Skip to main content
CVE-2020-25015 MEDIUM POC This Month

A specific router allows changing the Wi-Fi password remotely. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Platinum 4410 Firmware
NVD Exploit-DB
CVSS 3.1
6.5
EPSS
3.1%
CVE-2020-24890 MEDIUM POC This Month

libraw 20.0 has a null pointer dereference vulnerability in parse_tiff_ifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Null Pointer Dereference Denial Of Service Libraw
NVD GitHub
CVSS 3.1
5.5
EPSS
1.6%
CVE-2020-3980 MEDIUM This Month

VMware Fusion (11.x) contains a privilege escalation vulnerability due to the way it allows configuring the system wide path. Rated medium severity (CVSS 6.7). No vendor patch available.

Privilege Escalation VMware Fusion
NVD
CVSS 3.1
6.7
EPSS
0.3%
CVE-2020-3990 MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an information disclosure vulnerability due to an integer overflow issue in Cortado ThinPrint component. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft Information Disclosure Horizon Client +2
NVD
CVSS 3.1
6.5
EPSS
0.3%
CVE-2020-2278 MEDIUM This Month

Jenkins Storable Configs Plugin 1.0 and earlier does not restrict the user-specified file name, allowing attackers with Job/Configure permission to replace any other '.xml' file on the Jenkins. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Path Traversal Storable Configs
NVD
CVSS 3.1
6.5
EPSS
1.4%
CVE-2020-2277 MEDIUM This Month

Jenkins Storable Configs Plugin 1.0 and earlier allows users with Job/Read permission to read arbitrary files on the Jenkins controller. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Path Traversal Storable Configs
NVD
CVSS 3.1
6.5
EPSS
1.7%
CVE-2020-2275 MEDIUM This Month

Jenkins Copy data to workspace Plugin 1.0 and earlier does not limit which directories can be copied from the Jenkins controller to job workspaces, allowing attackers with Job/Configure permission to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Path Traversal Copy Data To Workspace
NVD
CVSS 3.1
6.5
EPSS
1.7%
CVE-2020-2254 MEDIUM PATCH This Month

Jenkins Blue Ocean Plugin 1.23.2 and earlier provides an undocumented feature flag that, when enabled, allows an attacker with Job/Configure or Job/Create permission to read arbitrary files on the. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Path Traversal Blue Ocean
NVD
CVSS 3.1
6.5
EPSS
2.1%
CVE-2020-13928 MEDIUM PATCH This Month

Apache Atlas before 2.1.0 contain a XSS vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Apache Atlas
NVD
CVSS 3.1
6.1
EPSS
2.6%
CVE-2020-10748 MEDIUM PATCH This Month

A flaw was found in Keycloak's data filter, in version 10.0.1, where it allowed the processing of data URLs in some circumstances. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Keycloak Single Sign On
NVD
CVSS 3.1
6.1
EPSS
0.9%
CVE-2020-3988 MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (JPEG2000 parser). Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft Information Disclosure Horizon Client +2
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2020-3987 MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMR STRETCHDIBITS parser). Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft Information Disclosure Horizon Client +2
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2020-3986 MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMF Parser). Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft Information Disclosure Horizon Client +2
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2020-7297 MEDIUM This Month

Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to access protected dashboard data via improper access control in the user. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Authentication Bypass Web Gateway
NVD
CVSS 3.1
5.7
EPSS
0.4%
CVE-2020-7529 MEDIUM This Month

A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Transversal') vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows an attacker to place. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Path Traversal Scadapack 7X Remote Connect
NVD
CVSS 3.1
5.5
EPSS
0.9%
CVE-2020-2274 MEDIUM This Month

Jenkins ElasTest Plugin 1.2.1 and earlier stores its server password unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Jenkins Information Disclosure Elastest
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2020-14392 MEDIUM This Month

An untrusted pointer dereference flaw was found in Perl-DBI < 1.643. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Database Interface Ubuntu Linux Leap Fedora +1
NVD
CVSS 3.1
5.5
EPSS
0.6%
CVE-2020-10781 MEDIUM PATCH This Month

A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with a local account and the ability to read the /sys/class/zram-control/hot_add file can create ZRAM. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. This Incorrect Permission Assignment vulnerability could allow attackers to access resources due to misconfigured permissions.

Linux Information Disclosure Linux Kernel Debian Linux
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2020-10768 MEDIUM PATCH This Month

A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation after it has been disabled. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Linux Information Disclosure Linux Kernel
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2020-20406 MEDIUM This Month

A stored XSS vulnerability exists in the Custom Link Attributes control Affect function in Elementor Page Builder 2.9.2 and earlier versions. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Elementor Page Builder
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-2271 MEDIUM This Month

Jenkins Locked Files Report Plugin 1.6 and earlier does not escape locked files' names in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Locked Files Report
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-2270 MEDIUM This Month

Jenkins ClearCase Release Plugin 0.3 and earlier does not escape the composite baseline in badge tooltip, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Clearcase Release
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-2269 MEDIUM This Month

Jenkins chosen-views-tabbar Plugin 1.2 and earlier does not escape view names in the dropdown to select views, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Chosen Views Tabbar
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-2266 MEDIUM This Month

Jenkins Description Column Plugin 1.3 and earlier does not escape the job description in the column tooltip, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Description Column
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-2265 MEDIUM This Month

