Skip to main content
CVE-2020-11582 HIGH POC This Week

An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Apple Ivanti Information Disclosure Pulse Connect Secure Pulse Policy Secure
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2020-11581 HIGH POC This Week

An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Ivanti Command Injection Apple Pulse Connect Secure Pulse Policy Secure
NVD
CVSS 3.1
8.1
EPSS
9.8%
CVE-2020-11587 HIGH POC This Week

An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Cipace
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2020-11599 HIGH POC This Week

An issue was discovered in CIPPlanner CIPAce 6.80 Build 2016031401. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Cipace
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2020-11596 HIGH POC This Week

A Directory Traversal issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Cipace
NVD
CVSS 3.1
7.5
EPSS
1.8%
CVE-2020-11595 HIGH POC This Week

An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Cipace
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2020-11594 HIGH POC This Week

An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Cipace
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2020-11593 HIGH POC This Week

An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection Cipace
NVD
CVSS 3.1
7.5
EPSS
1.0%
CVE-2020-11592 HIGH POC This Week

An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Cipace
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2020-11589 HIGH POC This Week

An Insecure Direct Object Reference issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Cipace
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2020-8004 HIGH POC This Week

STMicroelectronics STM32F1 devices have Incorrect Access Control. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Stm32F1 Firmware
NVD
CVSS 3.1
7.5
EPSS
3.0%
CVE-2020-10267 HIGH POC This Week

Universal Robots control box CB 3.1 across firmware versions (tested on 1.12.1, 1.12, 1.11 and 1.10) does not encrypt or protect in any way the intellectual property artifacts installed from the UR+. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Ur Software
NVD GitHub
CVSS 3.1
7.5
EPSS
0.9%
CVE-2020-11544 HIGH POC This Week

An issue was discovered in Project Worlds Official Car Rental System 1. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Official Car Rental System
NVD
CVSS 3.1
7.2
EPSS
1.1%
CVE-2020-10264 HIGH This Week

CB3 SW Version 3.3 and upwards, e-series SW Version 5.0 and upwards allow authenticated access to the RTDE (Real-Time Data Exchange) interface on port 30004 which allows setting registers, the speed. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Ur Software
NVD
CVSS 3.1
8.8
EPSS
0.6%
CVE-2020-10266 HIGH This Week

UR+ (Universal Robots+) is a platform of hardware and software component sellers, for Universal Robots robots. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Ur
NVD GitHub
CVSS 3.1
8.1
EPSS
0.5%
CVE-2020-5832 HIGH This Week

Symantec Data Center Security Manager Component, prior to 6.8.2 (aka 6.8 MP2), may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Data Center Security
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2020-11507 HIGH This Week

An Untrusted Search Path vulnerability in Malwarebytes AdwCleaner 8.0.3 could cause arbitrary code execution with SYSTEM privileges when a malicious DLL library is loaded. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Adwcleaner
NVD
CVSS 3.1
7.8
EPSS
0.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy