Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-5409

Malware in sbrugna...

6.1CVSS6.3AI score0.00704EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-5713

Malware in sbrugna...

5.7CVSS5.8AI score0.00418EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-5410

Malware in sbrugna...

4.8CVSS5.2AI score0.00522EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 4:15 p.m.11 views

CVE-2020-13133

Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by unauthenticated users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and...

6.1CVSS6AI score0.00704EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:12 p.m.8 views

CVE-2020-13462

Insecure Direct Object Reference IDOR exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA...

5.7CVSS6.9AI score0.00418EPSS
Exploits0
OSV
OSV
added 2021/02/09 6:15 a.m.6 views

CVE-2020-13462

Insecure Direct Object Reference IDOR exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA...

5.7CVSS6.2AI score0.00418EPSS
Exploits0References1
NVD
NVD
added 2021/02/09 6:15 a.m.22 views

CVE-2020-13462

Insecure Direct Object Reference IDOR exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA...

5.7CVSS0.00418EPSS
Exploits0References1
Prion
Prion
added 2021/02/09 6:15 a.m.18 views

Design/Logic Flaw

Insecure Direct Object Reference IDOR exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA...

2.7CVSS5.6AI score0.00418EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/02/09 5:36 a.m.64 views

CVE-2020-13462

CVE-2020-13462 concerns Tufin SecureChange. The vulnerability is an Insecure Direct Object Reference (IDOR) affecting all versions prior to R20-2 GA, allowing unintended access or disclosure via improper object reference handling. The issue is fixed in version R20-2 GA. Other connected documents ...

5.7CVSS5.5AI score0.00418EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/02/09 5:36 a.m.28 views

CVE-2020-13462

Insecure Direct Object Reference IDOR exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA...

5.6AI score0.00418EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/02/09 12:0 a.m.8 views

Tufin SecureChange R20-2 GA Security Vulnerability

A security vulnerability exists in Tufin SecureChange all versions prior to R20-2 GA. which stems from an insecure direct object reference...

5.7CVSS6.2AI score0.00418EPSS
Exploits0References1
NVD
NVD
added 2021/01/20 2:15 a.m.15 views

CVE-2020-13134

Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by admin users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and R20-1 HF1...

4.8CVSS5AI score0.00522EPSS
Exploits0References2
OSV
OSV
added 2021/01/20 2:15 a.m.4 views

CVE-2020-13133

Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by unauthenticated users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and...

6.1CVSS6.4AI score0.00704EPSS
Exploits0References2
NVD
NVD
added 2021/01/20 2:15 a.m.28 views

CVE-2020-13133

Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by unauthenticated users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and...

6.1CVSS6.1AI score0.00704EPSS
Exploits0References2
Prion
Prion
added 2021/01/20 2:15 a.m.11 views

Design/Logic Flaw

Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by admin users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and R20-1 HF1...

3.5CVSS4.9AI score0.00522EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/01/20 2:15 a.m.13 views

Design/Logic Flaw

Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by unauthenticated users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and...

4.3CVSS6.1AI score0.00704EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/01/20 1:46 a.m.29 views

CVE-2020-13133

Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by unauthenticated users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and...

6.1AI score0.00704EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/01/20 1:45 a.m.21 views

CVE-2020-13134

Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by admin users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and R20-1 HF1...

5AI score0.00522EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/01/19 12:0 a.m.7 views

Tufin Securechange Cross-Site Scripting Vulnerability

Tufin Securechange is a network management software for enterprise environments from Tufin USA. A cross-site scripting vulnerability exists in Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1, which stems from a lack of proper validation of client-side data by the WEB application. An attacker...

6.1CVSS6.3AI score0.00704EPSS
Exploits0References3
0day.today
0day.today
added 2019/07/27 12:0 a.m.89 views

Tufin Secure Change Remote Code Execution Exploit

Tufin SecureChange uses Richfaces version 4.3.5 which suffers from a remote code execution vulnerability. Product: Secure Change Vendor: Tufin Subject: Tufin SecureChange uses Richfaces 4.3.5, vulnerable to CVE-2015-0279 unauthenticated RCE CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H base score...

6.8CVSS0.3AI score0.03929EPSS
Exploits1
Rows per page
Query Builder