CVE-2024-20256

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Web Appliance could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface. This vulnerability is due to insufficient...

CVE-2023-20256

Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass a configured access control list ACL and allow traffic that should be denied to flo...

CVE-2022-20256

In the Audio HAL, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-222572821...

CVE-2025-20256

A vulnerability in the web-based management interface of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating...

CVE-2025-20256

creationtimestamp| type| source ---|---|--- 2025-05-21 16:41:46+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17148...

CVE-2025-20256

CVE-2025-20256 affects Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager. The issue is in the web-based management interface, caused by insufficient input validation in specific fields. An authenticated administrator can send crafted input to an affected de...

CVE-2024-20256

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager and Secure Web Appliance could allow an authenticated, remote attacker to conduct an XSS attack against a user of the interface. This vulnerability is due to insufficient...

Unitronics Vision Legacy series (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION : Exploitable remotely/low attack complexity Vendor : Unitronics Equipment : Vision Legacy series Vulnerability : Storing Passwords in a Recoverable Format 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker...

CVE-2023-20256

CVE-2023-20256 relates to multiple vulnerabilities in the per-user-override feature of Cisco ASA and FTD software that could let an unauthenticated, remote attacker bypass ACLs and reach normally protected resources. The root cause is a logic error in how per-user-override rules are constructed/a...

CVE-2023-26391 ZDI-CAN-20256: Adobe Substance 3D Stager USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

Adobe Substance 3D Stager version 2.0.1 and earlier is affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the curre...

CVE-2022-20256

In the Audio HAL, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-222572821...

CVE-2022-20256

The CVE-2022-20256 issue affects Android 13’s Audio HAL, where a race condition can cause an out-of-bounds write. This could enable local escalation of privileges to System level without user interaction. The description is consistent across Android/Open Source and Red Hat/NVD entries, and it is ...

CVE-2022-20256

In the Audio HAL, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-222572821...

CVE-2021-20256

creationtimestamp| type| source ---|---|--- 2021-02-24 02:35:27+00:00| seen| https://t.me/cibsecurity/24047...

CVE-2021-20256

The CVE-2021-20256 issue affects Red Hat Satellite (6.10 on Red Hat Enterprise Linux 7) where the BMC controller API could disclose the password to an authenticated local attacker with view_hosts permission. Described in RHSA-2021:4702 and linked advisories, the vulnerability impacts confidential...

CVE-2019-20256

...

CVE-2019-20256

CVE-2019-20256 is rejected/not used and does not represent an active vulnerability entry.