CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
501 CVE-2020-28944 DoS 2021-04-30 2021-05-01
0.0
None ??? ??? ??? ??? ??? ???
OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data.
502 CVE-2020-28943 2021-04-30 2021-05-01
0.0
None ??? ??? ??? ??? ??? ???
OX App Suite 7.10.4 and earlier allows SSRF via a snippet.
503 CVE-2020-28713 2021-06-08 2021-06-08
0.0
None ??? ??? ??? ??? ??? ???
Incorrect access control in push notification service in Night Owl Smart Doorbell FW version 20190505 allows remote users to send push notification events via an exposed PNS server. A remote attacker can passively record push notification events which are sent over an insecure web request. The web service does not authenticate requests, and allows attackers to send an indefinite amount of motion or doorbell events to a user's mobile application by either replaying or deliberately crafting false events.
504 CVE-2020-27339 +Priv 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in IdeBusDxe in Insyde InsydeH2O 5.x. Code in system management mode calls a function outside of SMRAM in response to a crafted software SMI, aka Inclusion of Functionality from an Untrusted Control Sphere. Modifying the well-known address of this function allows an attacker to gain control of the system with the privileges of system management mode.
505 CVE-2020-25755 Exec Code 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered on Enphase Envoy R3.x and D4.x (and other current) devices. The upgrade_start function in /installer/upgrade_start allows remote authenticated users to execute arbitrary commands via the force parameter.
506 CVE-2020-25754 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered on Enphase Envoy R3.x and D4.x devices. There is a custom PAM module for user authentication that circumvents traditional user authentication. This module uses a password derived from the MD5 hash of the username and serial number. The serial number can be retrieved by an unauthenticated user at /info.xml. Attempts to change the user password via passwd or other tools have no effect.
507 CVE-2020-25753 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered on Enphase Envoy R3.x and D4.x devices with v3 software. The default admin password is set to the last 6 digits of the serial number. The serial number can be retrieved by an unauthenticated user at /info.xml.
508 CVE-2020-25752 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered on Enphase Envoy R3.x and D4.x devices. There are hardcoded web-panel login passwords for the installer and Enphase accounts. The passwords for these accounts are hardcoded values derived from the MD5 hash of the username and serial number mixed with some static strings. The serial number can be retrieved by an unauthenticated user at /info.xml. These passwords can be easily calculated by an attacker; users are unable to change these passwords.
509 CVE-2020-25467 DoS 2021-06-10 2021-06-10
0.0
None ??? ??? ??? ??? ??? ???
A null pointer dereference was discovered lzo_decompress_buf in stream.c in Irzip 0.621 which allows an attacker to cause a denial of service (DOS) via a crafted compressed file.
510 CVE-2020-25414 Exec Code File Inclusion 2021-06-17 2021-06-17
0.0
None ??? ??? ??? ??? ??? ???
A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4 which allows remote attackers to execute arbitrary PHP code.
511 CVE-2020-24939 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
Prototype pollution in Stampit supermixer 1.0.3 allows an attacker to modify the prototype of a base object which can vary in severity depending on the implementation.
512 CVE-2020-24918 Exec Code Overflow 2021-04-30 2021-04-30
0.0
None ??? ??? ??? ??? ??? ???
A buffer overflow in the RTSP service of the Ambarella Oryx RTSP Server 2020-01-07 allows an unauthenticated attacker to send a crafted RTSP request, with a long digest authentication header, to execute arbitrary code in parse_authentication_header() in libamprotocol-rtsp.so.1 in rtsp_svc (or cause a crash). This allows remote takeover of a Furbo Dog Camera, for example.
513 CVE-2020-24516 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Modification of assumed-immutable data in subsystem in Intel(R) CSME versions before 13.0.47, 13.30.17, 14.1.53, 14.5.32, 15.0.22 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
514 CVE-2020-24513 Bypass 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Domain-bypass transient execution vulnerability in some Intel Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
515 CVE-2020-24512 2021-06-09 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
516 CVE-2020-24511 2021-06-09 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
517 CVE-2020-24509 2021-06-09 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
Insufficient control flow management in subsystem in Intel(R) SPS versions before SPS_E3_05.01.04.300.0, SPS_SoC-A_05.00.03.091.0, SPS_E5_04.04.04.023.0, or SPS_E5_04.04.03.263.0 may allow a privileged user to potentially enable escalation of privilege via local access.
518 CVE-2020-24507 2021-06-09 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
Improper initialization in a subsystem in the Intel(R) CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32, 13.50.11 and 15.0.22 may allow a privileged user to potentially enable information disclosure via local access.
519 CVE-2020-24506 2021-06-09 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
Out of bound read in a subsystem in the Intel(R) CSME versions before 12.0.81, 13.0.47, 13.30.17, 14.1.53 and 14.5.32 may allow a privileged user to potentially enable information disclosure via local access.
520 CVE-2020-24489 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.
521 CVE-2020-24486 DoS 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Improper input validation in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.
522 CVE-2020-24475 DoS 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Improper initialization in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable denial of service via local access.
523 CVE-2020-24474 Overflow 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via adjacent access.
524 CVE-2020-24473 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Out of bounds write in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via local access.
525 CVE-2020-22808 XSS 2021-04-29 2021-04-29
0.0
None ??? ??? ??? ??? ??? ???
An issue was found in yii2_fecshop 2.x. There is a reflected XSS vulnerability in the check cart page.
526 CVE-2020-22785 DoS 2021-04-28 2021-04-28
0.0
None ??? ??? ??? ??? ??? ???
Etherpad < 1.8.3 is affected by a missing lock check which could cause a denial of service. Aggressively targeting random pad import endpoints with empty data would flatten all pads due to lack of rate limiting and missing ownership check.
527 CVE-2020-22784 Bypass 2021-04-28 2021-04-28
0.0
None ??? ??? ??? ??? ??? ???
In Etherpad UeberDB < 0.4.4, due to MySQL omitting trailing spaces on char / varchar columns during comparisons, retrieving database records using UeberDB's MySQL connector could allow bypassing access controls enforced on key names.
528 CVE-2020-22783 2021-04-28 2021-04-28
0.0
None ??? ??? ??? ??? ??? ???
Etherpad <1.8.3 stored passwords used by users insecurely in the database and in log files. This affects every database backend supported by Etherpad.
529 CVE-2020-22782 DoS 2021-04-28 2021-04-28
0.0
None ??? ??? ??? ??? ??? ???
Etherpad < 1.8.3 is affected by a denial of service in the import functionality. Upload of binary file to the import endpoint would crash the instance.
530 CVE-2020-22781 DoS 2021-04-28 2021-04-28
0.0
None ??? ??? ??? ??? ??? ???
In Etherpad < 1.8.3, a specially crafted URI would raise an unhandled exception in the cache mechanism and cause a denial of service (crash the instance).
531 CVE-2020-22212 Sql 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection in 74cms 3.2.0 via the id parameter to wap/wap-company-show.php.
532 CVE-2020-22211 Sql 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection in 74cms 3.2.0 via the key parameter to plus/ajax_street.php.
533 CVE-2020-22210 Sql 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection in 74cms 3.2.0 via the x parameter to ajax_officebuilding.php.
534 CVE-2020-22209 Sql 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection in 74cms 3.2.0 via the query parameter to plus/ajax_common.php.
535 CVE-2020-22208 Sql 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection in 74cms 3.2.0 via the x parameter to plus/ajax_street.php.
536 CVE-2020-22206 Sql 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection in ECShop 3.0 via the aid parameter to admin/affiliate_ck.php.
537 CVE-2020-22205 Sql 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection in ECShop 3.0 via the id parameter to admin/shophelp.php.
538 CVE-2020-22204 Sql 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection in ECShop 2.7.6 via the goods_number parameter to flow.php. .
539 CVE-2020-22203 Sql 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection in phpCMS 2008 sp4 via the genre parameter to yp/job.php.
540 CVE-2020-22201 Exec Code 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
phpCMS 2008 sp4 allowas remote malicious users to execute arbitrary php commands via the pagesize parameter to yp/product.php.
541 CVE-2020-22199 Sql 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection vulnerability in phpCMS 2007 SP6 build 0805 via the digg_mod parameter to digg_add.php.
542 CVE-2020-22198 Sql 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection vulnerability in DedeCMS 5.7 via mdescription parameter to member/ajax_membergroup.php.
543 CVE-2020-22002 2021-04-29 2021-04-29
0.0
None ??? ??? ??? ??? ??? ???
An Unauthenticated Server-Side Request Forgery (SSRF) vulnerability exists in Inim Electronics Smartliving SmartLAN/G/SI <=6.x within the GetImage functionality. The application parses user supplied data in the GET parameter 'host' to construct an image request to the service through onvif.cgi. Since no validation is carried out on the parameter, an attacker can specify an external domain and force the application to make an HTTP request to an arbitrary destination host.
544 CVE-2020-22001 Bypass 2021-04-27 2021-04-27
0.0
None ??? ??? ??? ??? ??? ???
HomeAutomation 3.3.2 suffers from an authentication bypass vulnerability when spoofing client IP address using the X-Forwarded-For header with the local (loopback) IP address value allowing remote control of the smart home solution.
545 CVE-2020-22000 Exec Code CSRF 2021-04-27 2021-04-27
0.0
None ??? ??? ??? ??? ??? ???
HomeAutomation 3.3.2 suffers from an authenticated OS command execution vulnerability using custom command v0.1 plugin. This can be exploited with a CSRF vulnerability to execute arbitrary shell commands as the web user via the 'set_command_on' and 'set_command_off' POST parameters in '/system/systemplugins/customcommand/customcommand.plugin.php' by using an unsanitized PHP exec() function.
546 CVE-2020-21998 2021-04-27 2021-04-27
0.0
None ??? ??? ??? ??? ??? ???
In HomeAutomation 3.3.2 input passed via the 'redirect' GET parameter in 'api.php' script is not properly verified before being used to redirect users. This can be exploited to redirect a user to an arbitrary website e.g. when a user clicks a specially crafted link to the affected script hosted on a trusted domain.
547 CVE-2020-21997 Bypass 2021-04-29 2021-04-29
0.0
None ??? ??? ??? ??? ??? ???
Smartwares HOME easy <=1.0.9 is vulnerable to an unauthenticated database backup download and information disclosure vulnerability. An attacker could disclose sensitive and clear-text information resulting in authentication bypass, session hijacking and full system control.
548 CVE-2020-21993 Exec Code 2021-04-28 2021-04-28
0.0
None ??? ??? ??? ??? ??? ???
In WEMS Limited Enterprise Manager 2.58, input passed to the GET parameter 'email' is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML code in a user's browser session in context of an affected site.
549 CVE-2020-21990 2021-04-29 2021-04-29
0.0
None ??? ??? ??? ??? ??? ???
Emmanuel MyDomoAtHome (MDAH) REST API REST API Domoticz ISS Gateway 0.2.40 is affected by an information disclosure vulnerability due to improper access control enforcement. An unauthenticated remote attacker can exploit this, via a specially crafted request to gain access to sensitive information.
550 CVE-2020-21989 CSRF 2021-04-27 2021-04-27
0.0
None ??? ??? ??? ??? ??? ???
HomeAutomation 3.3.2 is affected by Cross Site Request Forgery (CSRF). The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious web site.
Total number of vulnerabilities : 799   Page : 1 2 3 4 5 6 7 8 9 10 11 (This Page)12 13 14 15 16
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.