CVE-2020-11177
Summary: User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting...
Summary: User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting...
Summary: All versions of package lodash; all versions of package org.fujion.webjars:lodash are vulnerable to Command Injection via template. Reference Links(if...
Summary: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior...
Summary: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior...
Summary: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior...
Summary: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior...
Summary: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior...
Summary: Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all...
Summary: In wlan driver, there is a possible system crash due to a missing bounds check. This could lead to...
Summary: The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT. Reference Links(if available): https://github.com/u-boot/u-boot/commit/6f3c2d8aa5e6cbd80b5e869bbbddecb66c329d01 https://github.com/u-boot/u-boot/commit/b6f4c757959f8850e1299a77c8e5713da78e8ec0 https://github.com/u-boot/u-boot/commit/8a7d4cf9820ea16fabd25a6379351b4dc291204b CVSS...
Summary: The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT. Reference Links(if available):...
Summary: OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 with a server that is configured to support...
Summary: In the EyesOfNetwork web interface (aka eonweb) 5.1-0, module\tool_all\tools\snmpwalk.php does not properly restrict popen calls, which allows remote attackers...
Summary: In the EyesOfNetwork web interface (aka eonweb) 5.1-0, module\tool_all\tools\interface.php does not properly restrict exec calls, which allows remote attackers...
Summary: The EyesOfNetwork web interface (aka eonweb) 5.1-0 allows directory traversal attacks for reading arbitrary files via the module/admin_conf/download.php file...
Summary: EyesOfNetwork 5.1 allows Remote Command Execution via shell metacharacters in the module/tool_all/ host field. Reference Links(if available): https://www.eyesofnetwork.com/?p=2072 https://www.exploit-db.com/exploits/47280...
Summary: Any git operation is passed through Jetty and a session is created. No expiry is set for the session...
Summary: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior...
Summary: SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in MS_ADPCM_decode in audio/SDL_wave.c....
Summary: SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in SDL_LoadWAV_RW in audio/SDL_wave.c. Reference...
Summary: SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c...
Summary: SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c....
Summary: A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets...
Summary: A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets...