CVE-2026-20797

A stack based buffer overflow exists in an API route of XWEB Pro version 1.12.1 and prior, enabling unauthenticated attackers to cause stack corruption and a termination of the program...

CVE-2026-20797

creationtimestamp| type| source ---|---|--- 2026-02-26 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-10...

CVE-2025-20797

In battery, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315812; Issue ID: MSV-5534...

Linux Distros Unpatched Vulnerability : CVE-2019-20797

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in e6y prboom-plus 2.5.1.5. There is a buffer overflow in client and server code responsible for handling received UDP packets, as...

Linux Distros Unpatched Vulnerability : CVE-2018-20797

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in PoDoFo 0.9.6. There is an attempted excessive memory allocation in PoDoFo::podofocalloc in base/PdfMemoryManagement.cpp when called...

CVE-2020-20797

FlameCMS 3.3.5 contains a time-based blind SQL injection vulnerability in /account/register.php...

SUSE-SU-2024:2137-1 Security update for podofo

This update for podofo fixes the following issues: - CVE-2019-9199: Fixed a NULL pointer dereference in podofoimpose bsc1127855 - CVE-2018-20797: Fixed an excessive memory allocation in PoDoFo:podofocalloc bsc1127514 - CVE-2019-10723: Fixed a memory leak in PdfPagesTreeCache bsc1131544...

Adobe Animate Multiple Vulnerabilities (APSB24-26) - Windows

Adobe Animate is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:animate"; ifdescription...

CVE-2024-20797

Animate versions 23.0.4, 24.0.1 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

CVE-2023-20797

CVE-2023-20797 describes an out-of-bounds write in MediaTek camera middleware caused by a missing bounds check, leading to local escalation of privileges with System execution privileges required and no user interaction needed. The entry cites a patch/issue identifier ALPS07629582 as the mitigati...

SUSE CVE-2018-20797

An issue was discovered in PoDoFo 0.9.6. There is an attempted excessive memory allocation in PoDoFo::podofocalloc in base/PdfMemoryManagement.cpp when called from PoDoFo::PdfPredictorDecoder::PdfPredictorDecoder in base/PdfFiltersPrivate.cpp...

CVE-2022-20797 Cisco Secure Network Analytics Remote Code Execution Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Network Analytics, formerly Cisco Stealthwatch Enterprise, could allow an authenticated, remote attacker to execute arbitrary commands as an administrator on the underlying operating system. This vulnerability is due to...

CVE-2021-20797

Cross-site script inclusion vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to obtain the information stored in the product. This issue occurs only when using Mozilla Firefox...

CVE-2021-20797

CVE-2021-20797 is a cross-site script inclusion vulnerability in the Cybozu Remote Service management UI (CWE-829) affecting Cybozu Remote Service versions around 3.1.8 (and 3.1.9 per related documentation). The issue allows a remote authenticated attacker to obtain information stored in the prod...

CVE-2020-20797

creationtimestamp| type| source ---|---|--- 2021-10-01 02:13:48+00:00| seen| https://t.me/cibsecurity/29769...

CVE-2020-20797

FlameCMS 3.3.5 contains a time-based blind SQL injection vulnerability in /account/register.php...

CVE-2020-20797

FlameCMS 3.3.5 contains a time-based blind SQL injection in /account/register.php. Root cause: insufficient input validation/escaping allows parameterized SQL execution. Affects multiple CIA with high impact per CVSSv3.1 (CRITICAL, 9.8) and CVSSv2 (HIGH, 7.5). Exploitation details are not provide...

openSUSE Security Update : prboom-plus (openSUSE-2020-807)

This update for prboom-plus fixes the following issues : - CVE-2019-20797: Fixed a buffer overflow in client and server code responsible for handling received UDP packets boo1171974 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUS...

openSUSE: Security Advisory for prboom-plus (openSUSE-SU-2020:0807-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for prboom-plus (FEDORA-2020-3f9a846b40)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...