CVE List - 2020 / August
Showing 1 - 100 of 1160 CVEs for August 2020 (Page 1 of 12)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-8108 | 2020-08-03 | Insufficient client validation in Bitdefender Endpoint Security for Mac (VA-8759) |
| CVE-2019-4366 | 2020-08-03 | IBM Cognos Analytics 11.0 and 11.1 is susceptible to an... |
| CVE-2019-4589 | 2020-08-03 | IBM Cognos Analytics 11.0 and 11.1 is vulnerable to privlege... |
| CVE-2020-4328 | 2020-08-03 | IBM Financial Transaction Manager 3.2.4 is vulnerable to SQL injection.... |
| CVE-2020-4377 | 2020-08-03 | IBM Cognos Anaytics 11.0 and 11.1 is vulnerable to an... |
| CVE-2020-4534 | 2020-08-03 | IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could... |
| CVE-2020-4549 | 2020-08-03 | IBM i2 Analyst Notebook 9.2.1 could allow a local attacker... |
| CVE-2020-4550 | 2020-08-03 | IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a... |
| CVE-2020-4551 | 2020-08-03 | IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a... |
| CVE-2020-4552 | 2020-08-03 | IBM i2 Analyst Notebook 9.2.1 could allow a local attacker... |
| CVE-2020-4553 | 2020-08-03 | IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a... |
| CVE-2020-4554 | 2020-08-03 | IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a... |
| CVE-2020-4560 | 2020-08-03 | IBM Financial Transaction Manager 3.2.4 is vulnerable to cross-site scripting.... |
| CVE-2019-19453 | 2020-08-03 | Wowza Streaming Engine before 4.8.5 allows XSS (issue 1 of... |
| CVE-2019-19455 | 2020-08-03 | Wowza Streaming Engine before 4.8.5 has Insecure Permissions which may... |
| CVE-2015-9549 | 2020-08-03 | A reflected Cross-site Scripting (XSS) vulnerability exists in OcPortal 9.0.20... |
| CVE-2020-16269 | 2020-08-03 | radare2 4.5.0 misparses DWARF information in executable files, causing a... |
| CVE-2020-16272 | 2020-08-03 | The SRP-6a implementation in Kee Vault KeePassRPC before 1.12.0 is... |
| CVE-2020-16271 | 2020-08-03 | The SRP-6a implementation in Kee Vault KeePassRPC before 1.12.0 generates... |
| CVE-2020-13820 | 2020-08-03 | Extreme Management Center 8.4.1.24 allows unauthenticated reflected XSS via a... |
| CVE-2020-12739 | 2020-08-03 | A denial-of-service vulnerability in the Fanuc i Series CNC (0i-MD... |
| CVE-2020-14319 | 2020-08-03 | It was found that the AMQ Online console is vulnerable... |
| CVE-2020-16131 | 2020-08-03 | Tiki before 21.2 allows XSS because [\s\/"\'] is not properly... |
| CVE-2020-8575 | 2020-08-03 | Active IQ Unified Manager for VMware vSphere and Windows versions... |
| CVE-2020-8574 | 2020-08-03 | Active IQ Unified Manager for Linux versions prior to 9.6... |
| CVE-2020-16116 | 2020-08-03 | In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive... |
| CVE-2020-5772 | 2020-08-03 | Improper Input Validation in Teltonika firmware TRB2_R_00.02.04.01 allows a remote,... |
| CVE-2020-5773 | 2020-08-03 | Improper Access Control in Teltonika firmware TRB2_R_00.02.04.01 allows a low... |
| CVE-2020-5770 | 2020-08-03 | Cross-site request forgery in Teltonika firmware TRB2_R_00.02.04.01 allows a remote... |
| CVE-2020-5771 | 2020-08-03 | Improper Input Validation in Teltonika firmware TRB2_R_00.02.04.01 allows a remote,... |
| CVE-2020-11584 | 2020-08-03 | A GET-based XSS reflected vulnerability in Plesk Onyx 17.8.11 allows... |
| CVE-2020-11583 | 2020-08-03 | A GET-based XSS reflected vulnerability in Plesk Obsidian 18.0.17 allows... |
