CVE List - 2020 / February
Showing 1201 - 1300 of 1397 CVEs for February 2020 (Page 13 of 14)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-9374 | 2020-02-24 | On TP-Link TL-WR849N 0.9.1 4.16 devices, a remote command execution... |
| CVE-2020-1937 | 2020-02-24 | Kylin has some restful apis which will concatenate SQLs with... |
| CVE-2019-17569 | 2020-02-24 | The refactoring present in Apache Tomcat 9.0.28 to 9.0.30, 8.5.48... |
| CVE-2020-1935 | 2020-02-24 | In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and... |
| CVE-2020-1938 | 2020-02-24 | When using the Apache JServ Protocol (AJP), care must be... |
| CVE-2020-9381 | 2020-02-24 | controllers/admin.js in Total.js CMS 13 allows remote attackers to execute... |
| CVE-2020-9382 | 2020-02-24 | An issue was discovered in the Widgets extension through 1.4.0... |
| CVE-2020-9385 | 2020-02-24 | A NULL Pointer Dereference exists in libzint in Zint 2.7.1... |
| CVE-2020-9405 | 2020-02-25 | IBL Online Weather before 4.3.5a allows unauthenticated reflected XSS via... |
| CVE-2020-9406 | 2020-02-25 | IBL Online Weather before 4.3.5a allows unauthenticated eval injection via... |
| CVE-2020-9407 | 2020-02-25 | IBL Online Weather before 4.3.5a allows attackers to obtain sensitive... |
| CVE-2020-8819 | 2020-02-25 | An issue was discovered in the CardGate Payments plugin through... |
| CVE-2020-8818 | 2020-02-25 | An issue was discovered in the CardGate Payments plugin through... |
| CVE-2019-4557 | 2020-02-25 | IBM Qradar Advisor 1.1 through 2.5 with Watson uses weaker... |
| CVE-2019-4672 | 2020-02-25 | IBM QRadar Advisor 1.1 through 2.5 could allow an unauthorized... |
| CVE-2019-5140 | 2020-02-25 | An exploitable command injection vulnerability exists in the iwwebs functionality... |
| CVE-2019-5141 | 2020-02-25 | An exploitable command injection vulnerability exists in the iw_webs functionality... |
| CVE-2019-5142 | 2020-02-25 | An exploitable command injection vulnerability exists in the hostname functionality... |
| CVE-2019-5136 | 2020-02-25 | An exploitable privilege escalation vulnerability exists in the iw_console functionality... |
| CVE-2019-5138 | 2020-02-25 | An exploitable command injection vulnerability exists in encrypted diagnostic script... |
| CVE-2019-5137 | 2020-02-25 | The usage of hard-coded cryptographic keys within the ServiceAgent binary... |
| CVE-2019-5162 | 2020-02-25 | An exploitable improper access control vulnerability exists in the iw_webs... |
| CVE-2019-5153 | 2020-02-25 | An exploitable remote code execution vulnerability exists in the iw_webs... |
| CVE-2020-9383 | 2020-02-25 | An issue was discovered in the Linux kernel 3.16 through... |
| CVE-2019-5165 | 2020-02-25 | An exploitable authentication bypass vulnerability exists in the hostname processing... |
| CVE-2019-5148 | 2020-02-25 | An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the... |
| CVE-2019-5143 | 2020-02-25 | An exploitable format string vulnerability exists in the iw_console conio_writestr... |
| CVE-2019-5139 | 2020-02-25 | An exploitable use of hard-coded credentials vulnerability exists in multiple... |
| CVE-2020-8793 | 2020-02-25 | OpenSMTPD before 6.6.4 allows local users to read arbitrary files... |
| CVE-2020-9335 | 2020-02-25 | Multiple stored XSS vulnerabilities exist in the 10Web Photo Gallery... |
| CVE-2020-8794 | 2020-02-25 | OpenSMTPD before 6.6.4 allows remote code execution because of an... |
| CVE-2020-9334 | 2020-02-25 | A stored XSS vulnerability exists in the Envira Photo Gallery... |
