35 matches found
CVE-2026-20812
Improper input validation in Windows LDAP - Lightweight Directory Access Protocol allows an authorized attacker to perform tampering over a network...
CVE-2026-20812
creationtimestamp| type| source ---|---|--- 2026-01-13 18:01:16+00:00| seen| https://www.thezdi.com/blog/2026/1/13/the-january-2026-security-update-review 2026-01-13 18:16:30+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0007 2026-04-10 10:53:42+00:00| seen|...
CVE-2026-20812
CVE-2026-20812 is an LDAP tampering vulnerability in Windows LDAP (the Lightweight Directory Access Protocol) caused by improper input validation. The issue is exploitable by an authorized attacker over the network and primarily impacts data integrity (CVE CVSS indicates network access, low privi...
CVE-2023-20812
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944987; Issue ID: ALPS07944987...
CVE-2018-20812
An information exposure issue where IPv6 DNS traffic would be sent outside of the VPN tunnel when Traffic Enforcement was enabled exists in Pulse Secure Pulse Secure Desktop 9.0R1 and below. This is applicable only to dual-stack IPv4/IPv6 endpoints...
CVE-2024-20812
creationtimestamp| type| source ---|---|--- 2024-02-06 04:21:40+00:00| seen| https://t.me/ctinow/179722 2024-02-29 13:56:59+00:00| seen| https://t.me/ctinow/196644...
CVE-2024-20812
Out-of-bounds Write in padmdvldhtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code...
CVE-2024-20812
Out-of-bounds Write in padmdvldhtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code...
CVE-2024-20812
CVE-2024-20812 affects Samsung Mobile devices via an out-of-bounds write in padmd_vld_htbl within libpadm.so. The flaw (padmd_vld_htbl in libpadm.so) enables a local attacker to execute arbitrary code. Root cause described as out-of-bounds write. Impact is local code execution with high potential...
CVE-2023-20812
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944987; Issue ID: ALPS07944987...
CVE-2023-20812
CVE-2023-20812 affects the WLAN driver via an out-of-bounds write caused by improper input validation. Impact described as local information disclosure with potential System privileges required; no user interaction needed for exploitation. Patch ALPS07944987 (Issue ID ALPS07944987) referenced in ...
SUSE CVE-2019-20812
An issue was discovered in the Linux kernel before 5.4.7. The prbcalcretireblktmo function in net/packet/afpacket.c can result in a denial of service CPU consumption and soft lockup in a certain failure case involving TPACKETV3, aka CID-b43d1f9f7067...
CVE-2022-20812
creationtimestamp| type| source ---|---|--- 2022-07-07 00:14:41+00:00| seen| https://t.me/cibsecurity/45710 2022-07-11 12:01:34+00:00| seen| https://t.me/truesecator/3154 2023-04-07 12:30:05+00:00| seen| https://t.me/truesecator/4264 2023-04-10 20:57:52+00:00| published-proof-of-concept|...
Cisco and Fortinet Release Security Patches for Multiple Products
Cisco on Wednesday rolled out patches for 10 security flaws spanning multiple products, one of which is rated Critical in severity and could be weaponized to conduct absolute path traversal attacks. The issues, tracked as CVE-2022-20812 and CVE-2022-20813, affect Cisco Expressway Series and Cisco...
CVE-2022-20812 Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities
Multiple vulnerabilities in the API and in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow a remote attacker to overwrite arbitrary files or conduct null byte poisoning attacks on an affected device. Note: Cisco...
CVE-2022-20812
CVE-2022-20812 affects Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS). It enables an authenticated remote attacker with Administrator read-write privileges to trigger path traversal and overwrite arbitrary files via the cluster database API due to insufficient inp...
CVE-2021-20812
CVE-2021-20812 is a cross-site scripting vulnerability in the Setting screen of Server Sync for Movable Type, affecting Movable Type 7 (r.4903 and earlier), Movable Type 6 (6.8.0 and earlier), Movable Type Advanced 7 (r.4903 and earlier), Movable Type Premium 1.44 and earlier, and Movable Type Pr...
JVN#97545738: Multiple cross-site scripting vulnerabilities in Movable Type
Movable Type provided by Six Apart Ltd. contains multiple cross-site scripting vulnerabilities listed below. Cross-site scripting vulnerability in Search screen CWE-79 - CVE-2021-20808 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS...
SUSE: Security Advisory (SUSE-SU-2020:2027-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:2105-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...