CVE List - 2020 / March
Showing 1601 - 1700 of 1754 CVEs for March 2020 (Page 17 of 18)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-3788 | 2020-03-25 | Adobe Photoshop CC 2019 versions 20.0.8 and earlier, and Photoshop... |
| CVE-2020-3778 | 2020-03-25 | Adobe Photoshop versions Photoshop CC 2019, and Photoshop 2020 have... |
| CVE-2020-3777 | 2020-03-25 | Adobe Photoshop CC 2019 versions 20.0.8 and earlier, and Photoshop... |
| CVE-2020-3776 | 2020-03-25 | Adobe Photoshop CC 2019 versions 20.0.8 and earlier, and Photoshop... |
| CVE-2020-9520 | 2020-03-25 | A stored XSS vulnerability was discovered in Micro Focus Vibe,... |
| CVE-2020-5339 | 2020-03-25 | RSA Authentication Manager versions prior to 8.4 P10 contain a... |
| CVE-2020-5340 | 2020-03-25 | RSA Authentication Manager versions prior to 8.4 P10 contain a... |
| CVE-2020-6815 | 2020-03-25 | Mozilla developers reported memory safety and script safety bugs present... |
| CVE-2020-6814 | 2020-03-25 | Mozilla developers reported memory safety bugs present in Firefox and... |
| CVE-2020-6813 | 2020-03-25 | When protecting CSS blocks with the nonce feature of Content... |
| CVE-2020-6812 | 2020-03-25 | The first time AirPods are connected to an iPhone, they... |
| CVE-2020-6811 | 2020-03-25 | The 'Copy as cURL' feature of Devtools' network tab did... |
| CVE-2020-6810 | 2020-03-25 | After a website had entered fullscreen mode, it could have... |
| CVE-2020-6809 | 2020-03-25 | When a Web Extension had the all-urls permission and made... |
| CVE-2020-6808 | 2020-03-25 | When a JavaScript URL (javascript:) is evaluated and the result... |
| CVE-2020-6807 | 2020-03-25 | When a device was changed while a stream was about... |
| CVE-2020-6806 | 2020-03-25 | By carefully crafting promise resolutions, it was possible to cause... |
| CVE-2020-6805 | 2020-03-25 | When removing data about an origin whose tab was recently... |
| CVE-2020-10963 | 2020-03-25 | FrozenNode Laravel-Administrator through 5.0.12 allows unrestricted file upload (and consequently... |
| CVE-2020-10964 | 2020-03-25 | Serendipity before 2.3.4 on Windows allows remote attackers to execute... |
| CVE-2020-10966 | 2020-03-25 | In the Password Reset Module in VESTA Control Panel through... |
| CVE-2020-10965 | 2020-03-25 | Teradici PCoIP Management Console 20.01.0 and 19.11.1 is vulnerable to... |
| CVE-2020-5129 | 2020-03-26 | A vulnerability in the SonicWall SMA1000 HTTP Extraweb server allows... |
| CVE-2020-10245 | 2020-03-26 | CODESYS V3 web server before 3.5.15.40, as used in CODESYS... |
| CVE-2020-7260 | 2020-03-26 | MACC installer DLL side loading |
| CVE-2020-1764 | 2020-03-26 | A hard-coded cryptographic key vulnerability in the default configuration file... |
| CVE-2020-8923 | 2020-03-26 | XSS in Dart |
| CVE-2020-8910 | 2020-03-26 | Auth Bypass in Google's Closure-Library |
| CVE-2020-6999 | 2020-03-26 | In Moxa EDS-G516E Series firmware, Version 5.2 or lower, some... |
| CVE-2020-10969 | 2020-03-26 | FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization... |
| CVE-2020-10968 | 2020-03-26 | FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization... |
| CVE-2019-15795 | 2020-03-26 | python-apt uses MD5 for validation |
| CVE-2019-15796 | 2020-03-26 | python-apt downloads from untrusted sources |
| CVE-2020-4276 | 2020-03-26 | IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional... |