Jenkins Coverage/Complexity Scatter Plot Plugin 1.1.1 and earlier does not escape the method information in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Coverage Complexity Scatter Plot
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-2264 MEDIUM This Month

Jenkins Custom Job Icon Plugin 0.2 and earlier does not escape the job descriptions in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Custom Job Icon
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-2263 MEDIUM This Month

Jenkins Radiator View Plugin 1.29 and earlier does not escape the full name of the jobs in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Radiator View
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-2262 MEDIUM This Month

Jenkins Android Lint Plugin 2.6 and earlier does not escape the annotation message in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Google Jenkins Android Lint
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-2259 MEDIUM PATCH This Month

Jenkins computer-queue-plugin Plugin 1.5 and earlier does not escape the agent name in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Computer Queue
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-2257 MEDIUM PATCH This Month

Jenkins Validating String Parameter Plugin 2.4 and earlier does not escape various user-controlled fields, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Validating String Parameter
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-2256 MEDIUM PATCH This Month

Jenkins Pipeline Maven Integration Plugin 3.9.2 and earlier does not escape the upstream job's display name shown as part of a build cause, resulting in a stored cross-site scripting (XSS). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Pipeline Maven Integration
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2020-4708 MEDIUM PATCH This Month

IBM Security Trusteer Pinpoint Detect 11.6.5 could disclose some information due to using a wildcard in the Access-Control-Allow-Origin header. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

IBM Information Disclosure Security Trusteer Pinpoint Detect
NVD
CVSS 3.1
5.3
EPSS
1.0%
CVE-2020-1710 MEDIUM This Month

The issue appears to be that JBoss EAP 6.4.21 does not parse the field-name in accordance to RFC7230[1] as it returns a 200 instead of a 400. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Jboss Data Grid Jboss Enterprise Application Platform Openshift Application Runtimes Single Sign On
NVD
CVSS 3.1
5.3
EPSS
1.2%
CVE-2020-1694 MEDIUM PATCH This Month

A flaw was found in all versions of Keycloak before 10.0.0, where the NodeJS adapter did not support the verify-token-audience. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Keycloak
NVD
CVSS 3.1
4.9
EPSS
1.6%
CVE-2020-2253 MEDIUM PATCH This Month

Jenkins Email Extension Plugin 2.75 and earlier does not perform hostname validation when connecting to the configured SMTP server. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Jenkins Information Disclosure Email Extension
NVD
CVSS 3.1
4.8
EPSS
0.7%
CVE-2020-2252 MEDIUM PATCH This Month

Jenkins Mailer Plugin 1.32 and earlier does not perform hostname validation when connecting to the configured SMTP server. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Jenkins Information Disclosure Mailer
NVD
CVSS 3.1
4.8
EPSS
1.0%
CVE-2020-14348 MEDIUM This Month

It was found in AMQ Online before 1.5.2 that injecting an invalid field to a user's AddressSpace configuration of the user namespace puts AMQ Online in an inconsistent state, where the AMQ Online. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection Amq Online
NVD
CVSS 3.1
4.3
EPSS
0.8%
CVE-2020-10715 MEDIUM PATCH This Month

A content spoofing vulnerability was found in the openshift/console 3.11 and 4.x. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Code Injection Openshift
NVD GitHub
CVSS 3.1
4.3
EPSS
0.9%
CVE-2020-2273 MEDIUM This Month

A cross-site request forgery (CSRF) vulnerability in Jenkins ElasTest Plugin 1.2.1 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Jenkins Elastest
NVD
CVSS 3.1
4.3
EPSS
0.7%
CVE-2020-2272 MEDIUM This Month

A missing permission check in Jenkins ElasTest Plugin 1.2.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Authentication Bypass Elastest
NVD
CVSS 3.1
4.3
EPSS
0.7%
CVE-2020-2267 MEDIUM This Month

A missing permission check in Jenkins MongoDB Plugin 1.3 and earlier allows attackers with Overall/Read permission to gain access to some metadata of any arbitrary files on the Jenkins controller. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Authentication Bypass MongoDB
NVD
CVSS 3.1
4.3
EPSS
0.7%
CVE-2020-2260 MEDIUM PATCH This Month

A missing permission check in Jenkins Perfecto Plugin 1.17 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP URL using attacker-specified credentials. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Authentication Bypass Perfecto
NVD
CVSS 3.1
4.3
EPSS
0.7%
CVE-2020-2258 MEDIUM PATCH This Month

Jenkins Health Advisor by CloudBees Plugin 3.2.0 and earlier does not correctly perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to view that HTTP. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Authentication Bypass Health Advisor By Cloudbees
NVD
CVSS 3.1
4.3
EPSS
0.7%
CVE-2020-2255 MEDIUM PATCH This Month

A missing permission check in Jenkins Blue Ocean Plugin 1.23.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Authentication Bypass Blue Ocean
NVD
CVSS 3.1
4.3
EPSS
0.8%
CVE-2020-7268 MEDIUM This Month

Path Traversal vulnerability in McAfee McAfee Email Gateway (MEG) prior to 7.6.406 allows remote attackers to traverse the file system to access files or directories that are outside of the. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Email Gateway
NVD
CVSS 3.1
4.3
EPSS
1.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy