Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

NCSC
NCSCadded 2024/12/11 8:6 a.m.1 views

Vulnerability fixed in Adobe Framemaker

Adobe has fixed a vulnerability in Adobe Framemaker Specifically for versions 2020.7, 2022.5 and earlier. The vulnerability is in the way Adobe Framemaker handles files. A malicious party can exploit this vulnerability by creating a malicious file and allowing it to be opened, which can lead to...

7.8CVSS7.4AI score0.00234EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/12/10 12:0 a.m.1 views

PT-2024-10271 · Adobe · Framemaker

Name of the Vulnerable Software and Affected Versions: Adobe Framemaker versions 2020.7, 2022.5 and earlier Description: The issue is a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. To exploit this problem, user...

7.8CVSS7.8AI score0.00234EPSS
Exploits0References6
Prion
Prionadded 2020/10/02 8:15 p.m.18 views

Design/Logic Flaw

An issue was discovered in Damstra Smart Asset 2020.7. It is possible to enumerate valid usernames on the login page. The application sends a different server response when the username is invalid than when the username is valid "Unable to find an APIDomain" versus "Wrong email or password"...

5CVSS5.3AI score0.00472EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2020/10/02 8:5 p.m.48 views

CVE-2020-26527

The CVE-2020-26527 entry concerns Damstra Smart Asset 2020.7, specifically the API/api/Version endpoint. The underlying issue is a Cross-Origin Resource Sharing (CORS) misconfiguration where arbitrary origins are trusted by accepting any Origin header and replying with 200 OK and Access-Control-A...

9.8CVSS9.4AI score0.00445EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2020/07/16 3:15 p.m.2 views

CVE-2020-15027

ConnectWise Automate through 2020.x has insufficient validation on certain authentication paths, allowing authentication bypass via a series of attempts. This was patched in 2020.7 and in a hotfix for 2019.12...

9.8CVSS7.3AI score0.00383EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2020/07/16 3:15 p.m.2 views

CVE-2020-15027

ConnectWise Automate through 2020.x has insufficient validation on certain authentication paths, allowing authentication bypass via a series of attempts. This was patched in 2020.7 and in a hotfix for 2019.12...

9.8CVSS8.7AI score0.00383EPSS
Exploits0References3
Cvelist
Cvelistadded 2020/07/16 2:39 p.m.9 views

CVE-2020-15027

ConnectWise Automate through 2020.x has insufficient validation on certain authentication paths, allowing authentication bypass via a series of attempts. This was patched in 2020.7 and in a hotfix for 2019.12...

9.6AI score0.00383EPSS
Exploits0References1
OSV
OSVadded 2020/07/07 8:15 p.m.3 views

CVE-2020-15008

A SQLi exists in the probe code of all Connectwise Automate versions before 2020.7 or 2019.12. A SQL Injection in the probe implementation to save data to a custom table exists due to inadequate server side validation. As the code creates dynamic SQL for the insert statement and utilizes the user...

7.5CVSS6AI score0.00257EPSS
Exploits0References1
Prion
Prionadded 2020/07/07 8:15 p.m.9 views

Sql injection

A SQLi exists in the probe code of all Connectwise Automate versions before 2020.7 or 2019.12. A SQL Injection in the probe implementation to save data to a custom table exists due to inadequate server side validation. As the code creates dynamic SQL for the insert statement and utilizes the user...

6CVSS8.1AI score0.00257EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder