323 matches found
CVE-2020-26164
In kdeconnect-kde aka KDE Connect before 20.08.2, an attacker on the local network could send crafted packets that trigger use of large amounts of CPU, memory, or network connection slots, aka a Denial of Service attack...
Design/Logic Flaw
It is possible to enumerate access card credentials via an unauthenticated network connection to the server in versions of Command Centre v8.20 prior to v8.20.1166MR3, versions of 8.10 prior to v8.10.1211MR5, versions of 8.00 prior to v8.00.1228MR6, all versions of 7.90 and earlier. These...
The vulnerability of the Network Connection Broker component of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s Network Connection Broker component is related to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...
ALPINE-CVE-2020-8620
In BIND 9.15.6 - 9.16.5, 9.17.0 - 9.17.3, An attacker who can establish a TCP connection with the server and send data on that connection can exploit this to trigger the assertion failure, causing the server to exit...
DEBIAN-CVE-2020-8620
In BIND 9.15.6 - 9.16.5, 9.17.0 - 9.17.3, An attacker who can establish a TCP connection with the server and send data on that connection can exploit this to trigger the assertion failure, causing the server to exit...
UBUNTU-CVE-2020-8620
In BIND 9.15.6 - 9.16.5, 9.17.0 - 9.17.3, An attacker who can establish a TCP connection with the server and send data on that connection can exploit this to trigger the assertion failure, causing the server to exit...
CVE-2020-1526
An elevation of privilege vulnerability exists when the Windows Network Connection Broker improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges...
CVE-2020-1526
An elevation of privilege vulnerability exists when the Windows Network Connection Broker improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges...
Privilege escalation
An elevation of privilege vulnerability exists when the Windows Network Connection Broker improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges...
CVE-2020-1526 Windows Network Connection Broker Elevation of Privilege Vulnerability
...
CVE-2020-1526
Technical details for CVE-2020-1526 are not publicly provided in the supplied documents; no specifics on affected products, root cause, or remediation are present. Monitor for updates.
Microsoft Windows and Microsoft Windows Server Elevation of Privilege Vulnerability (CNVD-2020-49367)
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows and Microsoft Windows...
Windows Network Connection Broker Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Network Connection Broker improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges...
PT-2020-3831 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to errors in handling memory objects in the Windows Network Connection Broker component. It allows an attacker to elevate their privileges using a specially crafted...
KB4571694: Windows 10 Version 1607 and Windows Server 2016 August 2020 Security Update
The remote Windows host is missing security update 4571694. It is, therefore, affected by multiple vulnerabilities : - A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could instal...
DEBIAN-CVE-2020-14398
An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c...
UBUNTU-CVE-2020-14398
An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c...
Code injection
In connect of PanService.java, there is a possible permissions bypass. This could lead to local escalation of privilege to change network connection settings with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android...
CVE-2020-0177
In connect of PanService.java, there is a possible permissions bypass. This could lead to local escalation of privilege to change network connection settings with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android...
CVE-2020-1291
CVE-2020-1291 is an elevation of privilege vulnerability in the Windows Network Connections Service related to how memory objects are handled. The issue is documented for Windows Network Connections Service (no explicit affected OS versions in the provided texts). The CVSS data in the initial rec...