Skip to main content
CVE-2020-11081 HIGH POC PATCH This Week

osquery before version 4.4.0 enables a privilege escalation vulnerability. Rated high severity (CVSS 8.2), this vulnerability is low attack complexity. Public exploit code available.

Privilege Escalation Osquery
NVD GitHub
CVSS 3.1
8.2
EPSS
0.6%
CVE-2020-6114 HIGH POC This Week

An exploitable SQL injection vulnerability exists in the Admin Reports functionality of Glacies IceHRM v26.6.0.OS (Commit bb274de1751ffb9d09482fd2538f9950a94c510a) . Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Icehrm
NVD
CVSS 3.1
7.2
EPSS
1.7%
CVE-2020-8197 HIGH This Week

Privilege escalation vulnerability on Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 allows a low privileged user with management access. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Citrix Application Delivery Controller Firmware Netscaler Gateway Firmware Gateway Firmware
NVD
CVSS 3.1
8.8
EPSS
1.8%
CVE-2020-8199 HIGH This Week

Improper access control in Citrix ADC Gateway Linux client versions before 1.0.0.137 results in local privilege escalation to root. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Citrix Gateway Plug In For Linux
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2020-3974 HIGH PATCH This Week

VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior before 11.2.0 ) and Horizon Client for Mac (5.x and prior before 5.4.3) contain a privilege escalation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation VMware Fusion Horizon Client Remote Console
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2020-8190 HIGH This Week

Incorrect file permissions in Citrix ADC and Citrix Gateway before versions 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 allows privilege escalation. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation Citrix Application Delivery Controller Firmware Netscaler Gateway Firmware Gateway Firmware
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2020-8187 HIGH This Week

Improper input validation in Citrix ADC and Citrix Gateway versions before 11.1-63.9 and 12.0-62.10 allows unauthenticated users to perform a denial of service attack. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Citrix Application Delivery Controller Firmware Netscaler Gateway Firmware
NVD
CVSS 3.1
7.5
EPSS
1.9%
CVE-2020-11061 HIGH This Week

In Bareos Director less than or equal to 16.2.10, 17.2.9, 18.2.8, and 19.2.7, a heap overflow allows a malicious client to corrupt the director's memory via oversized digest strings sent during. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Heap Overflow Bareos Debian Linux
NVD GitHub
CVSS 3.1
7.4
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy