CVE-2025-20672

creationtimestamp| type| source ---|---|--- 2025-06-02 04:48:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqlxwz2kdf2k 2025-06-02 17:01:56+00:00| seen| Telegram/fX0om1lzt-J-U1vDcCreXz4a4OyDcfhKmun5TOssmgFS9U...

CVE-2025-20672

In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00412257; Issue ID: MSV-3292...

CVE-2025-20672

In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00412257; Issue ID: MSV-3292...

CVE-2025-20672

In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00412257; Issue ID: MSV-3292...

CVE-2025-20672

CVE-2025-20672 affects MediaTek Bluetooth driver components, with an out-of-bounds write caused by an incorrect bounds check. The vulnerability could enable local privilege escalation to a user context without user interaction, as indicated across multiple sources. The issue specifies that user p...

CVE-2021-20672

Reflected cross-site scripting vulnerability due to insufficient verification of URL query parameters in GROWI v4.2 Series versions from v4.2.0 to v4.2.7 allows remote attackers to inject an arbitrary script via unspecified vectors...

CVE-2020-20672

An arbitrary file upload vulnerability in /admin/upload/uploadfile of KiteCMS V1.1 allows attackers to getshell via a crafted PHP file...

BIT-DOTNET-SDK-2024-20672 .NET Denial of Service Vulnerability

.NET Denial of Service Vulnerability...

Amazon Linux 2023 : aspnetcore-runtime-6.0, aspnetcore-targeting-pack-6.0, dotnet (ALAS2023-2024-545)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-545 advisory. .NET Denial of Service Vulnerability CVE-2024-20672 .NET Denial of Service Vulnerability CVE-2024-21386 .NET Denial of Service Vulnerability CVE-2024-21404 Tenable has extracted the preceding...

Important: dotnet6.0

Issue Overview: .NET Denial of Service Vulnerability CVE-2024-20672 .NET Denial of Service Vulnerability CVE-2024-21386 .NET Denial of Service Vulnerability CVE-2024-21404 Affected Packages: dotnet6.0 Issue Correction: Run dnf update dotnet6.0 --releasever 2023.3.20240304 or dnf update --advisory...

Tenable Identity Exposure < 3.59.4 Multiple Vulnerabilities (TNS-2024-04)

The version of Tenable Identity Exposure formerly Tenable.ad installed on the remote host is prior to 3.59.4. It is, therefore, affected by multiple vulnerabilities in the bundled .NET core component as referenced in the TNS-2024-04 advisory. - .NET, .NET Framework, and Visual Studio Security...

.NET Core Multiple Vulnerabilities (KB5033733)

This host is missing an important security update according to Microsoft KB5033733. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2024-20672

creationtimestamp| type| source ---|---|--- 2024-01-09 19:26:50+00:00| seen| https://t.me/ctinow/165270 2024-01-09 19:47:38+00:00| seen| https://t.me/ctinow/165297 2024-01-10 16:16:55+00:00| seen| https://t.me/ctinow/165901 2025-04-30 01:12:36+00:00| seen|...

CVE-2024-20672

.NET Denial of Service Vulnerability...

CVE-2024-20672

Technical details about CVE-2024-20672 are not publicly provided in the connected documents; no explicit affected software versions, root cause, or fixes are disclosed here. Monitor for updates.

CVE-2024-20672 .NET Denial of Service Vulnerability

...

CVE-2022-20672 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

CVE-2022-20672

Cisco Common Services Platform Collector (CSPC) web-based management interface contains multiple cross-site scripting (XSS) vulnerabilities due to insufficient validation of user-supplied input. An unauthenticated, remote attacker could lure a user to click a crafted link, enabling execution of a...

CVE-2022-20672 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

CVE-2020-20672

creationtimestamp| type| source ---|---|--- 2021-09-14 02:15:07+00:00| seen| https://t.me/cibsecurity/28764...