CVE-2026-20718

Incorrect default permissions for some IntelR NPU Driver software installers before version 32.0.100.4511 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation ...

CVE-2025-20718

creationtimestamp| type| source ---|---|--- 2025-10-14 13:44:50+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115372817715516192...

CVE-2025-20718

In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00419945; Issue ID: MSV-3581...

Linux Distros Unpatched Vulnerability : CVE-2021-20718

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - modauthopenidc 2.4.0 to 2.4.7 allows a remote attacker to cause a denial-of-service DoS condition via unspecified vectors. CVE-2021-20718 Note that Nessus relie...

CVE-2020-20718

File Upload vulnerability in PluckCMS v.4.7.10 dev versions allows a remote attacker to execute arbitrary code via a crafted image file to the the savefile parameter...

CVE-2023-20718

creationtimestamp| type| source ---|---|--- 2025-01-24 17:05:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2950...

CVE-2024-20718

creationtimestamp| type| source ---|---|--- 2024-02-15 15:31:40+00:00| seen| https://t.me/ctinow/185614...

CVE-2024-20718

Adobe Commerce (Magento Open Source) versions 2.4.6-p3, 2.4.5-p5, 2.4.4-p6 and earlier are affected by a CSRF vulnerability that can bypass security features and cause the victim to perform unintended actions. The issue requires user interaction and arises from a CSRF flaw in the product’s reques...

CVE-2021-20718 affecting package mod_auth_openidc for versions less than 2.4.14.2-1

CVE-2021-20718 affecting package modauthopenidc for versions less than 2.4.14.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2020-20718

CVE-2020-20718 affects PluckCMS v4.7.10 development versions, where uploading a crafted image to the save_file() parameter permits remote code execution. Reported as a high-severity, network-exploitable flaw (CVSSv3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H; 9.8). Public details consistently describ...

CVE-2020-20718

File Upload vulnerability in PluckCMS v.4.7.10 dev versions allows a remote attacker to execute arbitrary code via a crafted image file to the the savefile parameter...

CVE-2023-20718

In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645181; Issue ID: ALPS07645181...

CVE-2023-20718

In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645181; Issue ID: ALPS07645181...

CVE-2023-20718

CVE-2023-20718 affects the vcu module in MediaTek chip families. The root cause is an out-of-bounds write caused by a missing bounds check, enabling local escalation of privilege with System execution privileges required and no user interaction needed. The entry lists patch ALPS07645181/ALPS07645...

CVE-2022-20718

CVE-2022-20718 concerns Cisco IOx Application Hosting Environment vulnerabilities affecting Cisco IOx on multiple platforms (IOS/IOS XE). Reported issues include parameter injection (incomplete sanitization of application package parameters) that can allow an authenticated remote attacker to exec...

Updated apache-mod_auth_openidc package fixes a security vulnerability

modauthopenidc 2.4.0 to 2.4.7 allows a remote attacker to cause a denial-of- service DoS condition via unspecified vectors CVE-2021-20718...

SUSE SLES12 Security Update : apache2-mod_auth_openidc (SUSE-SU-2021:1900-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2021:1900-1 advisory. - modauthopenidc 2.4.0 to 2.4.7 allows a remote attacker to cause a denial-of-service DoS condition via unspecified vectors. CVE-2021-20718...

SUSE-SU-2021:1900-1 Security update for apache2-mod_auth_openidc

This update for apache2-modauthopenidc fixes the following issues: - CVE-2021-20718: Fixed possible remote denial-of-service DoS via unspecified vectors bsc1186291...

CVE-2021-20718

modauthopenidc 2.4.0 to 2.4.7 allows a remote attacker to cause a denial-of-service DoS condition via unspecified vectors...

CVE-2021-20718

modauthopenidc 2.4.0 to 2.4.7 allows a remote attacker to cause a denial-of-service DoS condition via unspecified vectors...