30 matches found
Splunk Enterprise 9.2.0 < 9.2.11, 9.3.0 < 9.3.9, 9.4.0 < 9.4.7, 10.0.0 < 10.0.2 (SVD-2026-0207)
The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2026-0207 advisory. - In Splunk Enterprise versions below 10.2.0, 10.0.2, 9.4.7, 9.3.9, and 9.2.11, a user of a Splunk Search Head Cluster SHC...
CVE-2019-20142
An issue was discovered in GitLab Community Edition CE and Enterprise Edition EE 12.3 through 12.6.1. It allows Denial of Service...
CVE-2020-20142
Cross Site Scripting XSS vulnerability in the "To Remote CSV" component under "Open" Menu in Flexmonster Pivot Table & Charts 2.7.17...
CVE-2017-20142
A vulnerability classified as critical was found in Itech Movie Portal Script 7.36. This vulnerability affects unknown code of the file /artist-display.php. The manipulation of the argument act leads to sql injection Union. The attack can be initiated remotely. The exploit has been disclosed to t...
CVE-2025-20142
A vulnerability in the IPv4 access control list ACL feature and quality of service QoS policy feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers, ASR 9902 Compact High-Performance Routers, and ASR 9903 Compact High-Performance Routers could allow an...
CVE-2025-20142
creationtimestamp| type| source ---|---|--- 2025-03-12 17:48:32+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114150716950392585 2025-03-12 20:23:19+00:00| seen| https://t.me/cvedetector/20165 2025-03-15 00:18:54+00:00| seen|...
CVE-2025-20142
Cisco IOS XR Software for ASR 9000 Series Routers, including ASR 9902/9903, contains a vulnerability in the IPv4 ACL and QoS policy handling that affects line cards. Malformed IPv4 packets processed when an IPv4 ACL or QoS policy is applied can cause network processor errors, triggering a line-ca...
CVE-2025-20142 Cisco IOS XR Software for ASR 9000 Series Routers L2VPN Denial of Service Vulnerability
A vulnerability in the IPv4 access control list ACL feature and quality of service QoS policy feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers, ASR 9902 Compact High-Performance Routers, and ASR 9903 Compact High-Performance Routers could allow an...
CVE-2024-20142
In V5 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291406;...
CVE-2024-20142
creationtimestamp| type| source ---|---|--- 2025-02-03 04:16:01+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhaonanwo72c 2025-02-03 07:46:55+00:00| seen| https://t.me/cvedetector/17052 2025-02-03 08:03:44+00:00| seen|...
CVE-2024-20142
In V5 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291406;...
CVE-2024-20142
CVE-2024-20142 concerns MediaTek MT8893 V5 DA where a missing bounds check in the V5 DA module can cause an out-of-bounds write. The resulting impact is local escalation of privilege if an attacker gains physical access to the device; exploitation requires user interaction. The initial documents ...
CVE-2024-20142
In V5 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291406;...
CVE-2018-20142
CVE-2018-20142 (reserved CVE) | Affected component: the sharrre library. Vulnerability: Cross-site scripting (XSS) vulnerability in which a remote attacker can inject arbitrary JavaScript into a victim’s browser via the location hash. Impact (as described): attacker could steal session tokens or ...
CVE-2023-20142
Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers are affected by stored XSS in the web-based management interface due to insufficient input validation. An unauthenticated, remote attacker can send crafted HTTP requests and persuade a user to visit pages containing malici...
CVE-2017-20142
A vulnerability classified as critical was found in Itech Movie Portal Script 7.36. This vulnerability affects unknown code of the file /artist-display.php. The manipulation of the argument act leads to sql injection Union. The attack can be initiated remotely. The exploit has been disclosed to t...
CVE-2017-20142 Itech Movie Portal Script artist-display.php Union sql injection
A vulnerability classified as critical was found in Itech Movie Portal Script 7.36. This vulnerability affects unknown code of the file /artist-display.php. The manipulation of the argument act leads to sql injection Union. The attack can be initiated remotely. The exploit has been disclosed to t...
CVE-2017-20142
CVE-2017-20142 affects Itech Movie Portal Script 7.36, with a vulnerability in /artist-display.php where manipulation of the act parameter enables a SQL injection (Union). This is a remote, unauthenticated issue reported as critical; multiple sources state the exploit has been disclosed publicly....
CVE-2022-20142
In createFromParcel of GeofenceHardwareRequestParcelable.java, there is a possible arbitrary code execution due to parcel mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2022-20142
CVE-2022-20142 affects Android (10, 11, 12, 12L) where the issue resides in GeofenceHardwareRequestParcelable.java: createFromParcel, causing an arbitrary code execution due to a parcel mismatch and enabling local privilege escalation with no extra privileges or user interaction. Connected source...