| CVE-2019-12863 | 2020-02-25 | SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) allows... |
| CVE-2020-9017 | 2020-02-25 | LiteCart through 2.2.1 allows CSV injection via a customer's profile. |
| CVE-2020-9018 | 2020-02-25 | LiteCart through 2.2.1 allows admin/?app=users&doc=edit_user CSRF to add a user. |
| CVE-2020-9019 | 2020-02-25 | The WPJobBoard plugin 5.5.3 for WordPress allows Persistent XSS via... |
| CVE-2020-9008 | 2020-02-25 | Stored Cross-site scripting (XSS) vulnerability in Blackboard Learn/PeopleTool v9.1 allows... |
| CVE-2020-9391 | 2020-02-25 | An issue was discovered in the Linux kernel 5.4 and... |
| CVE-2020-9393 | 2020-02-25 | An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2... |
| CVE-2020-9394 | 2020-02-25 | An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2... |
| CVE-2019-3999 | 2020-02-25 | Improper neutralization of special elements used in an OS command... |
| CVE-2020-9379 | 2020-02-25 | The Software Development Kit of the MiContact Center Business with... |
| CVE-2020-8810 | 2020-02-25 | An issue was discovered in Gurux GXDLMS Director through 8.5.1905.1301.... |
| CVE-2020-8809 | 2020-02-25 | Gurux GXDLMS Director prior to 8.5.1905.1301 downloads updates to add-ins... |
| CVE-2015-0565 | 2020-02-25 | NaCl in 2015 allowed the CLFLUSH instruction, making rowhammer attacks... |
| CVE-2015-5201 | 2020-02-25 | VDSM and libvirt in Red Hat Enterprise Virtualization Hypervisor (aka... |
| CVE-2020-9398 | 2020-02-25 | ISPConfig before 3.1.15p3, when the undocumented reverse_proxy_panel_allowed=sites option is manually... |
| CVE-2019-4000 | 2020-02-25 | Improper neutralization of directives in dynamically evaluated code in Druva... |
| CVE-2020-9337 | 2020-02-26 | In GolfBuddy Course Manager 1.1, passwords are sent (with base64... |
| CVE-2019-19134 | 2020-02-26 | The Hero Maps Premium plugin 2.2.1 and prior for WordPress... |
| CVE-2019-19994 | 2020-02-26 | An issue was discovered in Selesta Visual Access Manager (VAM)... |
| CVE-2019-19993 | 2020-02-26 | An issue was discovered in Selesta Visual Access Manager (VAM)... |
| CVE-2019-19992 | 2020-02-26 | An issue was discovered in Selesta Visual Access Manager (VAM)... |
| CVE-2019-19991 | 2020-02-26 | An issue was discovered in Selesta Visual Access Manager (VAM)... |
| CVE-2019-19990 | 2020-02-26 | An issue was discovered in Selesta Visual Access Manager (VAM)... |
| CVE-2019-19989 | 2020-02-26 | An issue was discovered in Selesta Visual Access Manager (VAM)... |
| CVE-2019-19988 | 2020-02-26 | An issue was discovered in Selesta Visual Access Manager (VAM)... |
| CVE-2019-19987 | 2020-02-26 | An issue was discovered in Selesta Visual Access Manager (VAM)... |
| CVE-2019-19986 | 2020-02-26 | An issue was discovered in Selesta Visual Access Manager (VAM)... |
| CVE-2020-8952 | 2020-02-26 | Fiserv Accurate Reconciliation 2.19.0, fixed in 3.0.0 or higher, allows... |
| CVE-2020-8951 | 2020-02-26 | Fiserv Accurate Reconciliation 2.19.0, fixed in 3.0.0 or higher, allows... |
| CVE-2020-9274 | 2020-02-26 | An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer... |
| CVE-2019-4537 | 2020-02-26 | IBM WebSphere Service Registry and Repository 8.5 could allow a... |
| CVE-2019-4596 | 2020-02-26 | IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 is... |
| CVE-2019-4597 | 2020-02-26 | IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 is... |
| CVE-2019-4598 | 2020-02-26 | IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 is... |
