CVE List - 2020 / April
Showing 101 - 200 of 2186 CVEs for April 2020 (Page 2 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-11470 | 2020-04-01 | Zoom Client for Meetings through 4.6.8 on macOS has the disable-library-validation entitlement, which allows a local process (with the user's privileges) to obtain unprompted microphone and camera access by loading... |
| CVE-2020-11469 | 2020-04-01 | Zoom Client for Meetings through 4.6.8 on macOS copies runwithroot to a user-writable temporary directory during installation, which allows a local process (with the user's privileges) to obtain root access... |
| CVE-2020-8144 | 2020-04-01 | The UniFi Video Server v3.9.3 and prior (for Windows 7/8/10 x64) web interface Firmware Update functionality, under certain circumstances, does not validate firmware download destinations to ensure they are within... |
| CVE-2020-8145 | 2020-04-01 | The UniFi Video Server (Windows) web interface configuration restore functionality at the “backup” and “wizard” endpoints does not implement sufficient privilege checks. Low privileged users, belonging to the PUBLIC_GROUP or... |
| CVE-2020-8146 | 2020-04-01 | In UniFi Video v3.10.1 (for Windows 7/8/10 x64) there is a Local Privileges Escalation to SYSTEM from arbitrary file deletion and DLL hijack vulnerabilities. The issue was fixed by adjusting... |
| CVE-2020-1927 | 2020-04-01 | In Apache HTTP Server 2.4.0 to 2.4.41, redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an an unexpected... |
| CVE-2020-8015 | 2020-04-02 | Local privilege escalation in exim package from user mail to root |
| CVE-2020-11458 | 2020-04-02 | app/Model/feed.php in MISP before 2.4.124 allows administrators to choose arbitrary files that should be ingested by MISP. This does not cause a leak of the full contents of a file,... |
| CVE-2020-11491 | 2020-04-02 | Monitoring::Logs in Zen Load Balancer 3.10.1 allows remote authenticated admins to conduct absolute path traversal attacks, as demonstrated by a filelog=/etc/shadow request to index.cgi. |
| CVE-2020-11490 | 2020-04-02 | Manage::Certificates in Zen Load Balancer 3.10.1 allows remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the index.cgi cert_issuer, cert_division, cert_organization, cert_locality, cert_state, cert_country, or cert_email parameter. |
| CVE-2018-13371 | 2020-04-02 | An external control of system vulnerability in FortiOS may allow an authenticated, regular user to change the routing settings of the device via connecting to the ZebOS component. |
| CVE-2020-8016 | 2020-04-02 | race condition in the packaging of texlive-filesysten |
| CVE-2020-8017 | 2020-04-02 | race condition on texlive-filesystem cron job allows for the deletion of unintended files |
| CVE-2020-4303 | 2020-04-02 | IBM WebSphere Application Server - Liberty 17.0.0.3 through 20.0.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the... |
| CVE-2020-4304 | 2020-04-02 | IBM WebSphere Application Server - Liberty 17.0.0.3 through 20.0.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the... |
| CVE-2020-4325 | 2020-04-02 | The IBM Process Federation Server 18.0.0.1, 18.0.0.2, 19.0.0.1, 19.0.0.2, and 19.0.0.3 Global Teams REST API does not properly shutdown the thread pools that it creates to retrieve Global Teams information... |
| CVE-2020-11100 | 2020-04-02 | In hpack_dht_insert in hpack-tbl.c in the HPACK decoder in HAProxy 1.8 through 2.x before 2.1.4, a remote attacker can write arbitrary bytes around a certain location on the heap via... |
| CVE-2020-6852 | 2020-04-02 | CACAGOO Cloud Storage Intelligent Camera TV-288ZD-2MP with firmware 3.4.2.0919 has weak authentication of TELNET access, leading to root privileges without any password required. |
| CVE-2020-9349 | 2020-04-02 | The CACAGOO Cloud Storage Intelligent Camera TV-288ZD-2MP with firmware 3.4.2.0919 allows access to the RTSP service without a password. |
| CVE-2020-11454 | 2020-04-02 | Microstrategy Web 10.4 is vulnerable to Stored XSS in the HTML Container and Insert Text features in the window, allowing for the creation of a new dashboard. In order to... |
| CVE-2020-11451 | 2020-04-02 | The Upload Visualization plugin in the Microstrategy Web 10.4 admin panel allows an administrator to upload a ZIP archive containing files with arbitrary extensions and data. (This is also exploitable... |
| CVE-2020-11450 | 2020-04-02 | Microstrategy Web 10.4 exposes the JVM configuration, CPU architecture, installation folder, and other information through the URL /MicroStrategyWS/happyaxis.jsp. An attacker could use this vulnerability to learn more about the environment... |
| CVE-2020-11452 | 2020-04-02 | Microstrategy Web 10.4 includes functionality to allow users to import files or data from external resources such as URLs or databases. By providing an external URL under attacker control, it's... |
| CVE-2020-11453 | 2020-04-02 | Microstrategy Web 10.4 is vulnerable to Server-Side Request Forgery in the Test Web Service functionality exposed through the path /MicroStrategyWS/. The functionality requires no authentication and, while it is not... |
| CVE-2019-20635 | 2020-04-02 | codeBeamer before 9.5.0-RC3 does not properly restrict the ability to execute custom Java code and access the Java class loader via computed fields. |
| CVE-2019-14868 | 2020-04-02 | In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute... |
| CVE-2020-8423 | 2020-04-02 | A buffer overflow in the httpd daemon on TP-Link TL-WR841N V10 (firmware version 3.16.9) devices allows an authenticated remote attacker to execute arbitrary code via a GET request to the... |
| CVE-2020-11444 | 2020-04-02 | Sonatype Nexus Repository Manager 3.x up to and including 3.21.2 has Incorrect Access Control. |
| CVE-2020-11107 | 2020-04-02 | An issue was discovered in XAMPP before 7.2.29, 7.3.x before 7.3.16 , and 7.4.x before 7.4.4 on Windows. An unprivileged user can change a .exe configuration in xampp-contol.ini for all... |
| CVE-2020-7617 | 2020-04-02 | Prototype Pollution |
| CVE-2020-8835 | 2020-04-02 | Linux kernel bpf verifier vulnerability |
| CVE-2019-19346 | 2020-04-02 | An insecure modification vulnerability in the /etc/passwd file was found in the container openshift/mariadb-apb, affecting versions before the following 4.3.5, 4.2.21, 4.1.37, and 3.11.188-4 . An attacker with access to... |
| CVE-2019-19348 | 2020-04-02 | An insecure modification vulnerability in the /etc/passwd file was found in the container openshift/apb-base, affecting versions before the following 4.3.5, 4.2.21, 4.1.37, and 3.11.188-4. An attacker with access to the... |
| CVE-2019-19003 | 2020-04-02 | ABB eSOMS: HTTPOnly flag not set |
| CVE-2019-19089 | 2020-04-02 | eSOMS: X-Content-Type-Options Header Missing |
| CVE-2019-19090 | 2020-04-02 | ABB eSOMS: Secure Flag not set |
| CVE-2019-19091 | 2020-04-02 | ABB eSOMS: HTTP response information leakage |
| CVE-2019-19092 | 2020-04-02 | ABB eSOMS: Viewstate without MAC Signature |
| CVE-2019-19093 | 2020-04-02 | ABB eSOMS: Password complexity issue |
| CVE-2019-19094 | 2020-04-02 | ABB eSOMS: SQL injection vulnerability |
| CVE-2019-19095 | 2020-04-02 | ABB eSOMS: Stored XSS vulnerability |
| CVE-2019-19096 | 2020-04-02 | ABB eSOMS: REDIS clear text credentials |
| CVE-2019-19097 | 2020-04-02 | ABB eSOMS: SSL medium strength Cipher Suites |
| CVE-2019-19000 | 2020-04-02 | eSOMS Cachecontrol (Pragma) HTTP Header |
| CVE-2019-19001 | 2020-04-02 | eSOMS X-FrameOption |
| CVE-2019-19002 | 2020-04-02 | ABB eSOMS X-XSS-Protection not enabled |
| CVE-2020-11494 | 2020-04-02 | An issue was discovered in slc_bump in drivers/net/can/slcan.c in the Linux kernel 3.16 through 5.6.2. It allows attackers to read uninitialized can_frame data, potentially containing sensitive information from kernel stack... |
| CVE-2020-9067 | 2020-04-02 | There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected... |
| CVE-2020-7620 | 2020-04-02 | pomelo-monitor through 0.3.7 is vulnerable to Command Injection.It allows injection of arbitrary commands as part of 'pomelo-monitor' params. |
| CVE-2020-7619 | 2020-04-02 | get-git-data through 1.3.1 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the arguments provided to get-git-data. |
| CVE-2020-7621 | 2020-04-02 | strong-nginx-controller through 1.0.2 is vulnerable to Command Injection. It allows execution of arbitrary command as part of the '_nginxCmd()' function. |
| CVE-2020-7623 | 2020-04-02 | jscover through 1.0.0 is vulnerable to Command Injection. It allows execution of arbitrary command via the source argument. |
| CVE-2020-7624 | 2020-04-02 | effect through 1.0.4 is vulnerable to Command Injection. It allows execution of arbitrary command via the options argument. |
| CVE-2020-7625 | 2020-04-02 | op-browser through 1.0.6 is vulnerable to Command Injection. It allows execution of arbitrary commands via the url function. |
| CVE-2020-7626 | 2020-04-02 | karma-mojo through 1.0.1 is vulnerable to Command Injection. It allows execution of arbitrary commands via the config argument. |
| CVE-2020-7627 | 2020-04-02 | node-key-sender through 1.0.11 is vulnerable to Command Injection. It allows execution of arbitrary commands via the 'arrParams' argument in the 'execute()' function. |
| CVE-2020-10515 | 2020-04-02 | STARFACE UCC Client before 6.7.1.204 on WIndows allows binary planting to execute code with System rights, aka usd-2020-0006. |
| CVE-2020-7628 | 2020-04-02 | umount through 1.1.6 is vulnerable to Command Injection. The argument device can be controlled by users without any sanitization. |
| CVE-2020-7629 | 2020-04-02 | install-package through 0.4.0 is vulnerable to Command Injection. It allows execution of arbitrary commands via the options argument. |
| CVE-2020-7630 | 2020-04-02 | git-add-remote through 1.0.0 is vulnerable to Command Injection. It allows execution of arbitrary commands via the name argument. |
| CVE-2020-11498 | 2020-04-02 | Slack Nebula through 1.1.0 contains a relative path vulnerability that allows a low-privileged attacker to execute code in the context of the root user via tun_darwin.go or tun_windows.go. A user... |
| CVE-2020-11499 | 2020-04-02 | Firmware Analysis and Comparison Tool (FACT) 3 has Stored XSS when updating analysis details via a localhost web request, as demonstrated by mishandling of the tags and version fields in... |
| CVE-2020-5283 | 2020-04-03 | XSS vulnerability in CVS show_subdir_lastmod support |
| CVE-2018-17954 | 2020-04-03 | crowbar provision leaks admin password to all nodes in cleartext |
| CVE-2019-18904 | 2020-04-03 | Migrations requests can cause DoS on rmt |
| CVE-2019-18905 | 2020-04-03 | Deprecated functionality in autoyast2 automatically imports gpg keys without checking them |
| CVE-2020-11500 | 2020-04-03 | Zoom Client for Meetings through 4.6.9 uses the ECB mode of AES for video and audio encryption. Within a meeting, all participants use a single 128-bit key. |
| CVE-2020-4273 | 2020-04-03 | IBM Spectrum Scale 4.2 and 5.0 could allow a local unprivileged attacker with intimate knowledge of the enviornment to execute commands as root using specially crafted input. IBM X-Force ID:... |
| CVE-2020-11501 | 2020-04-03 | GnuTLS 3.6.x before 3.6.13 uses incorrect cryptography for DTLS. The earliest affected version is 3.6.3 (2018-07-16) because of an error in a 2017-10-06 commit. The DTLS client always uses 32... |
| CVE-2020-10960 | 2020-04-03 | In MediaWiki before 1.34.1, users can add various Cascading Style Sheets (CSS) classes (which can affect what content is shown or hidden in the user interface) to arbitrary DOM nodes... |
| CVE-2019-17231 | 2020-04-03 | includes/theme-functions.php in the OneTone theme through 3.0.6 for WordPress has multiple stored XSS issues. |
| CVE-2019-17230 | 2020-04-03 | includes/theme-functions.php in the OneTone theme through 3.0.6 for WordPress allows unauthenticated options changes. |
| CVE-2020-10689 | 2020-04-03 | A flaw was found in the Eclipse Che up to version 7.8.x, where it did not properly restrict access to workspace pods. An authenticated user can exploit this flaw to... |
| CVE-2020-7008 | 2020-04-03 | VISAM VBASE Editor version 11.5.0.2 and VBASE Web-Remote Module may allow input passed in the URL that is not properly verified before use, which may allow an attacker to read... |
| CVE-2020-7004 | 2020-04-03 | VISAM VBASE Editor version 11.5.0.2 and VBASE Web-Remote Module may allow weak or insecure permissions on the VBASE directory resulting in elevation of privileges or malicious effects on the system... |
| CVE-2020-10601 | 2020-04-03 | VISAM VBASE Editor version 11.5.0.2 and VBASE Web-Remote Module allow weak hashing algorithm and insecure permissions which may allow a local attacker to bypass the password-protected mechanism through brute-force attacks,... |
| CVE-2020-7000 | 2020-04-03 | VISAM VBASE Editor version 11.5.0.2 and VBASE Web-Remote Module may allow an unauthenticated attacker to discover the cryptographic key from the web server and gain information about the login and... |
| CVE-2020-10599 | 2020-04-03 | VISAM VBASE Editor version 11.5.0.2 and VBASE Web-Remote Module may allow a vulnerable ActiveX component to be exploited resulting in a buffer overflow, which may lead to a denial-of-service condition... |
| CVE-2020-6994 | 2020-04-03 | A buffer overflow vulnerability was found in some devices of Hirschmann Automation and Control HiOS and HiSecOS. The vulnerability is due to improper parsing of URL arguments. An attacker could... |
| CVE-2020-8637 | 2020-04-03 | A SQL injection vulnerability in TestLink 1.9.20 allows attackers to execute arbitrary SQL commands in dragdroptreenodes.php via the node_id parameter. |
| CVE-2020-8638 | 2020-04-03 | A SQL injection vulnerability in TestLink 1.9.20 allows attackers to execute arbitrary SQL commands in planUrgency.php via the urgency parameter. |
| CVE-2020-8639 | 2020-04-03 | An unrestricted file upload vulnerability in keywordsImport.php in TestLink 1.9.20 allows remote attackers to execute arbitrary code by uploading a file with an executable extension. This allows an authenticated attacker... |
| CVE-2020-8142 | 2020-04-03 | A security restriction bypass vulnerability has been discovered in Revive Adserver version < 5.0.5 by HackerOne user hoangn144. Revive Adserver, like many other applications, requires the logged in user to... |
| CVE-2020-8147 | 2020-04-03 | Flaw in input validation in npm package utils-extend version 1.0.8 and earlier may allow prototype pollution attack that may result in remote code execution or denial of service of applications... |
| CVE-2020-8143 | 2020-04-03 | An Open Redirect vulnerability was discovered in Revive Adserver version < 5.0.5 and reported by HackerOne user hoangn144. A remote attacker could trick logged-in users to open a specifically crafted... |
| CVE-2020-5347 | 2020-04-03 | Dell EMC Isilon OneFS versions 8.2.2 and earlier contain a denial of service vulnerability. SmartConnect had an error condition that may be triggered to loop, using CPU and potentially preventing... |
| CVE-2020-5348 | 2020-04-03 | Dell Latitude 7202 Rugged Tablet BIOS versions prior to A28 contain a UAF vulnerability in EFI_BOOT_SERVICES in system management mode. A local unauthenticated attacker may exploit this vulnerability by overwriting... |
| CVE-2020-11518 | 2020-04-04 | Zoho ManageEngine ADSelfService Plus before 5815 allows unauthenticated remote code execution. |
| CVE-2020-11527 | 2020-04-04 | In Zoho ManageEngine OpManager before 12.4.181, an unauthenticated remote attacker can send a specially crafted URI to read arbitrary files. |
| CVE-2020-11528 | 2020-04-04 | bit2spr 1992-06-07 has a stack-based buffer overflow (129-byte write) in conv_bitmap in bit2spr.c via a long line in a bitmap file. |
| CVE-2020-11529 | 2020-04-04 | Common/Grav.php in Grav before 1.7 has an Open Redirect. This is partially fixed in 1.6.23 and still present in 1.6.x. |
| CVE-2020-11533 | 2020-04-04 | Ivanti Workspace Control before 10.4.30.0, when SCCM integration is enabled, allows local users to obtain sensitive information (keying material). |
| CVE-2020-11542 | 2020-04-04 | 3xLOGIC Infinias eIDC32 2.213 devices with Web 1.107 allow Authentication Bypass via CMD.HTM?CMD= because authentication depends on the client side's interpretation of the <KEY>MYKEY</KEY> substring. |
| CVE-2020-11547 | 2020-04-04 | PRTG Network Monitor before 20.1.57.1745 allows remote unauthenticated attackers to obtain information about probes running or the server itself (CPU usage, memory, Windows version, and internal statistics) via an HTTP... |
| CVE-2020-11548 | 2020-04-04 | The Search Meter plugin through 2.13.2 for WordPress allows user input introduced in the search bar to be any formula. The attacker could achieve remote code execution via CSV injection... |
| CVE-2020-11558 | 2020-04-05 | An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audio_sample_entry_Read in isomedia/box_code_base.c does not properly decide when to make gf_isom_box_del calls. This leads to various use-after-free... |
| CVE-2020-11565 | 2020-04-06 | An issue was discovered in the Linux kernel through 5.6.2. mpol_parse_str in mm/mempolicy.c has a stack-based out-of-bounds write because an empty nodelist is mishandled during mount option parsing, aka CID-aa9f7d5172fa.... |
| CVE-2020-10264 | 2020-04-06 | RTDE Interface allows unauthenticated reading of robot data and unauthenticated writing of registers and outputs |
| CVE-2020-10265 | 2020-04-06 | RVD#1443: UR dashboard server enables unauthenticated remote control of core robot functions |
| CVE-2020-10266 | 2020-04-06 | RVD#1487: No integrity checks on UR+ platform artifacts when installed in the robot |