26 matches found
CVE-2017-20275
creationtimestamp| type| source ---|---|--- 2026-06-19 17:54:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3monvyf2cgt24...
CVE-2017-20275
Joomla! Component PHP-Bridge 1.2.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id parameter. Attackers can send GET requests to index.php with option=comphpbridge&view=phpview parameters and...
openSUSE 16 Security Update : gimp (openSUSE-SU-2026:20275-1)
The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20275-1 advisory. Changes in gimp: - CVE-2026-2239: Fixed a heap buffer overflow in psd-util.c bsc1257959. Tenable has extracted the preceding description block directly...
CVE-2025-20275
A vulnerability in the file opening process of Cisco Unified Contact Center Express Unified CCX Editor could allow an unauthenticated attacker to execute arbitrary code on an affected device. This vulnerability is due to insecure deserialization of Java objects by the affected software. An attack...
CVE-2025-20275
A vulnerability in the file opening process of Cisco Unified Contact Center Express Unified CCX Editor could allow an unauthenticated attacker to execute arbitrary code on an affected device. This vulnerability is due to insecure deserialization of Java objects by the affected software. An attack...
CVE-2025-20275 Cisco Unified Contact Center Express Editor Remote Code Execution Vulnerability
A vulnerability in the file opening process of Cisco Unified Contact Center Express Unified CCX Editor could allow an unauthenticated attacker to execute arbitrary code on an affected device. This vulnerability is due to insecure deserialization of Java objects by the affected software. An attack...
CVE-2025-20275 Cisco Unified Contact Center Express Editor Remote Code Execution Vulnerability
A vulnerability in the file opening process of Cisco Unified Contact Center Express Unified CCX Editor could allow an unauthenticated attacker to execute arbitrary code on an affected device. This vulnerability is due to insecure deserialization of Java objects by the affected software. An attack...
CVE-2024-20275
A vulnerability in the cluster backup feature of Cisco Secure Firewall Management Center FMC Software, formerly Firepower Management Center Software, could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. This vulnerability is due to...
CVE-2022-20275
In DevicePolicyManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2024-20275
creationtimestamp| type| source ---|---|--- 2024-10-23 19:54:37+00:00| seen| https://t.me/cvedetector/8737...
CVE-2023-20275
CVE-2023-20275 affects Cisco ASA Software and Cisco Firepower Threat Defense (FTD) Software, specifically the AnyConnect SSL VPN feature. The root cause is improper validation of the inner source IP address after decryption, allowing an authenticated, remote attacker to send packets that appear t...
CVE-2023-20275
creationtimestamp| type| source ---|---|--- 2023-12-07 11:51:04+00:00| exploited| https://t.me/truesecator/5173 2023-12-24 16:51:49+00:00| seen| https://t.me/ctinow/159059...
CVE-2019-20275
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during the year 2019. Notes: none...
CVE-2022-20275
creationtimestamp| type| source ---|---|--- 2022-08-12 18:46:40+00:00| seen| https://t.me/cibsecurity/48074...
CVE-2022-20275
In DevicePolicyManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2022-20275
CVE-2022-20275 affects Android 13 devices due to a side-channel disclosure in the DevicePolicyManager that can reveal whether an app is installed without query permissions. The root cause is a information-disclosure path that enables local access to installation state without user interaction or ...
USN-4886-1: Privoxy vulnerabilities
It was discovered that Privoxy incorrectly handled CGI requests. An attacker could possibly use this issue to cause a denial of service or obtain sensitive information. CVE-2020-35502, CVE-2021-20209, CVE-2021-20210, CVE-2021-20213, CVE-2021-20215, CVE-2021-20216, CVE-2021-20217, CVE-2021-20272,...
openSUSE Security Update : privoxy (openSUSE-2021-443)
This update for privoxy fixes the following issues : Update to version 3.0.32 : - Security/Reliability boo1183129 - ssplit: Remove an assertion that could be triggered with a crafted CGI request. Commit 2256d7b4d67. OVE-20210203-0001. CVE-2021-20272 Reported by: Joshua Rogers Opera - cgisendbanne...
[SECURITY] [DLA 2587-1] privoxy security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2587-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA March 09, 2021 https://wiki.debian.org/LTS -...
CVE-2021-20275
creationtimestamp| type| source ---|---|--- 2021-03-09 16:51:39+00:00| seen| https://t.me/cibsecurity/24591...