CVE List - 2020 / June
Showing 1301 - 1400 of 1807 CVEs for June 2020 (Page 14 of 19)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2016-11081 | 2020-06-19 | An issue was discovered in Mattermost Server before 2.2.0. It allows unintended access to information stored by a web browser. |
| CVE-2016-11082 | 2020-06-19 | An issue was discovered in Mattermost Server before 2.2.0. It allows XSS via a crafted link. |
| CVE-2016-11083 | 2020-06-19 | An issue was discovered in Mattermost Server before 2.2.0. It allows XSS because it configures files to be opened in a browser window. |
| CVE-2016-11084 | 2020-06-19 | An issue was discovered in Mattermost Server before 2.1.0. It allows XSS via CSRF. |
| CVE-2015-9548 | 2020-06-19 | An issue was discovered in Mattermost Server before 1.2.0. It allows attackers to cause a denial of service (memory consumption) via a small compressed file that has a large size... |
| CVE-2019-20891 | 2020-06-19 | WooCommerce before 3.6.5, when it handles CSV imports of products, has a cross-site request forgery (CSRF) issue with resultant stored cross-site scripting (XSS) via includes/admin/importers/class-wc-product-csv-importer-controller.php. |
| CVE-2020-14930 | 2020-06-19 | An issue was discovered in BT CTROMS Terminal OS Port Portal CT-464. Account takeover can occur because the password-reset feature discloses the verification token. Upon a getverificationcode.jsp request, this token... |
| CVE-2020-14931 | 2020-06-19 | A stack-based buffer overflow in DMitry (Deepmagic Information Gathering Tool) 1.3a might allow remote WHOIS servers to execute arbitrary code via a long line in a response that is mishandled... |
| CVE-2020-13276 | 2020-06-19 | User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1 |
| CVE-2020-13272 | 2020-06-19 | OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow |
| CVE-2020-13265 | 2020-06-19 | User email verification bypass in GitLab CE/EE 12.5 and later through 13.0.1 allows user to bypass email verification |
| CVE-2020-13273 | 2020-06-19 | A Denial of Service vulnerability allowed exhausting the system resources in GitLab CE/EE 12.0 and later through 13.0.1 |
| CVE-2020-13274 | 2020-06-19 | A security issue allowed achieving Denial of Service attacks through memory exhaustion by uploading malicious artifacts in all previous GitLab versions through 13.0.1 |
| CVE-2020-13275 | 2020-06-19 | A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1 |
| CVE-2020-13262 | 2020-06-19 | Client-Side code injection through Mermaid markup in GitLab CE/EE 12.9 and later through 13.0.1 allows a specially crafted Mermaid payload to PUT requests on behalf of other users via clicking... |
| CVE-2020-13261 | 2020-06-19 | Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later through 13.0.1 allows other administrators to view Amazon EKS credentials via HTML source code |
| CVE-2020-13264 | 2020-06-19 | Kubernetes cluster token disclosure in GitLab CE/EE 10.3 and later through 13.0.1 allows other group maintainers to view Kubernetes cluster token |
| CVE-2020-13263 | 2020-06-19 | An authorization issue relating to project maintainer impersonation was identified in GitLab EE 9.5 and later through 13.0.1 that could allow unauthorized users to impersonate as a maintainer to perform... |
| CVE-2020-14933 | 2020-06-20 | compose.php in SquirrelMail 1.4.22 calls unserialize for the $attachments value, which originates from an HTTP POST request. NOTE: the vendor disputes this because these two conditions for PHP object injection... |
| CVE-2020-14932 | 2020-06-20 | compose.php in SquirrelMail 1.4.22 calls unserialize for the $mailtodata value, which originates from an HTTP GET request. This is related to mailto.php. |
| CVE-2020-14942 | 2020-06-21 | Tendenci 12.0.10 allows unrestricted deserialization in apps\helpdesk\views\staff.py. |
| CVE-2020-14950 | 2020-06-21 | aaPanel through 6.6.6 allows remote authenticated users to execute arbitrary commands via shell metacharacters in a modified /system?action=ServiceAdmin request (start, stop, or restart) to the setting menu of Sotfware Store. |
| CVE-2020-14954 | 2020-06-21 | Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional... |
| CVE-2020-14958 | 2020-06-21 | In Gogs 0.11.91, MakeEmailPrimary in models/user_mail.go lacks a "not the owner of the email" check. |
| CVE-2020-14962 | 2020-06-21 | Multiple XSS vulnerabilities in the Final Tiles Gallery plugin before 3.4.19 for WordPress allow remote attackers to inject arbitrary web script or HTML via the Title (aka imageTitle) or Caption... |
| CVE-2020-14961 | 2020-06-21 | Concrete5 before 8.5.3 does not constrain the sort direction to a valid asc or desc value. |
| CVE-2020-14960 | 2020-06-21 | A SQL injection vulnerability in PHP-Fusion 9.03.50 affects the endpoint administration/comments.php via the ctype parameter, |
| CVE-2020-14959 | 2020-06-21 | Multiple XSS vulnerabilities in the Easy Testimonials plugin before 3.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the wp-admin/post.php Client Name, Position, Web Address,... |
| CVE-2020-11095 | 2020-06-22 | Global OOB read in update_recv_primary_order in FreeRDP |
| CVE-2020-11096 | 2020-06-22 | Global OOB read in update_read_cache_bitmap_v3_order in FreeRDP |
| CVE-2020-11097 | 2020-06-22 | OOB read in ntlm_av_pair_get in FreeRDP |
| CVE-2020-11098 | 2020-06-22 | Out-of-bound read in glyph_cache_put in FreeRDP |
| CVE-2020-11099 | 2020-06-22 | OOB Read in license_read_new_or_upgrade_license_packet in FreeRDP |
| CVE-2020-4030 | 2020-06-22 | OOB read in `TrioParse` in FreeRDP |
| CVE-2020-4031 | 2020-06-22 | Use-After-Free in gdi_SelectObject in FreeRDP |
| CVE-2020-4032 | 2020-06-22 | Integer casting vulnerability in `update_recv_secondary_order` in FreeRDP |
| CVE-2020-4033 | 2020-06-22 | OOB Read in RLEDECOMPRESS in FreeRDP |
| CVE-2019-10597 | 2020-06-22 | kernel writes to user passed address without any checks can lead to arbitrary memory write in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure... |
| CVE-2019-10626 | 2020-06-22 | Payload size is not validated before reading memory that may cause issue of accessing invalid pointer or some garbage data in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial... |
| CVE-2019-14047 | 2020-06-22 | While IPA driver processes route add rule IOCTL, there is no input validation of the rule ID prior to adding the rule to the IPA HW commit list in Snapdragon... |
| CVE-2019-14062 | 2020-06-22 | Buffer overflows while decoding setup message from Network due to lack of check of IE message length received from network in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial... |
| CVE-2019-14073 | 2020-06-22 | Copying RTCP messages into the output buffer without checking the destination buffer size which could lead to a remote stack overflow when processing large data or non-standard feedback messages in... |
| CVE-2019-14076 | 2020-06-22 | Buffer overflow occurs while processing an subsample data length out of range due to lack of user input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon... |
| CVE-2019-14080 | 2020-06-22 | Out of bound write can happen due to lack of check of array index value while parsing SDP attribute for SAR in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon... |
| CVE-2019-14091 | 2020-06-22 | Double free issue in NPU due to lack of resource locking mechanism to avoid race condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon... |
| CVE-2019-14092 | 2020-06-22 | System Services exports services without permission protect and can lead to information exposure in Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9207C, MDM9607, Rennell, Saipan, SM8150, SM8250, SXR2130 |
| CVE-2019-14094 | 2020-06-22 | Integer overflow in diag command handler when user inputs a large value for number of tasks field in the request packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer... |
| CVE-2020-3613 | 2020-06-22 | Double free issue in kernel memory mapping due to lack of memory protection mechanism in Snapdragon Compute, Snapdragon Mobile, Snapdragon Voice & Music in SM8150 |
| CVE-2020-3614 | 2020-06-22 | Possible buffer overflow while copying the frame to local buffer due to lack of check of length before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity,... |
| CVE-2020-3626 | 2020-06-22 | Any application can bind to it and exercise the APIs due to no protection for AIDL uimlpaservice in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,... |
| CVE-2020-3628 | 2020-06-22 | Improper access due to socket opened by the logging application without specifying localhost address in Snapdragon Consumer IOT, Snapdragon Mobile in APQ8053, Rennell, SDX20 |
| CVE-2020-3635 | 2020-06-22 | Stack based overflow If the maximum number of arguments allowed per request in perflock exceeds in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables... |
| CVE-2020-3642 | 2020-06-22 | Use after free issue in camera applications when used randomly over multiple operations due to pointer not set to NULL after free/destroy of the object in Snapdragon Consumer IOT, Snapdragon... |
| CVE-2020-3658 | 2020-06-22 | Possible null-pointer dereference can occur while parsing mp4 clip with corrupted sample table atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon... |
| CVE-2020-3660 | 2020-06-22 | Possible null-pointer dereference can occur while parsing mp4 clip with corrupted sample table atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon... |
| CVE-2020-3661 | 2020-06-22 | Buffer overflow will happen while parsing mp4 clip with corrupted sample atoms values which exceeds MAX_UINT32 range due to lack of validation checks in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity,... |
| CVE-2020-3662 | 2020-06-22 | Buffer overflow can occur while parsing eac3 header while playing the clip which is nonstandard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,... |
| CVE-2020-3663 | 2020-06-22 | Buffer over-write may occur during fetching track decoder specific information if cb size exceeds buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon... |
| CVE-2020-3665 | 2020-06-22 | A possible buffer overflow would occur while processing command from firmware due to the group_id obtained from the firmware being out of range in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity,... |
| CVE-2020-3676 | 2020-06-22 | Possible memory corruption in perfservice due to improper validation array length taken from user application. in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8096AU, APQ8098, Kamorta,... |
| CVE-2020-7262 | 2020-06-22 | Improper Access Control vulnerability in ATD |
| CVE-2020-8102 | 2020-06-22 | Insufficient URL sanitization and validation in Safepay Browser (VA-8631) |
| CVE-2020-14967 | 2020-06-22 | An issue was discovered in the jsrsasign package before 8.0.18 for Node.js. Its RSA PKCS1 v1.5 decryption implementation does not detect ciphertext modification by prepending '\0' bytes to ciphertexts (it... |
| CVE-2020-14968 | 2020-06-22 | An issue was discovered in the jsrsasign package before 8.0.17 for Node.js. Its RSASSA-PSS (RSA-PSS) implementation does not detect signature manipulation/modification by prepending '\0' bytes to a signature (it accepts... |
| CVE-2020-14966 | 2020-06-22 | An issue was discovered in the jsrsasign package through 8.0.18 for Node.js. It allows a malleability in ECDSA signatures by not checking overflows in the length of a sequence and... |
| CVE-2020-14969 | 2020-06-22 | app/Model/Attribute.php in MISP 2.4.127 lacks an ACL lookup on attribute correlations. This occurs when querying the attribute restsearch API, revealing metadata about a correlating but unreachable attribute. |
| CVE-2020-14461 | 2020-06-22 | Zyxel Armor X1 WAP6806 1.00(ABAL.6)C0 devices allow Directory Traversal via the images/eaZy/ URI. |
| CVE-2020-14203 | 2020-06-22 | WebFOCUS Business Intelligence 8.0 (SP6) allows a Cross-Site Request Forgery (CSRF) attack against administrative users within the /ibi_apps/WFServlet(.ibfs) endpoint. The impact may be creation of an administrative user. It can... |
| CVE-2020-14204 | 2020-06-22 | In WebFOCUS Business Intelligence 8.0 (SP6), the administration portal allows remote attackers to read arbitrary local files or forge server-side HTTP requests via a crafted HTTP request to /ibi_apps/WFServlet.cfg because... |
| CVE-2020-14202 | 2020-06-22 | WebFOCUS Business Intelligence 8.0 (SP6) was prone to XSS via arbitrary URL parameters. |
| CVE-2020-8903 | 2020-06-22 | Priviged Escalation in Google Cloud Platform's Guest-OSLogin |
| CVE-2020-8907 | 2020-06-22 | Priviged Escalation in Google Cloud Platform's Guest-OSLogin |
| CVE-2020-8933 | 2020-06-22 | Priviged Escalation in Google Cloud Platform's Guest-OSLogin |
| CVE-2020-13888 | 2020-06-22 | Kordil EDMS through 2.2.60rc3 allows stored XSS in users_edit.php, users_management_edit.php, and user_management.php. |
| CVE-2020-13279 | 2020-06-22 | Client side code execution in gitlab-vscode-extension v2.2.0 allows attacker to execute code on user system |
| CVE-2020-9288 | 2020-06-22 | An improper neutralization of input vulnerability in FortiWLC 8.5.1 allows a remote authenticated attacker to perform a stored cross site scripting attack (XSS) via the ESS profile or the Radius... |
