CVE-2016-20047

creationtimestamp| type| source ---|---|--- 2026-03-28 14:32:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mi4txkn6zt23...

CVE-2016-20047

EKG Gadu 1.9pre+r2855-3+b1 contains a local buffer overflow vulnerability in the username handling that allows local attackers to execute arbitrary code by supplying an oversized username string. Attackers can trigger the overflow in the strlcpy function by passing a crafted buffer exceeding 258...

CVE-2026-20047

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE and Cisco ISE Passive Identity Connector ISE-PIC could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability is due to...

CVE-2019-20047

An issue was discovered on Alcatel-Lucent OmniVista 4760 devices, and 8770 devices before 4.1.2. An incorrect web server configuration allows a remote unauthenticated attacker to retrieve the content of its own session files. Every session file contains the administrative LDAP credentials encoded...

CVE-2022-20047

In video decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05917489; Issue ID: ALPS05917489...

CVE-2025-20047

Improper locking in the IntelR Integrated Connectivity I/O interface CNVi for some IntelR Core™ Ultra Processors may allow an unauthenticated user to potentially enable escalation of privilege via physical access...

CVE-2025-20047

Improper locking in the IntelR Integrated Connectivity I/O interface CNVi for some IntelR Core™ Ultra Processors may allow an unauthenticated user to potentially enable escalation of privilege via physical access...

CVE-2019-20047

creationtimestamp| type| source ---|---|--- 2024-03-18 09:11:18+00:00| seen| https://t.me/ctinow/210284...

CVE-2023-20047

CVE-2023-20047 affects Cisco Webex Room Phone and Cisco Webex Share with an LLDP memory/resource allocation flaw. An unauthenticated, adjacent attacker can send crafted LLDP traffic to exhaust memory, crash the LLDP process, and potentially interrupt inbound/outbound calling if LLDP is the only p...

CVE-2017-20047

CVE-2017-20047 is rejected/not used per the Initial Description and does not represent an active vulnerability entry.

CVE-2017-20047

...

CVE-2022-20047

CVE-2022-20047 affects MediaTek video decoder with a missing bounds check leading to an out-of-bounds write and local privilege escalation without user interaction. The issue is documented with patch ALPS05917489 (Issue ID: ALPS05917489). Connected sources also corroborate the vulnerability as a ...

CVE-2021-20047

creationtimestamp| type| source ---|---|--- 2021-12-08 12:23:41+00:00| seen| https://t.me/cibsecurity/33565...

CVE-2021-20047

SonicWall Global VPN client version 4.10.6 32-bit and 64-bit and earlier have a DLL Search Order Hijacking vulnerability. Successful exploitation via a local attacker could result in remote code execution in the target system...

SonicWall Global VPN Client DLL Search Order Hijacking

SonicWall Global VPN client version 4.10.6 32-bit and 64-bit and earlier have a DLL Search Order Hijacking vulnerability. Successful exploitation via a local attacker could result in remote code execution in the target system.IMPORTANT: At the time of advisory, there is no evidence to suggest tha...

CVE-2019-20047

The CVE-2019-20047 issue affects Alcatel-Lucent OmniVista 4760 and OmniVista 8770 prior to version 4.1.2. A misconfigured web server allows a remote unauthenticated attacker to retrieve the contents of its own session files located under /sessions/sess_. Each session file contains administrative ...

Internet Explorer Daxctle.OCX KeyFrame Method Heap Buffer Overflow Vulnerability

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3...