CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 6 and 6.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
2951 CVE-2020-6790 427 Exec Code 2021-03-25 2021-03-25
6.9
None Local Medium Not required Complete Complete Complete
Calling an executable through an Uncontrolled Search Path Element in the Bosch Video Streaming Gateway installer up to and including version 6.45.10 potentially allows an attacker to execute arbitrary code on a victim's system. A prerequisite is that the victim is tricked into placing a malicious exe in the same directory where the installer is started from.
2952 CVE-2020-6789 427 Exec Code 2021-03-25 2021-03-25
6.9
None Local Medium Not required Complete Complete Complete
Loading a DLL through an Uncontrolled Search Path Element in the Bosch Monitor Wall installer up to and including version 10.00.0164 potentially allows an attacker to execute arbitrary code on a victim's system. A prerequisite is that the victim is tricked into placing a malicious DLL in the same directory where the installer is started from.
2953 CVE-2020-6788 427 Exec Code 2021-03-25 2021-03-25
6.9
None Local Medium Not required Complete Complete Complete
Loading a DLL through an Uncontrolled Search Path Element in the Bosch Configuration Manager installer up to and including version 7.21.0078 potentially allows an attacker to execute arbitrary code on a victim's system. A prerequisite is that the victim is tricked into placing a malicious DLL in the same directory where the installer is started from.
2954 CVE-2020-6787 427 Exec Code 2021-03-25 2021-03-25
6.9
None Local Medium Not required Complete Complete Complete
Loading a DLL through an Uncontrolled Search Path Element in the Bosch Video Client installer up to and including version 1.7.6.079 potentially allows an attacker to execute arbitrary code on a victim's system. A prerequisite is that the victim is tricked into placing a malicious DLL in the same directory where the installer is started from.
2955 CVE-2020-6786 427 Exec Code 2021-03-25 2021-03-25
6.9
None Local Medium Not required Complete Complete Complete
Loading a DLL through an Uncontrolled Search Path Element in the Bosch Video Recording Manager installer up to and including version 3.82.0055 for 3.82, up to and including version 3.81.0064 for 3.81 and 3.71 and older potentially allows an attacker to execute arbitrary code on a victim's system. A prerequisite is that the victim is tricked into placing a malicious DLL in the same directory where the installer is started from.
2956 CVE-2020-6785 427 Exec Code 2021-03-25 2021-03-25
6.9
None Local Medium Not required Complete Complete Complete
Loading a DLL through an Uncontrolled Search Path Element in Bosch BVMS and BVMS Viewer in versions 10.1.0, 10.0.1, 10.0.0 and 9.0.0 and older potentially allows an attacker to execute arbitrary code on a victim's system. This affects both the installer as well as the installed application. This also affects Bosch DIVAR IP 7000 R2, Bosch DIVAR IP all-in-one 5000 and Bosch DIVAR IP all-in-one 7000 with installers and installed BVMS versions prior to BVMS 10.1.1.
2957 CVE-2020-6776 352 CSRF 2021-01-14 2021-01-21
6.8
None Remote Medium Not required Partial Partial Partial
A vulnerability in the web-based management interface of Bosch PRAESIDEO until and including version 4.41 and Bosch PRAESENSA until and including version 1.10 allows an unauthenticated remote attacker to trigger actions on an affected system on behalf of another user (Cross-Site Request Forgery). This requires the victim to be tricked into clicking a malicious link or submitting a malicious form. A successful exploit allows the attacker to perform arbitrary actions with the privileges of the victim, e.g. creating and modifying user accounts, changing system configuration settings and cause DoS conditions. Note: For Bosch PRAESIDEO 4.31 and newer and Bosch PRAESENSA in all versions, the confidentiality impact is considered low because user credentials are not shown in the web interface.
2958 CVE-2020-6771 427 Exec Code 2021-03-25 2021-03-25
6.9
None Local Medium Not required Complete Complete Complete
Loading a DLL through an Uncontrolled Search Path Element in Bosch IP Helper up to and including version 1.00.0008 potentially allows an attacker to execute arbitrary code on a victim's system. A prerequisite is that the victim is tricked into placing a malicious DLL in the same application directory as the portable IP Helper application.
2959 CVE-2020-6769 306 2020-02-07 2020-02-12
6.4
None Remote Low Not required Partial None Partial
Missing Authentication for Critical Function in the Bosch Video Streaming Gateway (VSG) allows an unauthenticated remote attacker to retrieve and set arbitrary configuration data of the Video Streaming Gateway. A successful attack can impact the confidentiality and availability of live and recorded video data of all cameras configured to be controlled by the VSG as well as the recording storage associated with the VSG. This affects Bosch Video Streaming Gateway versions 6.45 <= 6.45.08, 6.44 <= 6.44.022, 6.43 <= 6.43.0023 and 6.42.10 and older. This affects Bosch DIVAR IP 3000, DIVAR IP 7000 and DIVAR IP all-in-one 5000 if a vulnerable VSG version is installed with BVMS. This affects Bosch DIVAR IP 2000 <= 3.62.0019 and DIVAR IP 5000 <= 3.80.0039 if the corresponding port 8023 has been opened in the device's firewall.
2960 CVE-2020-6765 78 Exec Code 2020-04-10 2020-04-13
6.5
None Remote Low ??? Partial Partial Partial
D-Link DSL-GS225 J1 AU_1.0.4 devices allow an admin to execute OS commands by placing shell metacharacters after a supported CLI command, as demonstrated by ping -c1 127.0.0.1; cat/etc/passwd. The CLI is reachable by TELNET.
2961 CVE-2020-6757 20 Exec Code 2020-01-09 2020-01-15
6.5
None Remote Low ??? Partial Partial Partial
contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows authenticated attackers to remotely execute code via the name parameter.
2962 CVE-2020-6656 843 Exec Code 2021-01-07 2021-03-31
6.8
None Remote Medium Not required Partial Partial Partial
Eaton's easySoft software v7.xx prior to v7.22 are susceptible to file parsing type confusion remote code execution vulnerability. A malicious entity can execute a malicious code or make the application crash by tricking user upload a malformed .E70 file in the application. The vulnerability arises due to improper validation of user data supplied through E70 file which is causing Type Confusion.
2963 CVE-2020-6655 125 Exec Code 2021-01-07 2021-03-31
6.8
None Remote Medium Not required Partial Partial Partial
The Eaton's easySoft software v7.xx prior to v7.22 are susceptible to Out-of-bounds remote code execution vulnerability. A malicious entity can execute a malicious code or make the application crash by tricking user to upload the malformed .E70 file in the application. The vulnerability arises due to improper validation and parsing of the E70 file content by the application.
2964 CVE-2020-6651 20 Exec Code 2020-05-07 2020-05-12
6.0
None Remote Medium ??? Partial Partial Partial
Improper Input Validation in Eaton's Intelligent Power Manager (IPM) v 1.67 & prior on file name during configuration file import functionality allows attackers to perform command injection or code execution via specially crafted file names while uploading the configuration file in the application.
2965 CVE-2020-6644 613 +Priv 2020-06-22 2020-06-29
6.8
None Remote Medium Not required Partial Partial Partial
An insufficient session expiration vulnerability in FortiDeceptor 3.0.0 and below allows an attacker to reuse the unexpired admin user session IDs to gain admin privileges, should the attacker be able to obtain that session ID via other, hypothetical attacks.
2966 CVE-2020-6628 125 2020-01-09 2020-01-21
6.8
None Remote Medium Not required Partial Partial Partial
Ming (aka libming) 0.4.8 has a heap-based buffer over-read in the function decompile_SWITCH() in decompile.c.
2967 CVE-2020-6623 617 2020-01-08 2020-01-10
6.8
None Remote Medium Not required Partial Partial Partial
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_get_index.
2968 CVE-2020-6622 125 2020-01-08 2020-01-10
6.8
None Remote Medium Not required Partial Partial Partial
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_peek8.
2969 CVE-2020-6621 125 2020-01-08 2020-01-10
6.8
None Remote Medium Not required Partial Partial Partial
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in ttUSHORT.
2970 CVE-2020-6620 125 2020-01-08 2020-01-10
6.8
None Remote Medium Not required Partial Partial Partial
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_get8.
2971 CVE-2020-6619 617 2020-01-08 2020-01-10
6.8
None Remote Medium Not required Partial Partial Partial
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__buf_seek.
2972 CVE-2020-6618 125 2020-01-08 2020-01-10
6.8
None Remote Medium Not required Partial Partial Partial
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__find_table.
2973 CVE-2020-6617 617 2020-01-08 2020-01-10
6.8
None Remote Medium Not required Partial Partial Partial
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_int.
2974 CVE-2020-6609 125 2020-01-08 2020-01-23
6.8
None Remote Medium Not required Partial Partial Partial
GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in read_pages_map in decode_r2007.c.
2975 CVE-2020-6585 352 CSRF 2020-03-16 2020-03-19
6.8
None Remote Medium Not required Partial Partial Partial
Nagios Log Server 2.1.3 has CSRF.
2976 CVE-2020-6576 416 2020-09-21 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in offscreen canvas in Google Chrome prior to 85.0.4183.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2977 CVE-2020-6573 416 2020-09-21 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in video in Google Chrome on Android prior to 85.0.4183.102 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
2978 CVE-2020-6569 190 Overflow 2020-09-21 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Integer overflow in WebUSB in Google Chrome prior to 85.0.4183.83 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
2979 CVE-2020-6555 125 +Info 2020-09-21 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Out of bounds read in WebGL in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
2980 CVE-2020-6554 416 2020-09-21 2021-03-11
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in extensions in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially perform a sandbox escape via a crafted Chrome Extension.
2981 CVE-2020-6545 416 2020-09-21 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in audio in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2982 CVE-2020-6544 416 2020-09-21 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in media in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2983 CVE-2020-6543 416 2020-09-21 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in task scheduling in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2984 CVE-2020-6542 416 2020-09-21 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in ANGLE in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2985 CVE-2020-6541 416 2020-09-21 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in WebUSB in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2986 CVE-2020-6540 787 Overflow 2020-09-21 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Buffer overflow in Skia in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2987 CVE-2020-6539 416 2020-09-21 2021-03-11
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in CSS in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2988 CVE-2020-6537 843 Exec Code 2020-09-21 2021-03-16
6.8
None Remote Medium Not required Partial Partial Partial
Type confusion in V8 in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
2989 CVE-2020-6534 787 Overflow 2020-07-22 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in WebRTC in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2990 CVE-2020-6533 843 2020-07-22 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2991 CVE-2020-6532 416 2020-09-21 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in SCTP in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2992 CVE-2020-6530 119 Overflow Mem. Corr. 2020-07-22 2021-01-28
6.8
None Remote Medium Not required Partial Partial Partial
Out of bounds memory access in developer tools in Google Chrome prior to 84.0.4147.89 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.
2993 CVE-2020-6525 787 Overflow 2020-07-22 2021-03-16
6.8
None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in Skia in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2994 CVE-2020-6522 2020-07-22 2021-03-12
6.8
None Remote Medium Not required Partial Partial Partial
Inappropriate implementation in external protocol handlers in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
2995 CVE-2020-6513 787 Overflow 2020-07-22 2021-01-28
6.8
None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in PDFium in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
2996 CVE-2020-6510 787 Overflow 2020-07-22 2021-01-27
6.8
None Remote Medium Not required Partial Partial Partial
Heap buffer overflow in background fetch in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2997 CVE-2020-6509 416 2020-07-22 2020-09-18
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in extensions in Google Chrome prior to 83.0.4103.116 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.
2998 CVE-2020-6507 787 2020-07-22 2021-04-12
6.8
None Remote Medium Not required Partial Partial Partial
Out of bounds write in V8 in Google Chrome prior to 83.0.4103.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
2999 CVE-2020-6505 416 2020-07-22 2020-07-27
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in speech in Google Chrome prior to 83.0.4103.106 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
3000 CVE-2020-6496 416 2020-06-03 2020-07-02
6.8
None Remote Medium Not required Partial Partial Partial
Use after free in payments in Google Chrome on MacOS prior to 83.0.4103.97 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.