Lucene search
K

26 matches found

CNVD
CNVD
added 2020/05/13 12:0 a.m.20 views

Microsoft Windows and Windows Server Elevation of Privilege Vulnerability (CNVD-2021-73132)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, an operating system for personal devices, and Microsoft Windows Server, a server operating system. An elevation-of-privilege vulnerability exists in Microsoft Windows and Windows Server, which stems from a...

7.8CVSS3AI score0.00736EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2020/01/30 9:21 p.m.59 views

Unsafe Identifiers in Opencast

Impact Opencast allows almost arbitrary identifiers for media packages and elements to be used. This can be problematic for operation and security since such identifiers are sometimes used for file system operations which may lead to an attacker being able to escape working directories and write...

7.7CVSS2.4AI score0.01168EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2020/01/30 9:15 p.m.14 views

CVE-2020-5230

Opencast before 8.1 and 7.6 allows almost arbitrary identifiers for media packages and elements to be used. This can be problematic for operation and security since such identifiers are sometimes used for file system operations which may lead to an attacker being able to escape working directorie...

7.7CVSS7.5AI score0.01168EPSS
Exploits0References2
OSV
OSV
added 2020/01/30 9:15 p.m.14 views

CVE-2020-5230

Opencast before 8.1 and 7.6 allows almost arbitrary identifiers for media packages and elements to be used. This can be problematic for operation and security since such identifiers are sometimes used for file system operations which may lead to an attacker being able to escape working directorie...

7.5CVSS6.8AI score0.01168EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/01/30 8:55 p.m.16 views

CVE-2020-5230 Opencast uses unsafe identifiers

Opencast before 8.1 and 7.6 allows almost arbitrary identifiers for media packages and elements to be used. This can be problematic for operation and security since such identifiers are sometimes used for file system operations which may lead to an attacker being able to escape working directorie...

7.7CVSS7.6AI score0.01168EPSS
Exploits0References2
CVE
CVE
added 2020/01/30 8:55 p.m.97 views

CVE-2020-5230

Opencast CVE-2020-5230 affects Opencast versions older than 8.1 and 7.6, where media package and element identifiers can be almost arbitrary. The identifiers are sometimes used in filesystem operations, which can allow an attacker to escape working directories and write files to unintended locati...

7.7CVSS7.4AI score0.01168EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder