Skip to main content
CVE-2020-28922 HIGH POC This Week

An issue was discovered in Devid Espenschied PC Analyser through 4.10. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

RCE Pc Analyser
NVD GitHub
CVSS 3.1
8.8
EPSS
0.7%
CVE-2020-28921 HIGH POC This Week

An issue was discovered in Devid Espenschied PC Analyser through 4.10. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

RCE Pc Analyser
NVD GitHub
CVSS 3.1
8.8
EPSS
0.6%
CVE-2020-25708 HIGH POC This Week

A divide by zero issue was found to occur in libvncserver-0.9.12. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Libvncserver Enterprise Linux Debian Linux
NVD
CVSS 3.1
7.5
EPSS
1.6%
CVE-2017-15685 HIGH PATCH This Week

Crafter CMS Crafter Studio 3.0.1 is affected by: XML External Entity (XXE). Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XXE Crafter Cms
NVD VulDB
CVSS 3.1
8.6
EPSS
1.7%
CVE-2017-15683 HIGH PATCH This Week

In Crafter CMS Crafter Studio 3.0.1 an unauthenticated attacker is able to create a site with specially crafted XML that allows the retrieval of OS files out-of-band. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Crafter Cms
NVD VulDB
CVSS 3.1
8.6
EPSS
1.5%
CVE-2020-7780 HIGH PATCH This Week

This affects the package com.softwaremill.akka-http-session:core_2.13 before 0.5.11; the package com.softwaremill.akka-http-session:core_2.12 before 0.5.11; the package. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Request Forgery (CSRF) vulnerability could allow attackers to trick authenticated users into performing unintended actions.

CSRF Akka Http Session
NVD GitHub
CVSS 3.1
8.8
EPSS
0.6%
CVE-2017-15684 HIGH PATCH This Week

Crafter CMS Crafter Studio 3.0.1 has a directory traversal vulnerability which allows unauthenticated attackers to view files from the operating system. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Crafter Cms
NVD VulDB
CVSS 3.1
7.5
EPSS
2.0%
CVE-2020-29367 HIGH PATCH This Week

blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Memory Corruption C Blosc2
NVD GitHub
CVSS 3.1
7.8
EPSS
1.2%
CVE-2020-10772 HIGH This Week

An incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Hat Enterprise Linux 7, as part of erratum RHSA-2020:2414. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Red Hat Unbound
NVD
CVSS 3.1
7.5
EPSS
1.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy