Skip to main content
CVE-2020-7306 MEDIUM This Month

Unprotected Storage of Credentials vulnerability in McAfee Data Loss Prevention (DLP) for Mac prior to 11.5.2 allows local users to gain access to the ADRMS username and password via unprotected log. Rated medium severity (CVSS 5.2), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Data Loss Prevention
NVD
CVSS 3.1
5.2
EPSS
0.2%
CVE-2020-8685 MEDIUM PATCH This Month

Improper authentication in subsystem for Intel (R) LED Manager for NUC before version 1.2.3 may allow privileged user to potentially enable denial of service via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Denial Of Service Intel Authentication Bypass Led Manager For Nuc
NVD
CVSS 3.1
4.4
EPSS
0.3%
CVE-2020-0553 MEDIUM PATCH This Month

Out-of-bounds read in kernel mode driver for some Intel(R) Wireless Bluetooth(R) products on Windows* 10, may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Buffer Overflow Intel Microsoft Information Disclosure Ac 3165 Firmware +10
NVD
CVSS 3.1
4.4
EPSS
0.3%
CVE-2020-14483 MEDIUM This Month

A timeout during a TLS handshake can result in the connection failing to terminate. Rated medium severity (CVSS 4.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Niagara Niagara Enterprise Security
NVD
CVSS 3.1
4.3
EPSS
0.4%
CVE-2020-13286 MEDIUM This Month

For GitLab before 13.0.12, 13.1.6, 13.2.3 user controlled git configuration settings can be modified to result in Server Side Request Forgery. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Gitlab SSRF
NVD
CVSS 3.1
4.3
EPSS
0.7%
CVE-2020-7303 MEDIUM This Month

Cross Site scripting vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated remote user to trigger scripts to run in a user's browser via adding a new. Rated medium severity (CVSS 4.1), this vulnerability is low attack complexity. No vendor patch available.

XSS Data Loss Prevention
NVD
CVSS 3.1
4.1
EPSS
0.4%
CVE-2020-13282 LOW Monitor

For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Gitlab Information Disclosure
NVD
CVSS 3.1
3.5
EPSS
0.7%
Prev Page 3 of 3

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy