Lucene search
K

35 matches found

OSV
OSV
added 2026/01/13 6:16 p.m.0 views

CVE-2026-20812

Improper input validation in Windows LDAP - Lightweight Directory Access Protocol allows an authorized attacker to perform tampering over a network...

6.5CVSS5.8AI score0.01116EPSS
Exploits0References1
Circl
Circl
added 2026/01/13 6:1 p.m.4 views

CVE-2026-20812

creationtimestamp| type| source ---|---|--- 2026-01-13 18:01:16+00:00| seen| https://www.thezdi.com/blog/2026/1/13/the-january-2026-security-update-review 2026-01-13 18:16:30+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0007 2026-04-10 10:53:42+00:00| seen|...

6.5CVSS5.7AI score0.01116EPSS
Exploits0References2
CVE
CVE
added 2026/01/13 5:56 p.m.29 views

CVE-2026-20812

CVE-2026-20812 is an LDAP tampering vulnerability in Windows LDAP (the Lightweight Directory Access Protocol) caused by improper input validation. The issue is exploitable by an authorized attacker over the network and primarily impacts data integrity (CVE CVSS indicates network access, low privi...

6.5CVSS6.5AI score0.01116EPSS
Exploits0References1Affected Software12
RedhatCVE
RedhatCVE
added 2025/05/23 1:45 a.m.8 views

CVE-2023-20812

In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944987; Issue ID: ALPS07944987...

4.4CVSS6.3AI score0.00086EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:32 a.m.7 views

CVE-2018-20812

An information exposure issue where IPv6 DNS traffic would be sent outside of the VPN tunnel when Traffic Enforcement was enabled exists in Pulse Secure Pulse Secure Desktop 9.0R1 and below. This is applicable only to dual-stack IPv4/IPv6 endpoints...

7.5CVSS6.5AI score0.01111EPSS
Exploits0References1
Circl
Circl
added 2024/02/06 4:21 a.m.3 views

CVE-2024-20812

creationtimestamp| type| source ---|---|--- 2024-02-06 04:21:40+00:00| seen| https://t.me/ctinow/179722 2024-02-29 13:56:59+00:00| seen| https://t.me/ctinow/196644...

8.4CVSS7.5AI score0.00188EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/06 2:23 a.m.6 views

CVE-2024-20812

Out-of-bounds Write in padmdvldhtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code...

8.4CVSS8.1AI score0.00188EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/06 2:23 a.m.24 views

CVE-2024-20812

Out-of-bounds Write in padmdvldhtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code...

8.4CVSS8.6AI score0.00188EPSS
Exploits0References1
CVE
CVE
added 2024/02/06 2:23 a.m.51 views

CVE-2024-20812

CVE-2024-20812 affects Samsung Mobile devices via an out-of-bounds write in padmd_vld_htbl within libpadm.so. The flaw (padmd_vld_htbl in libpadm.so) enables a local attacker to execute arbitrary code. Root cause described as out-of-bounds write. Impact is local code execution with high potential...

8.4CVSS7.7AI score0.00188EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/08/07 4:15 a.m.22 views

CVE-2023-20812

In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944987; Issue ID: ALPS07944987...

4.4CVSS4.4AI score0.00086EPSS
Exploits0References1
CVE
CVE
added 2023/08/07 3:22 a.m.56 views

CVE-2023-20812

CVE-2023-20812 affects the WLAN driver via an out-of-bounds write caused by improper input validation. Impact described as local information disclosure with potential System privileges required; no user interaction needed for exploitation. Patch ALPS07944987 (Issue ID ALPS07944987) referenced in ...

4.4CVSS4.4AI score0.00086EPSS
Exploits0References1Affected Software2
SUSE CVE
SUSE CVE
added 2023/02/15 4:5 a.m.2 views

SUSE CVE-2019-20812

An issue was discovered in the Linux kernel before 5.4.7. The prbcalcretireblktmo function in net/packet/afpacket.c can result in a denial of service CPU consumption and soft lockup in a certain failure case involving TPACKETV3, aka CID-b43d1f9f7067...

5.5CVSS6.5AI score0.0044EPSS
Exploits0References24
Circl
Circl
added 2022/07/07 12:14 a.m.5 views

CVE-2022-20812

creationtimestamp| type| source ---|---|--- 2022-07-07 00:14:41+00:00| seen| https://t.me/cibsecurity/45710 2022-07-11 12:01:34+00:00| seen| https://t.me/truesecator/3154 2023-04-07 12:30:05+00:00| seen| https://t.me/truesecator/4264 2023-04-10 20:57:52+00:00| published-proof-of-concept|...

9CVSS6.7AI score0.01795EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2022/07/06 9:51 p.m.92 views

Cisco and Fortinet Release Security Patches for Multiple Products

Cisco on Wednesday rolled out patches for 10 security flaws spanning multiple products, one of which is rated Critical in severity and could be weaponized to conduct absolute path traversal attacks. The issues, tracked as CVE-2022-20812 and CVE-2022-20813, affect Cisco Expressway Series and Cisco...

1.8AI score0.01795EPSS
Exploits0
Cvelist
Cvelist
added 2022/07/06 8:30 p.m.25 views

CVE-2022-20812 Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities

Multiple vulnerabilities in the API and in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow a remote attacker to overwrite arbitrary files or conduct null byte poisoning attacks on an affected device. Note: Cisco...

9CVSS9.2AI score0.01795EPSS
Exploits0References2
CVE
CVE
added 2022/07/06 8:30 p.m.1107 views

CVE-2022-20812

CVE-2022-20812 affects Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS). It enables an authenticated remote attacker with Administrator read-write privileges to trigger path traversal and overwrite arbitrary files via the cluster database API due to insufficient inp...

9CVSS7.4AI score0.01795EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2021/08/26 1:20 a.m.56 views

CVE-2021-20812

CVE-2021-20812 is a cross-site scripting vulnerability in the Setting screen of Server Sync for Movable Type, affecting Movable Type 7 (r.4903 and earlier), Movable Type 6 (6.8.0 and earlier), Movable Type Advanced 7 (r.4903 and earlier), Movable Type Premium 1.44 and earlier, and Movable Type Pr...

6.1CVSS6AI score0.009EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/08/25 12:0 a.m.71 views

JVN#97545738: Multiple cross-site scripting vulnerabilities in Movable Type

Movable Type provided by Six Apart Ltd. contains multiple cross-site scripting vulnerabilities listed below. Cross-site scripting vulnerability in Search screen CWE-79 - CVE-2021-20808 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS...

6.1CVSS6.5AI score0.00904EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2020:2027-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.04505EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.34 views

SUSE: Security Advisory (SUSE-SU-2020:2105-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.04505EPSS
Exploits5References2
Rows per page
Query Builder