| CVE-2019-5105 | 2020-03-26 | An exploitable memory corruption vulnerability exists in the Name Service... |
| CVE-2020-7944 | 2020-03-26 | In Continuous Delivery for Puppet Enterprise (CD4PE) before 3.4.0, changes... |
| CVE-2020-9521 | 2020-03-26 | An SQL injection vulnerability was discovered in Micro Focus Service... |
| CVE-2020-9066 | 2020-03-26 | Huawei smartphones OxfordP-AN10B with versions earlier than 10.0.1.169(C00E166R4P1) have an... |
| CVE-2020-1800 | 2020-03-26 | HUAWEI smartphones P30 with versions earlier than 10.0.0.185(C00E85R1P11) have an... |
| CVE-2020-9065 | 2020-03-26 | Huawei smart phone Taurus-AL00B with versions earlier than 10.0.0.203(C00E201R7P2) have... |
| CVE-2020-10823 | 2020-03-26 | A stack-based buffer overflow in /cgi-bin/activate.cgi through var parameter on... |
| CVE-2020-10824 | 2020-03-26 | A stack-based buffer overflow in /cgi-bin/activate.cgi through ticket parameter on... |
| CVE-2020-10825 | 2020-03-26 | A stack-based buffer overflow in /cgi-bin/activate.cgi while base64 decoding ticket... |
| CVE-2020-10826 | 2020-03-26 | /cgi-bin/activate.cgi on Draytek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1... |
| CVE-2020-10827 | 2020-03-26 | A stack-based buffer overflow in apmd on Draytek Vigor3900, Vigor2960,... |
| CVE-2020-10828 | 2020-03-26 | A stack-based buffer overflow in cvmd on Draytek Vigor3900, Vigor2960,... |
| CVE-2020-9467 | 2020-03-26 | Piwigo 2.10.1 has stored XSS via the file parameter in... |
| CVE-2020-9468 | 2020-03-26 | The Community plugin 2.9.e-beta for Piwigo allows users to set... |
| CVE-2020-10993 | 2020-03-26 | Osmand through 2.0.0 allow XXE because of binary/BinaryMapIndexReader.java. |
| CVE-2020-10992 | 2020-03-26 | Azkaban through 3.84.0 allows XXE, related to validator/XmlValidatorManager.java and user/XmlUserManager.java. |
| CVE-2020-10991 | 2020-03-26 | Mulesoft APIkit through 1.3.0 allows XXE because of validation/RestXmlSchemaValidator.java |
| CVE-2020-10990 | 2020-03-26 | An XXE issue exists in Accenture Mercury before 1.12.28 because... |
| CVE-2020-3920 | 2020-03-27 | Unisoon UltraLog Express - Broken Authentication |
| CVE-2020-3921 | 2020-03-27 | Unisoon UltraLog Express - Sensitive Data Exposure |
| CVE-2020-3936 | 2020-03-27 | Unisoon UltraLog Express - SQL Injection |
| CVE-2020-10508 | 2020-03-27 | Sunnet eHRD - Sensitive Data Exposure |
| CVE-2020-10509 | 2020-03-27 | Sunnet eHRD - Cross-Site Scripting |
| CVE-2020-10510 | 2020-03-27 | Sunnet eHRD - Broken Access Control |
| CVE-2020-1769 | 2020-03-27 | Autocomplete in the form login screens |
| CVE-2020-1770 | 2020-03-27 | Information disclosure in support bundle files |
| CVE-2020-1771 | 2020-03-27 | Possible XSS in Customer user address book |
| CVE-2020-1772 | 2020-03-27 | Information Disclosure |
| CVE-2020-1773 | 2020-03-27 | Session / Password / Password token leak |
| CVE-2020-10607 | 2020-03-27 | In Advantech WebAccess, Versions 8.4.2 and prior. A stack-based buffer... |
| CVE-2020-7918 | 2020-03-27 | An insecure direct object reference in webmail in totemo totemomail... |
| CVE-2015-5684 | 2020-03-27 | MITRE is populating this ID because it was assigned prior... |
| CVE-2015-7333 | 2020-03-27 | MITRE is populating this ID because it was assigned prior... |
| CVE-2015-7334 | 2020-03-27 | MITRE is populating this ID because it was assigned prior... |
| CVE-2015-7335 | 2020-03-27 | MITRE is populating this ID because it was assigned prior... |
| CVE-2015-7336 | 2020-03-27 | MITRE is populating this ID because it was assigned prior... |
| CVE-2015-8534 | 2020-03-27 | MITRE is populating this ID because it was assigned prior... |
| CVE-2015-8535 | 2020-03-27 | MITRE is populating this ID because it was assigned prior... |
| CVE-2015-8536 | 2020-03-27 | MITRE is populating this ID because it was assigned prior... |
| CVE-2020-5857 | 2020-03-27 | On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, undisclosed HTTP... |
| CVE-2020-8551 | 2020-03-27 | Kubernetes kubelet denial of service |
| CVE-2020-8552 | 2020-03-27 | Kubernetes API server denial of service |
| CVE-2020-5860 | 2020-03-27 | On BIG-IP 15.0.0-15.1.0.2, 14.1.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5.1, and 11.5.2-11.6.5.1 and BIG-IQ... |
| CVE-2020-5859 | 2020-03-27 | On BIG-IP 15.1.0.1, specially formatted HTTP/3 messages may cause TMM... |
| CVE-2020-5858 | 2020-03-27 | On BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1 and BIG-IQ... |
| CVE-2020-5861 | 2020-03-27 | On BIG-IP 12.1.0-12.1.5, the TMM process may produce a core... |
| CVE-2020-5863 | 2020-03-27 | In NGINX Controller versions prior to 3.2.0, an unauthenticated attacker... |
| CVE-2020-5862 | 2020-03-27 | On BIG-IP 15.1.0-15.1.0.1, 15.0.0-15.0.1.1, and 14.1.0-14.1.2.2, under certain conditions, TMM... |
| CVE-2020-10817 | 2020-03-27 | The custom-searchable-data-entry-system (aka Custom Searchable Data Entry System) plugin through... |
| CVE-2020-10956 | 2020-03-27 | GitLab 8.10 and later through 12.9 is vulnerable to an... |
| CVE-2020-10955 | 2020-03-27 | GitLab EE/CE 11.1 through 12.9 is vulnerable to parameter tampering... |
| CVE-2020-10954 | 2020-03-27 | GitLab through 12.9 is affected by a potential DoS in... |
| CVE-2020-10953 | 2020-03-27 | In GitLab EE 11.7 through 12.9, the NPM feature is... |
| CVE-2020-10952 | 2020-03-27 | GitLab EE/CE 8.11 through 12.9.1 allows blocked users to pull/push... |
| CVE-2020-6095 | 2020-03-27 | An exploitable denial of service vulnerability exists in the GstRTSPAuth... |
| CVE-2020-10939 | 2020-03-27 | Insecure, default path permissions in PHOENIX CONTACT PC WORX SRT... |
| CVE-2020-10940 | 2020-03-27 | Local Privilege Escalation can occur in PHOENIX CONTACT PORTICO SERVER... |
| CVE-2020-5551 | 2020-03-30 | Toyota 2017 Model Year DCU (Display Control Unit) allows an... |
| CVE-2020-5527 | 2020-03-30 | When MELSOFT transmission port (UDP/IP) of Mitsubishi Electric MELSEC iQ-R... |
| CVE-2020-10560 | 2020-03-30 | An issue was discovered in Open Source Social Network (OSSN)... |
| CVE-2019-7755 | 2020-03-30 | In webERP 4.15, the Import Bank Transactions function fails to... |
| CVE-2020-8509 | 2020-03-30 | Zoho ManageEngine Desktop Central before 10.0.483 allows unauthenticated users to... |
| CVE-2020-7599 | 2020-03-30 | All versions of com.gradle.plugin-publish before 0.11.0 are vulnerable to Insertion... |
| CVE-2020-7610 | 2020-03-30 | All versions of bson before 1.1.4 are vulnerable to Deserialization... |
| CVE-2019-17560 | 2020-03-30 | The "Apache NetBeans" autoupdate system does not validate SSL certificates... |
| CVE-2019-17561 | 2020-03-30 | The "Apache NetBeans" autoupdate system does not fully validate code... |