| CVE-2020-5615 | 2020-08-04 | Cross-site request forgery (CSRF) vulnerability in [Calendar01] free edition ver1.0.0... |
| CVE-2020-5616 | 2020-08-04 | [Calendar01], [Calendar02], [PKOBO-News01], [PKOBO-vote01], [Telop01], [Gallery01], [CalendarForm01], and [Link01] [Calendar01]... |
| CVE-2020-5617 | 2020-08-04 | Privilege escalation vulnerability in SKYSEA Client View Ver.12.200.12n to 15.210.05f... |
| CVE-2019-20001 | 2020-08-04 | An issue was discovered in RICOH Streamline NX Client Tool... |
| CVE-2020-15467 | 2020-08-04 | The administrative interface of Cohesive Networks vns3:vpn appliances before version... |
| CVE-2020-6012 | 2020-08-04 | ZoneAlarm Anti-Ransomware before version 1.0.713 copies files for the report... |
| CVE-2020-7822 | 2020-08-04 | DaviewIndy Multiple Vulnerabilities |
| CVE-2020-7823 | 2020-08-04 | DaviewIndy Multiple Vulnerabilities |
| CVE-2020-4396 | 2020-08-04 | IBM Jazz Foundation and IBM Engineering products are vulnerable to... |
| CVE-2020-4410 | 2020-08-04 | IBM Jazz Foundation and IBM Engineering products could allow an... |
| CVE-2020-4459 | 2020-08-04 | IBM Security Verify Access 10.7 contains hard-coded credentials, such as... |
| CVE-2020-4525 | 2020-08-04 | IBM Jazz Foundation and IBM Engineering products are vulnerable to... |
| CVE-2020-4542 | 2020-08-04 | IBM Jazz Foundation and IBM Engineering products are vulnerable to... |
| CVE-2020-4631 | 2020-08-04 | IBM Spectrum Protect Plus 10.1.0 through 10.1.6 agent files, in... |
| CVE-2020-16134 | 2020-08-04 | An issue was discovered on Swisscom Internet Box 2, Internet... |
| CVE-2020-16203 | 2020-08-04 | Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. An... |
| CVE-2020-16201 | 2020-08-04 | Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. Multiple... |
| CVE-2020-16199 | 2020-08-04 | Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. Multiple... |
| CVE-2020-13523 | 2020-08-04 | An exploitable information disclosure vulnerability exists in SoftPerfect’s RAM Disk... |
| CVE-2020-15944 | 2020-08-04 | An issue was discovered in the Gantt-Chart module before 5.5.5... |
| CVE-2020-15956 | 2020-08-04 | ActiveMediaServer.exe in ACTi NVR3 Standard Server 3.0.12.42 allows remote unauthenticated... |
| CVE-2020-13522 | 2020-08-04 | An exploitable arbitrary file delete vulnerability exists in SoftPerfect RAM... |
| CVE-2020-15943 | 2020-08-04 | An issue was discovered in the Gantt-Chart module before 5.5.4... |
| CVE-2020-16843 | 2020-08-04 | In Firecracker 0.20.x before 0.20.1 and 0.21.x before 0.21.2, the... |
| CVE-2020-16847 | 2020-08-04 | Extreme Analytics in Extreme Management Center before 8.5.0.169 allows unauthenticated... |
| CVE-2020-15135 | 2020-08-04 | CSRF vulnerability in save-server |
| CVE-2020-15109 | 2020-08-04 | Ability to change order address without triggering address validations in solidus |
| CVE-2017-18112 | 2020-08-05 | Affected versions of Atlassian Fisheye allow remote attackers to view... |
| CVE-2020-13151 | 2020-08-05 | Aerospike Community Edition 4.9.0.5 allows for unauthenticated submission and execution... |
| CVE-2020-17353 | 2020-08-05 | scm/define-stencil-commands.scm in LilyPond through 2.20.0, and 2.21.x through 2.21.4, when... |
| CVE-2020-14344 | 2020-08-05 | An integer overflow leading to a heap-buffer overflow was found... |
| CVE-2020-14347 | 2020-08-05 | A flaw was found in the way xserver memory was... |
| CVE-2020-5609 | 2020-08-05 | Directory traversal vulnerability in CAMS for HIS CENTUM CS 3000... |
| CVE-2020-5608 | 2020-08-05 | CAMS for HIS CENTUM CS 3000 (includes CENTUM CS 3000... |
| CVE-2020-4243 | 2020-08-05 | IBM Security Identity Governance and Intelligence 5.2.6 Virtual Appliance could... |
| CVE-2020-4481 | 2020-08-05 | IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 is... |
| CVE-2020-13921 | 2020-08-05 | **Resolved** Only when using H2/MySQL/TiDB as Apache SkyWalking storage, there... |
| CVE-2020-13819 | 2020-08-05 | Extreme EAC Appliance 8.4.1.24 allows unauthenticated reflected XSS via a... |
| CVE-2020-16252 | 2020-08-05 | The Field Test gem 0.2.0 through 0.3.2 for Ruby allows... |
| CVE-2020-16253 | 2020-08-05 | The PgHero gem through 2.6.0 for Ruby allows CSRF. |
| CVE-2020-8607 | 2020-08-05 | An input validation vulnerability found in multiple Trend Micro products... |
| CVE-2020-17364 | 2020-08-05 | USVN (aka User-friendly SVN) before 1.0.9 allows XSS via SVN... |
| CVE-2020-16192 | 2020-08-05 | LimeSurvey 4.3.2 allows reflected XSS because application/controllers/LSBaseController.php lacks code to... |
| CVE-2020-15106 | 2020-08-05 | Improper Input Validation in etcd |
| CVE-2020-15113 | 2020-08-05 | Improper Preservation of Permissions in etcd |
| CVE-2020-16254 | 2020-08-05 | The Chartkick gem through 3.3.2 for Ruby allows Cascading Style... |
| CVE-2020-15112 | 2020-08-05 | Improper Input Validation in etcd |
| CVE-2020-15127 | 2020-08-05 | Denial of service in Contour |
| CVE-2020-15132 | 2020-08-05 | Reset Password / Login vulnerability in Sulu |
| CVE-2020-7298 | 2020-08-05 | Total Protection (MTP) - Unexpected behavior violation |
| CVE-2020-13404 | 2020-08-05 | The ATOS/Sips (aka Atos-Magento) community module 3.0.0 to 3.0.5 for... |
| CVE-2020-17366 | 2020-08-05 | An issue was discovered in NLnet Labs Routinator 0.1.0 through... |
| CVE-2020-9036 | 2020-08-05 | Jeedom through 4.0.38 allows XSS. |
| CVE-2020-7352 | 2020-08-06 | GOG Galaxy GalaxyClientService Privilege Escalation |
| CVE-2020-7356 | 2020-08-06 | Cayin xPost SQL Injection |
| CVE-2020-7357 | 2020-08-06 | Cayin CMS Command Injection |
| CVE-2020-7361 | 2020-08-06 | ZenTao Pro Command Injection |
| CVE-2020-7460 | 2020-08-06 | In FreeBSD 12.1-STABLE before r363918, 12.1-RELEASE before p8, 11.4-STABLE before... |
| CVE-2020-7459 | 2020-08-06 | In FreeBSD 12.1-STABLE before r362166, 12.1-RELEASE before p8, 11.4-STABLE before... |
| CVE-2020-13364 | 2020-08-06 | A backdoor in certain Zyxel products allows remote TELNET access... |
| CVE-2020-13365 | 2020-08-06 | Certain Zyxel products have a locally accessible binary that allows... |
| CVE-2020-7817 | 2020-08-06 | MyBrowserPlus downloads the files needed to run the program through... |
| CVE-2020-16845 | 2020-08-06 | Go before 1.13.15 and 14.x before 1.14.7 can have an... |
| CVE-2020-16217 | 2020-08-06 | Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. A double... |
| CVE-2020-16215 | 2020-08-06 | Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially... |
| CVE-2020-16213 | 2020-08-06 | Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially... |
| CVE-2020-16211 | 2020-08-06 | Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. An out-of-bounds... |
| CVE-2020-16207 | 2020-08-06 | Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Multiple heap-based... |