCS-7050QX-32S-R 4.20.9M, DCS-7050CX3-32S-R 4.20.11M, and DCS-7280SRAM-48C6-R 4.22.0.1F devices (and... |
| CVE-2020-9320 | 2020-02-20 | Avira AV Engine before 8.3.54.138 allows virus-detection bypass via a... |
| CVE-2019-16298 | 2020-02-20 | An issue was discovered in Open Network Operating System (ONOS)... |
| CVE-2019-16299 | 2020-02-20 | An issue was discovered in Open Network Operating System (ONOS)... |
| CVE-2019-16300 | 2020-02-20 | An issue was discovered in Open Network Operating System (ONOS)... |
| CVE-2019-16301 | 2020-02-20 | An issue was discovered in Open Network Operating System (ONOS)... |
| CVE-2019-16302 | 2020-02-20 | An issue was discovered in Open Network Operating System (ONOS)... |
| CVE-2020-9003 | 2020-02-20 | A stored XSS vulnerability exists in the Modula Image Gallery... |
| CVE-2020-8990 | 2020-02-20 | Western Digital My Cloud Home before 3.6.0 and ibi before... |
| CVE-2020-8960 | 2020-02-20 | Western Digital mycloud.com before Web Version 2.2.0-134 allows XSS. |
| CVE-2019-14688 | 2020-02-20 | Trend Micro has repackaged installers for several Trend Micro products... |
| CVE-2019-19694 | 2020-02-20 | The Trend Micro Security 2019 (15.0.0.1163 and below) consumer family... |
| CVE-2020-8601 | 2020-02-20 | Trend Micro Vulnerability Protection 2.0 is affected by a vulnerability... |
| CVE-2020-5242 | 2020-02-20 | openHAB exec add-ons allow remote arbitrary command execution |
| CVE-2020-5243 | 2020-02-20 | Denial of Service in uap-core when processing crafted User-Agent strings |
| CVE-2016-4606 | 2020-02-21 | Curl before 7.49.1 in Apple OS X before macOS Sierra... |
| CVE-2014-7914 | 2020-02-21 | btif/src/btif_dm.c in Android before 5.1 does not properly enforce the... |
| CVE-2020-5524 | 2020-02-21 | Aterm series (Aterm WF1200C firmware Ver1.2.1 and earlier, Aterm WG1200CR... |
| CVE-2020-5525 | 2020-02-21 | Aterm series (Aterm WF1200C firmware Ver1.2.1 and earlier, Aterm WG1200CR... |
| CVE-2020-5533 | 2020-02-21 | Cross-site scripting vulnerability in Aterm WG2600HS firmware Ver1.3.2 and earlier... |
| CVE-2020-5534 | 2020-02-21 | Aterm WG2600HS firmware Ver1.3.2 and earlier allows an authenticated attacker... |
| CVE-2019-19452 | 2020-02-21 | A buffer overflow was found in Patriot Viper RGB through... |
| CVE-2020-5324 | 2020-02-21 | Dell Client Consumer and Commercial Platforms contain an Arbitrary File... |
| CVE-2020-5326 | 2020-02-21 | Affected Dell Client platforms contain a BIOS Setup configuration authentication... |
| CVE-2019-19866 | 2020-02-21 | Atos Unify OpenScape UC Web Client V9 before version V9... |
| CVE-2019-19865 | 2020-02-21 | Atos Unify OpenScape UC Application V9 before version V9 R4.31.0... |
| CVE-2020-6841 | 2020-02-21 | D-Link DCH-M225 1.05b01 and earlier devices allow remote attackers to... |
| CVE-2013-3551 | 2020-02-21 | Kernel/Modules/AgentTicketPhone.pm in Open Ticket Request System (OTRS) 3.0.x before 3.0.20,... |
| CVE-2012-0063 | 2020-02-21 | Insecure plugin update mechanism in tucan through 0.3.10 could allow... |
| CVE-2013-4088 | 2020-02-21 | Kernel/Modules/AgentTicketWatcher.pm in Open Ticket Request System (OTRS) 3.0.x before 3.0.21,... |
| CVE-2020-6842 | 2020-02-21 | D-Link DCH-M225 1.05b01 and earlier devices allow remote authenticated admins... |
| CVE-2012-6277 | 2020-02-21 | Multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 10.16, as... |
| CVE-2013-3587 | 2020-02-21 | The HTTPS protocol, as used in unspecified web applications, can... |
| CVE-2012-0828 | 2020-02-21 | Heap-based buffer overflow in Xchat-WDK before 1499-4 (2012-01-18) xchat 2.8.6... |
| CVE-2012-0844 | 2020-02-21 | Information-disclosure vulnerability in Netsurf through 2.8 due to a world-readable... |
| CVE-2012-1093 | 2020-02-21 | The init script in the Debian x11-common package before 1:7.6+12... |
| CVE-2020-7907 | 2020-02-21 | In the JetBrains Scala plugin before 2019.2.1, some artefact dependencies... |
| CVE-2019-18846 | 2020-02-21 | OX App Suite through 7.10.2 allows SSRF. |
| CVE-2020-9327 | 2020-02-21 | In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger a NULL... |
| CVE-2020-9329 | 2020-02-21 | Gogs through 0.11.91 allows attackers to violate the admin-specified repo-creation... |
| CVE-2020-9330 | 2020-02-21 | Certain Xerox WorkCentre printers before 073.xxx.000.02300 do not require the... |
| CVE-2020-8813 | 2020-02-22 | graph_realtime.php in Cacti 1.2.8 allows remote attackers to execute arbitrary... |
| CVE-2020-8860 | 2020-02-22 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2020-8861 | 2020-02-22 | This vulnerability allows network-adjacent attackers to bypass authentication on affected... |
| CVE-2020-8862 | 2020-02-22 | This vulnerability allows network-adjacent attackers to bypass authentication on affected... |
| CVE-2020-9039 | 2020-02-22 | Couchbase Server 4.0.0, 4.1.0, 4.1.1, 4.5.0, 4.5.1, 4.6.0 through 4.6.5,... |
| CVE-2020-9339 | 2020-02-22 | SOPlanning 1.45 allows XSS via the Name or Comment to... |
| CVE-2020-9338 | 2020-02-22 | SOPlanning 1.45 allows XSS via the "Your SoPlanning url" field. |
| CVE-2020-9336 | 2020-02-22 | fauzantrif eLection 2.0 has XSS via the Admin Dashboard ->... |
| CVE-2020-9340 | 2020-02-22 | fauzantrif eLection 2.0 has SQL Injection via the admin/ajax/op_kandidat.php id... |
| CVE-2020-9341 | 2020-02-22 | CandidATS 2.1.0 is vulnerable to CSRF that allows for an... |
| CVE-2020-9342 | 2020-02-22 | The F-Secure AV parsing engine before 2020-02-05 allows virus-detection bypass... |
| CVE-2020-9351 | 2020-02-23 | An issue was discovered in SmartClient 12.0. If an unauthenticated... |
| CVE-2020-9352 | 2020-02-23 | An issue was discovered in SmartClient 12.0. Unauthenticated exploitation of... |
| CVE-2020-9353 | 2020-02-23 | An issue was discovered in SmartClient 12.0. The Remote Procedure... |
| CVE-2020-9350 | 2020-02-23 | Graph Builder in SAS Visual Analytics 8.5 allows XSS via... |
| CVE-2020-9354 | 2020-02-23 | An issue was discovered in SmartClient 12.0. The Remote Procedure... |
| CVE-2020-9355 | 2020-02-23 | danfruehauf NetworkManager-ssh before 1.2.11 allows privilege escalation because extra options... |
| CVE-2019-3670 | 2020-02-24 | Remote Code Execution vulnerability |
| CVE-2019-15299 | 2020-02-24 | An issue was discovered in Centreon Web through 19.04.3. When... |
| CVE-2019-20044 | 2020-02-24 | In Zsh before 5.8, attackers able to execute commands can... |
| CVE-2015-9542 | 2020-02-24 | add_password in pam_radius_auth.c in pam_radius 1.4.0 does not correctly check... |
| CVE-2020-5188 | 2020-02-24 | DNN (formerly DotNetNuke) through 9.4.4 has Insecure Permissions. |
| CVE-2020-5187 | 2020-02-24 | DNN (formerly DotNetNuke) through 9.4.4 allows Path Traversal (issue 2... |
| CVE-2020-5186 | 2020-02-24 | DNN (formerly DotNetNuke) through 9.4.4 allows XSS (issue 1 of... |
| CVE-2019-20481 | 2020-02-24 | In MIELE XGW 3000 ZigBee Gateway before 2.4.0, the Password... |
| CVE-2019-20480 | 2020-02-24 | In MIELE XGW 3000 ZigBee Gateway before 2.4.0, a malicious... |
| CVE-2019-18183 | 2020-02-24 | pacman before 5.2 is vulnerable to arbitrary command injection in... |
| CVE-2019-18182 | 2020-02-24 | pacman before 5.2 is vulnerable to arbitrary command injection in... |
| CVE-2020-8131 | 2020-02-24 | Arbitrary filesystem write vulnerability in Yarn before 1.22.0 allows attackers... |
| CVE-2020-8130 | 2020-02-24 | There is an OS command injection vulnerability in Ruby Rake... |
| CVE-2020-9363 | 2020-02-24 | The Sophos AV parsing engine before 2020-01-14 allows virus-detection bypass... |
| CVE-2020-9362 | 2020-02-24 | The Quick Heal AV parsing engine (November 2019) allows virus-detection... |
| CVE-2019-4595 | 2020-02-24 | IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 could... |
| CVE-2019-4703 | 2020-02-24 | IBM Spectrum Protect Plus 10.1.0 and 10.5.0, when protecting Microsoft... |
| CVE-2019-4745 | 2020-02-24 | IBM Maximo Asset Management 7.6.1.0 could allow a remote attacker... |
| CVE-2020-4210 | 2020-02-24 | IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a... |
| CVE-2020-4211 | 2020-02-24 | IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a... |
| CVE-2020-4212 | 2020-02-24 | IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a... |
| CVE-2020-4213 | 2020-02-24 | IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a... |
| CVE-2020-4222 | 2020-02-24 | IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a... |
| CVE-2020-9365 | 2020-02-24 | An issue was discovered in Pure-FTPd 1.0.49. An out-of-bounds (OOB)... |
| CVE-2020-9366 | 2020-02-24 | A buffer overflow was found in the way GNU Screen... |
| CVE-2012-0785 | 2020-02-24 | Hash collision attack vulnerability in Jenkins before 1.447, Jenkins LTS... |
| CVE-2016-11020 | 2020-02-24 | Kunena before 5.0.4 does not restrict avatar file extensions to... |
| CVE-2020-5244 | 2020-02-24 | Private data exposure via REST API in BuddyPress |
| CVE-2020-9369 | 2020-02-24 | Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a... |
| CVE-2020-5245 | 2020-02-24 | Remote Code Execution (RCE) vulnerability in dropwizard-validation |
| CVE-2019-10798 | 2020-02-24 | rdf-graph-array through 0.3.0-rc6 manipulation of JavaScript objects resutling in Prototype... |
| CVE-2019-10796 | 2020-02-24 | rpi through 0.0.3 allows execution of arbritary commands. The variable... |
| CVE-2019-10799 | 2020-02-24 | compile-sass prior to 1.0.5 allows execution of arbritary commands. The... |
| CVE-2018-13313 | 2020-02-24 | Admin Password returned in password.htm |
| CVE-2018-14705 | 2020-02-24 | Lack of Authentication/Authorization on Administrative Web Pages |
| CVE-2019-12510 | 2020-02-24 | Auth Bypass Via X-Forwarded-For Header in SOAP API |
| CVE-2019-12511 | 2020-02-24 | Root Command Injection via MAC Address in SOAP API |
| CVE-2019-12512 | 2020-02-24 | Stored XSS via X-Forwarded-For Header During Incorrect Login |
| CVE-2019-12513 | 2020-02-24 | Stored XSS via DHCP Discover Request Hostname |
| CVE-2019-17228 | 2020-02-24 | includes/options.php in the motors-car-dealership-classified-listings (aka Motors - Car Dealer &... |
| CVE-2019-17229 | 2020-02-24 | includes/options.php in the motors-car-dealership-classified-listings (aka Motors - Car Dealer &... |