| CVE-2019-4726 | 2020-02-26 | IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 is... |
| CVE-2020-3165 | 2020-02-26 | Cisco NX-OS Software Border Gateway Protocol MD5 Authentication Bypass Vulnerability |
| CVE-2020-3175 | 2020-02-26 | Cisco MDS 9000 Series Multilayer Switches Denial of Service Vulnerability |
| CVE-2020-3174 | 2020-02-26 | Cisco NX-OS Software Anycast Gateway Invalid ARP Vulnerability |
| CVE-2020-3173 | 2020-02-26 | Cisco UCS Manager Software Local Management CLI Command Injection Vulnerability |
| CVE-2020-3172 | 2020-02-26 | Cisco FXOS and NX-OS Software Cisco Discovery Protocol Arbitrary Code Execution and Denial of Service Vulnerability |
| CVE-2020-3171 | 2020-02-26 | Cisco FXOS and UCS Manager Software Local Management CLI Command Injection Vulnerability |
| CVE-2020-3170 | 2020-02-26 | Cisco NX-OS Software NX-API Denial of Service Vulnerability |
| CVE-2020-3169 | 2020-02-26 | Cisco FXOS Software CLI Command Injection Vulnerability |
| CVE-2020-3168 | 2020-02-26 | Cisco Nexus 1000V Switch for VMware vSphere Secure Login Enhancements Denial of Service Vulnerability |
| CVE-2020-3167 | 2020-02-26 | Cisco FXOS and UCS Manager Software CLI Command Injection Vulnerability |
| CVE-2020-3166 | 2020-02-26 | Cisco FXOS Software CLI Arbitrary File Read and Write Vulnerability |
| CVE-2019-17274 | 2020-02-26 | NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller (BMC)... |
| CVE-2019-17275 | 2020-02-26 | OnCommand Cloud Manager versions prior to 3.8.0 are susceptible to... |
| CVE-2019-18238 | 2020-02-26 | In Moxa ioLogik 2500 series firmware, Version 3.0 or lower,... |
| CVE-2015-5686 | 2020-02-27 | Parts of the Puppet Enterprise Console 3.x were found to... |
| CVE-2020-3923 | 2020-02-27 | TONNET DVR – Broken Access Control |
| CVE-2020-3924 | 2020-02-27 | TONNET DVR – Firmware Injection |
| CVE-2017-6363 | 2020-02-27 | In the GD Graphics Library (aka LibGD) through 2.2.5, there... |
| CVE-2017-6371 | 2020-02-27 | Synchronet BBS 3.16c for Windows allows remote attackers to cause... |
| CVE-2019-4669 | 2020-02-27 | IBM Business Process Manager 8.5.7.0 through 8.5.7.0 2017.06, 8.6.0.0 through... |
| CVE-2019-5323 | 2020-02-27 | There are command injection vulnerabilities present in the AirWave application.... |
| CVE-2019-5326 | 2020-02-27 | An administrative application user of or application user with write... |
| CVE-2020-6863 | 2020-02-27 | ZTE E8820V3 router product is impacted by a permission and... |
| CVE-2020-6864 | 2020-02-27 | ZTE E8820V3 router product is impacted by an information leak... |
| CVE-2020-7041 | 2020-02-27 | An issue was discovered in openfortivpn 1.11.0 when used with... |
| CVE-2020-7042 | 2020-02-27 | An issue was discovered in openfortivpn 1.11.0 when used with... |
| CVE-2020-7043 | 2020-02-27 | An issue was discovered in openfortivpn 1.11.0 when used with... |
| CVE-2017-16900 | 2020-02-27 | Incorrect Access Control in Hunesion i-oneNet 3.0.6042.1200 allows the local... |
| CVE-2015-2992 | 2020-02-27 | Apache Struts before 2.3.20 has a cross-site scripting (XSS) vulnerability. |
| CVE-2020-5400 | 2020-02-27 | Cloud Controller logs environment variables from app manifests |
| CVE-2020-5401 | 2020-02-27 | Cloud Foundry GoRouter is vulnerable to cache poisoning |
| CVE-2020-5402 | 2020-02-27 | UAA fails to check the state parameter when authenticating with external IDPs |
| CVE-2020-7061 | 2020-02-27 | heap-buffer-overflow in phar_extract_file |