Skip to main content
CVE-2020-6103 CRITICAL POC Act Now

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.dll 26.20.15019.19000. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Memory Corruption Amd Radeon Directx 11 Driver Atidxx64 Dll
NVD
CVSS 3.1
9.9
EPSS
2.8%
CVE-2020-6102 CRITICAL POC Act Now

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.dll 26.20.15019.19000. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Memory Corruption Amd Radeon Directx 11 Driver Atidxx64 Dll
NVD
CVSS 3.1
9.9
EPSS
2.8%
CVE-2020-6101 CRITICAL POC Act Now

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.dll 26.20.15019.19000. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Memory Corruption Amd Radeon Directx 11 Driver Atidxx64 Dll
NVD
CVSS 3.1
9.9
EPSS
2.8%
CVE-2020-6100 CRITICAL POC Act Now

An exploitable memory corruption vulnerability exists in AMD atidxx64.dll 26.20.15019.19000 graphics driver. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Memory Corruption Amd VMware Radeon Directx 11 Driver Atidxx64 Dll
NVD
CVSS 3.1
9.9
EPSS
2.1%
CVE-2020-15123 CRITICAL POC PATCH Act Now

In codecov (npm package) before version 3.7.1 the upload method has a command injection vulnerability. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Node.js Command Injection Codecov
NVD GitHub
CVSS 3.1
9.3
EPSS
3.8%
CVE-2020-6871 CRITICAL Act Now

The server management software module of ZTE has an authentication issue vulnerability, which allows users to skip the authentication of the server and execute some commands for high-level users. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Zte R8500G4 Firmware R5500G4 Firmware R5300G4 Firmware
NVD
CVSS 3.1
9.8
EPSS
1.9%
CVE-2020-14494 CRITICAL Act Now

OpenClinic GA versions 5.09.02 and 5.89.05b contain an authentication mechanism within the system that does not provide sufficient complexity to protect against brute force attacks, which may allow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Openclinic Ga
NVD
CVSS 3.1
9.8
EPSS
1.3%
CVE-2020-14485 CRITICAL Act Now

OpenClinic GA versions 5.09.02 and 5.89.05b may allow an attacker to bypass client-side access controls or use a crafted request to initiate a session with limited functionality, which may allow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Openclinic Ga
NVD
CVSS 3.1
9.8
EPSS
2.5%
CVE-2020-14484 CRITICAL Act Now

OpenClinic GA versions 5.09.02 and 5.89.05b may allow an attacker to bypass the system’s account lockout protection, which may allow brute force password attacks. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Openclinic Ga
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2020-15121 CRITICAL PATCH Act Now

In radare2 before version 4.5.0, malformed PDB file names in the PDB server path cause shell injection. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

Command Injection Radare2 Fedora
NVD GitHub
CVSS 3.1
9.6
EPSS
1.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy