Lucene search
K

14 matches found

Circl
Circl
added 2026/02/26 11:0 a.m.3 views

CVE-2026-20895

creationtimestamp| type| source ---|---|--- 2026-02-26 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-04 2026-03-03 01:00:14+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mg4kwxk5fd2l...

7.5CVSS5.9AI score0.00356EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/08 4:40 a.m.17 views

CVE-2025-20895

Authentication Bypass Using an Alternate Path in Galaxy Store prior to version 4.5.87.6 allows physical attackers to install arbitrary applications to bypass restrictions of Setupwizard...

4.6CVSS6.8AI score0.00192EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 1:10 a.m.10 views

CVE-2024-20895

Improper access control in Dar service prior to SMR Jul-2024 Release 1 allows local attackers to bypass restriction for calling SDP features...

7.7CVSS6.7AI score0.00143EPSS
Exploits0References1
Circl
Circl
added 2025/02/04 8:16 a.m.23 views

CVE-2025-20895

creationtimestamp| type| source ---|---|--- 2025-02-04 08:16:37+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhdmkfgvfu2h 2025-02-04 10:32:46+00:00| seen| https://t.me/cvedetector/17172 2025-02-04 12:19:09+00:00| seen|...

4.6CVSS5.8AI score0.00192EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/02/04 7:19 a.m.5 views

CVE-2025-20895

Authentication Bypass Using an Alternate Path in Galaxy Store prior to version 4.5.87.6 allows physical attackers to install arbitrary applications to bypass restrictions of Setupwizard...

3.2CVSS4.1AI score0.00192EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/04 7:19 a.m.43 views

CVE-2025-20895

Authentication Bypass Using an Alternate Path in Galaxy Store prior to version 4.5.87.6 allows physical attackers to install arbitrary applications to bypass restrictions of Setupwizard...

3.2CVSS0.00192EPSS
Exploits0References1
Circl
Circl
added 2023/06/22 7:47 p.m.6 views

CVE-2023-20895

creationtimestamp| type| source ---|---|--- 2023-06-22 19:47:33+00:00| seen| https://t.me/truesecator/4531...

9.8CVSS8.7AI score0.01375EPSS
Exploits0References1
CVE
CVE
added 2023/06/22 11:57 a.m.67 views

CVE-2023-20895

CVE-2023-20895 is a memory corruption vulnerability in VMware vCenter Server’s DCERPC implementation that can lead to an authentication bypass via crafted network packets. Cisco Talos reports it affects VMware vCenter Server 8.0.0.10200 and details root causes such as out-of-bounds memory access ...

9.8CVSS9.5AI score0.01375EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/07/21 3:52 a.m.91 views

CVE-2022-20895

Cisco Small Business RV110W/RV130/RV130W/RV215W routers are affected by multiple authenticated, remote command execution and DoS vulnerabilities due to insufficient validation of user fields in HTTP requests. The issues allow an attacker with valid admin credentials to execute arbitrary commands ...

7.2CVSS6.7AI score0.00876EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2021/09/20 4:15 p.m.28 views

CVE-2020-20895

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-22028. Reason: This candidate is a duplicate of CVE-2020-22028. Notes: All CVE users should reference CVE-2020-22028 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

7.2AI score
Exploits0References3
OSV
OSV
added 2021/09/20 4:15 p.m.2 views

UBUNTU-CVE-2020-20895

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-22028. Reason: This candidate is a duplicate of CVE-2020-22028. Notes: All CVE users should reference CVE-2020-22028 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental...

7.3AI score
Exploits0References4
CVE
CVE
added 2021/09/20 3:19 p.m.79 views

CVE-2020-20895

CVE-2020-20895 is rejected/not used per the description; reference CVE-2020-22028 instead.

7.2AI score
Exploits0
Cvelist
Cvelist
added 2021/09/20 3:19 p.m.26 views

CVE-2020-20895

...

Exploits0
CVE
CVE
added 2019/08/01 1:40 p.m.36 views

CVE-2018-20895

In cPanel before 71.9980.37, API tokens retain ACLs after those ACLs are removed from the corresponding accounts (SEC-393). The CVE is documented with CVSS v3 base score 7.2 (HIGH) and CVSS v2 base score 6.5 (MEDIUM). There are no exploitation details or remediation steps provided in the connecte...

7.2CVSS7AI score0.01036EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder