CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-5713

Malware in sbrugna...

5.7CVSS5.8AI score0.00418EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 3:12 p.m.•6 views

CVE-2020-13462

Insecure Direct Object Reference IDOR exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA...

5.7CVSS6.9AI score0.00418EPSS

Exploits0

NVD•added 2021/02/09 6:15 a.m.•10 views

CVE-2020-13462

Insecure Direct Object Reference IDOR exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA...

5.7CVSS0.00418EPSS

Exploits0References1

Prion•added 2021/02/09 6:15 a.m.•14 views

Design/Logic Flaw

Insecure Direct Object Reference IDOR exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA...

2.7CVSS5.6AI score0.00418EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/02/09 5:36 a.m.•14 views

CVE-2020-13462

Insecure Direct Object Reference IDOR exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA...

5.6AI score0.00418EPSS

Exploits0References1

OSV•added 2021/02/09 5:15 a.m.•4 views

CVE-2020-13460

Multiple Cross-Site Request Forgery CSRF vulnerabilities were present in Tufin SecureTrack, affecting all versions prior to R20-2 GA...

8.8CVSS7.3AI score0.00576EPSS

Exploits0References1

NVD•added 2021/02/09 5:15 a.m.•11 views

CVE-2020-13460

Multiple Cross-Site Request Forgery CSRF vulnerabilities were present in Tufin SecureTrack, affecting all versions prior to R20-2 GA...

8.8CVSS0.00576EPSS

Exploits0References1

Prion•added 2021/02/09 5:15 a.m.•16 views

Cross site scripting

Tufin SecureTrack R20-2 GA contains reflected + stored XSS as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or also later by different users. Both stored, and reflected payloads are triggerable by admin, so...

2.3CVSS5.4AI score0.00439EPSS

Exploits0References1Affected Software1

Prion•added 2021/02/09 5:15 a.m.•18 views

Cross site scripting

2.3CVSS5.4AI score0.00439EPSS

Exploits0References1Affected Software1

Prion•added 2021/02/09 5:15 a.m.•11 views

Cross site scripting

2.3CVSS5.4AI score0.00439EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/02/09 4:39 a.m.•12 views

CVE-2020-13460

Multiple Cross-Site Request Forgery CSRF vulnerabilities were present in Tufin SecureTrack, affecting all versions prior to R20-2 GA...

9.1AI score0.00576EPSS

Exploits0References1

CVE•added 2021/02/09 4:39 a.m.•64 views

CVE-2020-13460

CVE-2020-13460 affects Tufin SecureTrack and describes Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in all versions prior to R20-2 GA. The NVD metrics show CVSS v3.1 base score 8.8 (HIGH) with network attack vector, low attack complexity, no privileges, and user interaction required...

8.8CVSS8.9AI score0.00576EPSS

Exploits0References1Affected Software1

CVE•added 2021/02/09 4:28 a.m.•58 views

CVE-2020-13407

Tufin SecureTrack

5.9CVSS5.4AI score0.00439EPSS

Exploits0References1Affected Software1

CNNVD•added 2021/02/09 12:0 a.m.•4 views

Tufin SecureTrack R20-2 GA Cross-Site Request Forgery Vulnerability

USA Tufin SecureTrack is a firewall policy management platform from Tufin USA USA. A cross-site request forgery vulnerability exists in the Tufin SecureTrack R20-2 GA, which arises from a web application that does not adequately validate that a request is coming from a trusted user. An attacker...

8.8CVSS7.2AI score0.00576EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by