CVE-2020-22722

Rapid Software LLC Rapid SCADA 5.8.0 is affected by a local privilege escalation vulnerability in the ScadaAgentSvc.exe executable file. An attacker can obtain admin privileges by placing a malicious .exe file in the application and renaming it ScadaAgentSvc.exe, which would result in executing t...

CVE-2020-22721

A File Upload Vulnerability in PNotes - Andrey Gruber PNotes.NET v3.8.1.2 allows a local attacker to execute arbitrary code via the Miscellaneous " External Programs by uploading the malicious .exe file to the external program...

Fedora: Security Advisory for python3 (FEDORA-2020-d808fdd597)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

PT-2020-3700 · Microsoft · Windows Cdp User Components +1

Name of the Vulnerable Software and Affected Versions: Windows CDP User Components affected versions not specified Description: The issue is related to errors in handling memory objects, which can be exploited by an attacker to elevate their privileges. This can be achieved by running a specially...

SecurEnvoy SecureMail Path Traversal Vulnerability

SecurEnvoy SecureMail is a secure email solution from SecurEnvoy UK. A security vulnerability exists in SecurEnvoy SecurMail version 9.3.503. The vulnerability can be exploited by an attacker to upload executable files and execute operating system commands with the help of a specially crafted...

GitLab: GitLab-Runner on Windows `DOCKER_AUTH_CONFIG` container host Command Injection

Summary GitLab-Runner, when running on Windows with a docker executor, is vulnerable to Command Injection via the DOCKERAUTHCONFIG build variable. Injected commands are executed on the container host, not within a Docker container, as such could compromise all future builds which are executed by...

CVE-2020-13376

SecurEnvoy SecurMail 9.3.503 allows attackers to upload executable files and achieve OS command execution via a crafted SecurEnvoyReply cookie...

CVE-2020-13376

SecurEnvoy SecurMail 9.3.503 allows attackers to upload executable files and achieve OS command execution via a crafted SecurEnvoyReply cookie...

Denial of Service Vulnerability in VisualField VF***.exe Component at Zhejiang ZDAC Information Technology Co.

VisualField VF for short is a software package for control system configuration and monitoring for the ECS-700 system. A denial of service vulnerability exists in the VisualField VF.exe component of Zhejiang ZDZC Information Technology Co. An attacker can exploit the vulnerability to cause the...

UEFI_RETool - A Tool For UEFI Firmware Reverse Engineering

A tool for UEFIfirmware reverse engineering. UEFI firmware analysis withuefiretool.py script Usage: Copy idaplugin/uefianalyser.py script and idaplugin/uefianalyser directory to IDA plugins directory Edit config.json file PEDIR is a directory that contains all executable images from the UEFI...

CVE-2020-7822

DaviewIndy has a Heap-based overflow vulnerability, triggered when the user opens a malformed image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

CVE-2020-7823

DaviewIndy has a Memory corruption vulnerability, triggered when the user opens a malformed image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

CVE-2020-16269

radare2 4.5.0 misparses DWARF information in executable files, causing a segmentation fault in parsetypedef in typedwarf.c via a malformed DWATname in the .debuginfo section...

CVE-2020-16269

radare2 4.5.0 misparses DWARF information in executable files, causing a segmentation fault in parsetypedef in typedwarf.c via a malformed DWATname in the .debuginfo section...

Design/Logic Flaw

radare2 4.5.0 misparses DWARF information in executable files, causing a segmentation fault in parsetypedef in typedwarf.c via a malformed DWATname in the .debuginfo section...

CVE-2020-16269

CVE-2020-16269 affects radare2 4.5.0 where DWARF information in .debug_info is misparsed, causing a segmentation fault in parse_typedef (type_dwarf.c) due to a malformed DW_AT_name; the related CVEs (including CVE-2020-17487) cover malformed PE signature data. Multiple advisories (Mageia MGASA-20...

CVE-2020-16269

radare2 4.5.0 misparses DWARF information in executable files, causing a segmentation fault in parsetypedef in typedwarf.c via a malformed DWATname in the .debuginfo section...

CVE-2020-16269

radare2 4.5.0 misparses DWARF information in executable files, causing a segmentation fault in parsetypedef in typedwarf.c via a malformed DWATname in the .debuginfo section...

Exploit for Origin Validation Error in Solarwinds Dameware_Mini_Remote_Control

CVE-2019-3980 This repo was created to utilize the Nessus POC...

CVE-2020-12081

An information disclosure vulnerability has been identified in FlexNet Publisher lmadmin.exe 11.14.0.2. The web portal link can be used to access to system files or other important files on the system...