| CVE-2020-4062 | 2020-06-22 | Improper Access Control in Conjur OSS Helm Chart |
| CVE-2020-6644 | 2020-06-22 | An insufficient session expiration vulnerability in FortiDeceptor 3.0.0 and below allows an attacker to reuse the unexpired admin user session IDs to gain admin privileges, should the attacker be able... |
| CVE-2020-4066 | 2020-06-22 | Command Injection in Limdu trainBatch function |
| CVE-2020-13887 | 2020-06-22 | documents_add.php in Kordil EDMS through 2.2.60rc3 allows Remote Command Execution because .php files can be uploaded to the documents folder. |
| CVE-2020-4068 | 2020-06-22 | Heap-based Buffer Overflow in APNSwift |
| CVE-2020-4070 | 2020-06-22 | Cross-site Scripting in CSS Validator |
| CVE-2020-4060 | 2020-06-22 | Use After Free in in cups_update_info in LoRa Basics Station |
| CVE-2020-13426 | 2020-06-22 | The Multi-Scheduler plugin 1.0.0 for WordPress has a Cross-Site Request Forgery (CSRF) vulnerability in the forms it presents, allowing the possibility of deleting records (users) when an ID is known. |
| CVE-2020-14973 | 2020-06-22 | The loginForm within the general/login.php webpage in webTareas 2.0p8 suffers from a Reflected Cross Site Scripting (XSS) vulnerability via the query string. |
| CVE-2020-14972 | 2020-06-22 | Multiple SQL injection vulnerabilities in Sourcecodester Pisay Online E-Learning System 1.0 allow remote unauthenticated attackers to bypass authentication and achieve Remote Code Execution (RCE) via the user_email, user_pass, and id... |
| CVE-2020-14049 | 2020-06-22 | Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious website could launch Viber with arbitrary parameters, forcing a victim to send an NTLM... |
| CVE-2020-13480 | 2020-06-22 | Verint Workforce Optimization (WFO) 15.2 allows HTML injection via the "send email" feature. |
| CVE-2020-13427 | 2020-06-22 | Victor CMS 1.0 has Persistent XSS in admin/users.php?source=add_user via the user_name, user_firstname, or user_lastname parameter. |
| CVE-2020-14981 | 2020-06-22 | The ThreatTrack VIPRE Password Vault app through 1.100.1090 for iOS has Missing SSL Certificate Validation. |
| CVE-2020-13159 | 2020-06-22 | Artica Proxy before 4.30.000000 Community Edition allows OS command injection via the Netbios name, Server domain name, dhclient_mac, Hostname, or Alias field. NOTE: this may overlap CVE-2020-10818. |
| CVE-2020-14980 | 2020-06-22 | The Sophos Secure Email application through 3.9.4 for Android has Missing SSL Certificate Validation. |
| CVE-2020-10740 | 2020-06-22 | A vulnerability was found in Wildfly in versions before 20.0.0.Final, where a remote deserialization attack is possible in the Enterprise Application Beans(EJB) due to lack of validation/filtering capabilities in wildfly. |
| CVE-2020-13158 | 2020-06-22 | Artica Proxy before 4.30.000000 Community Edition allows Directory Traversal via the fw.progrss.details.php popup parameter. |
| CVE-2020-1727 | 2020-06-22 | A vulnerability was found in Keycloak before 9.0.2, where every Authorization URL that points to an IDP server lacks proper input validation as it allows a wide range of characters.... |
| CVE-2020-11520 | 2020-06-22 | The SDDisk2k.sys driver of WinMagic SecureDoc v8.5 and earlier allows local users to write to arbitrary kernel memory addresses because the IOCTL dispatcher lacks pointer validation. Exploiting this vulnerability results... |
| CVE-2020-11519 | 2020-06-22 | The SDDisk2k.sys driver of WinMagic SecureDoc v8.5 and earlier allows local users to read or write to physical disc sectors via a \\.\SecureDocDevice handle. Exploiting this vulnerability results in privileged... |
| CVE-2020-10736 | 2020-06-22 | An authorization bypass vulnerability was found in Ceph versions 15.2.0 before 15.2.2, where the ceph-mon and ceph-mgr daemons do not properly restrict access, resulting in gaining access to unauthorized resources.... |
| CVE-2019-3865 | 2020-06-22 | A vulnerability was found in quay-2, where a stored XSS vulnerability has been found in the super user function of quay. Attackers are able to use the name field of... |
| CVE-2019-14894 | 2020-06-22 | A flaw was found in the CloudForms management engine version 5.10 and CloudForms management version 5.11, which triggered remote code execution through NFS schedule backup. An attacker logged into the... |