Linux Distros Unpatched Vulnerability : CVE-2020-20813

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Control Channel in OpenVPN 2.4.7 and earlier allows remote attackers to cause a denial of service via crafted reset packet. CVE-2020-20813 Note that Nessus reli...

CVE-2024-20813

Out-of-bounds Write in padmdvldqtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code...

CVE-2024-20813

creationtimestamp| type| source ---|---|--- 2024-02-06 04:21:41+00:00| seen| https://t.me/ctinow/179723 2024-02-29 13:57:00+00:00| seen| https://t.me/ctinow/196645...

CVE-2024-20813

CVE-2024-20813 is an Out-of-bounds write in padmd_vld_qtbl, within the libpadm.so component. The vulnerability affects libpadm.so prior to the Samsung SMR Feb-2024 Release 1, enabling a local attacker to execute arbitrary code via the padmd_vld_qtbl path. The issue is confirmed in multiple source...

CVE-2024-20813

Out-of-bounds Write in padmdvldqtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code...

CVE-2020-20813

Control Channel in OpenVPN 2.4.7 and earlier allows remote attackers to cause a denial of service via crafted reset packet...

CVE-2020-20813

CVE-2020-20813 affects OpenVPN 2.4.7 and earlier. The vulnerability lies in the control channel, allowing a remote attacker to cause a denial of service by sending a crafted reset packet over the network. The entry notes a high severity (CVSSv3.1: 7.5) with network attack vector and no user inter...

CVE-2020-20813

Control Channel in OpenVPN 2.4.7 and earlier allows remote attackers to cause a denial of service via crafted reset packet...

CVE-2023-20813

creationtimestamp| type| source ---|---|--- 2023-08-07 07:13:15+00:00| seen| https://t.me/cibsecurity/67851...

CVE-2023-20813

In wlan service, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07453549; Issue ID: ALPS07453549...

CVE-2023-20813

CVE-2023-20813 affects MediaTek WLAN software/component where an out-of-bounds read occurs due to improper input validation. Impact described as local information disclosure with the need for System execution privileges; no user interaction required. Patch referenced: ALPS07453549 (Issue ID: ALPS...

CVE-2022-20813

creationtimestamp| type| source ---|---|--- 2022-07-07 00:14:52+00:00| seen| https://t.me/cibsecurity/45718 2022-07-11 12:01:34+00:00| seen| https://t.me/truesecator/3154...

Cisco and Fortinet Release Security Patches for Multiple Products

Cisco on Wednesday rolled out patches for 10 security flaws spanning multiple products, one of which is rated Critical in severity and could be weaponized to conduct absolute path traversal attacks. The issues, tracked as CVE-2022-20812 and CVE-2022-20813, affect Cisco Expressway Series and Cisco...

CVE-2022-20813 Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities

Multiple vulnerabilities in the API and in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS could allow a remote attacker to overwrite arbitrary files or conduct null byte poisoning attacks on an affected device. Note: Cisco...

CVE-2022-20813

CVE-2022-20813 affects Cisco Expressway Series (Expressway-C/Expressway-E) and Cisco TelePresence Video Communication Server (VCS). The flaw is a null byte poisoning vulnerability arising from improper certificate validation, enabling a remote attacker to mount a Man‑in‑the‑Middle and gain unauth...

CVE-2021-20813

CVE-2021-20813 is a cross-site scripting vulnerability in Movable Type’s Edit screen for Content Data. Affected products include Movable Type 7 (r4903 and earlier) and Movable Type Advanced 7 (r4903 and earlier). The flaw allows remote attackers to inject arbitrary script or HTML via unspecified ...

JVN#97545738: Multiple cross-site scripting vulnerabilities in Movable Type

Movable Type provided by Six Apart Ltd. contains multiple cross-site scripting vulnerabilities listed below. Cross-site scripting vulnerability in Search screen CWE-79 - CVE-2021-20808 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS...

CVE-2019-20813

An issue was discovered in Foxit PhantomPDF before 8.3.12. It has a NULL pointer dereference...

CVE-2019-20813

Foxit PhantomPDF prior to 8.3.12 is affected by CVE-2019-20813, a NULL pointer dereference issue. Affects Foxit PhantomPDF (versions before 8.3.12). The issue is described as a null pointer dereference; CVSS metrics in the source indicate a Network attack vector with no authentication, low attack...

CVE-2018-20813

An input validation issue has been found with loginmeeting.cgi in Pulse Secure Pulse Connect Secure 8.3RX before 8.3R2...