Lucene search
K

8183 matches found

OSV
OSV
added 2020/11/10 3:15 p.m.2 views

CVE-2020-4760

IBM Content Navigator 3.0CD is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 188737...

5.4CVSS5.8AI score0.00851EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2020/11/10 12:0 a.m.54 views

KLA12014 Multiple vulnerabilities in Opera

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Data validation vulnerability in installer component can be exploited to...

9.6CVSS9.8AI score0.48574EPSS
Exploits3References5
BDU FSTEC
BDU FSTEC
added 2020/11/10 12:0 a.m.3 views

The vulnerability of the User Interface component of the Oracle Trade Management application, a part of the Oracle E-Business Suite, allows an attacker to gain unauthorized access to protected information or to modify, add, or delete data.

The vulnerability of the User Interface component of the Oracle Trade Management application, part of the Oracle E-Business Suite, is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information or to...

8.5CVSS7.7AI score0.01241EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2020/11/10 12:0 a.m.3 views

PT-2020-4606

Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description The issue is related to a spoofing vulnerability in the Windows operating system, which is associated with errors in the representation of information by the user interface. This vulnerabilit...

5.5CVSS6.1AI score0.19124EPSS
Exploits0References14
Kaspersky
Kaspersky
added 2020/11/10 12:0 a.m.38 views

KLA12001 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of...

8.8CVSS8.8AI score0.01697EPSS
Exploits7References18
Kaspersky
Kaspersky
added 2020/11/10 12:0 a.m.52 views

KLA12003 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions. Below is a...

10CVSS9.9AI score0.25285EPSS
Exploits3References59
Positive Technologies
Positive Technologies
added 2020/11/10 12:0 a.m.7 views

PT-2020-4827 · Microsoft · Azure Devops Server +1

Name of the Vulnerable Software and Affected Versions: Azure DevOps Server and Team Foundation Services affected versions not specified Description: The issue is related to a spoofing vulnerability in the Team Foundation Services component of Azure DevOps Server, where the user interface can be...

7.5CVSS5.1AI score0.01512EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2020/11/09 9:28 a.m.2 views

chromium-browser: Use after free in user interface

Use after free in user interface in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.01502EPSS
Exploits0References5
Citrix
Citrix
added 2020/11/09 12:0 a.m.9 views

Citrix StoreFront Web GUI Assistant

StoreFront Web GUI DevlopedDate: 09/12/2013 Modified Date: 04/16/2020 Where to download ? Certain legacy Citrix tools are now available on request only. Please submit the request here - https://forms.gle/obA39PEz5qpDiSPq8 Once we verify your request, we will provide access to the download locatio...

7.2AI score
Exploits0
Citrix
Citrix
added 2020/11/09 12:0 a.m.10 views

MessageHistory

MessageHistory Version 3.0 Created Date: 08/20/2006 Updated Date: 09/25/2013 Please note: You can download the required file from the Citrix downloads website by visiting the following link: https://www.citrix.com/downloads/citrix-tools Description Sometimes Citrix Technical Support needs to...

7.2AI score
Exploits0
Citrix
Citrix
added 2020/11/09 12:0 a.m.77 views

Citrix Optimizer Tool

Citrix Optimizer Tool - v3.5.0.1 Created Date: Jun 21, 2017 Updated Date: Mar 12, 2025 SHA 256 Checksum: D8DCBF77BAE73E2EB4F8F6DCF408AFE90714230A15D3EB7390933D8DFB339044 To help us improve the Citrix Optimizer Tool, please send your feedback to https://forms.gle/TwWrKPT6J8u7GdKA6. Please note: Yo...

6.8AI score
Exploits0
NVD
NVD
added 2020/11/06 7:15 p.m.25 views

CVE-2020-3591

A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. The vulnerability exists because the web-based management interface does not...

4.3CVSS4.6AI score0.00715EPSS
Exploits0References1
NVD
NVD
added 2020/11/06 7:15 p.m.24 views

CVE-2020-26083

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting XSS attack against a user of the interface. The vulnerability exists because the web-based...

4.8CVSS4.9AI score0.00609EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/11/06 12:0 a.m.32 views

openSUSE Security Update : chromium (openSUSE-2020-1831)

This update for chromium fixes the following issues : - Update to 86.0.4240.183 boo1178375 - CVE-2020-16004: Use after free in user interface. - CVE-2020-16005: Insufficient policy enforcement in ANGLE. - CVE-2020-16006: Inappropriate implementation in V8 - CVE-2020-16007: Insufficient data...

9.6CVSS8.7AI score0.48574EPSS
Exploits3References8
OSV
OSV
added 2020/11/05 1:12 p.m.9 views

OPENSUSE-SU-2020:1831-1 Security update for chromium

This update for chromium fixes the following issues: - Update to 86.0.4240.183 boo1178375 - CVE-2020-16004: Use after free in user interface. - CVE-2020-16005: Insufficient policy enforcement in ANGLE. - CVE-2020-16006: Inappropriate implementation in V8 - CVE-2020-16007: Insufficient data...

9.6CVSS9.5AI score0.48574EPSS
Exploits3References9
OSV
OSV
added 2020/11/05 8:42 a.m.5 views

OPENSUSE-SU-2020:1829-1 Security update for chromium, gn

This update for chromium, gn fixes the following issues: chromium was updated to 86.0.4240.183 boo1178375 - CVE-2020-16004: Use after free in user interface. - CVE-2020-16005: Insufficient policy enforcement in ANGLE. - CVE-2020-16006: Inappropriate implementation in V8 - CVE-2020-16007:...

9.6CVSS8.4AI score0.5063EPSS
Exploits12References43
CNVD
CNVD
added 2020/11/05 12:0 a.m.3 views

Cisco Integrated Management Controller Command Injection Vulnerability (CNVD-2020-70859)

The Cisco Integrated Management Controller IMC is a baseboard management controller that provides embedded server management for Cisco UCS C-Series rackmount servers and Cisco S-Series storage servers. A command injection vulnerability exists in the web UI of Cisco Integrated Management Controlle...

9CVSS8.1AI score0.01845EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/11/05 12:0 a.m.3 views

The vulnerability of the User Interface component of the Oracle Trade Management application, a part of the Oracle E-Business Suite, allows an attacker to gain unauthorized access to protected information or to modify, add, or delete data.

The vulnerability of the User Interface component of the Oracle Trade Management application, part of the Oracle E-Business Suite, is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information or to...

8.5CVSS7.7AI score0.01241EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/11/05 12:0 a.m.3 views

The vulnerability of the User Interface component of the Oracle Trade Management application, a part of the Oracle E-Business Suite, allows an attacker to modify, add, or delete data.

The vulnerability of the User Interface component of the Oracle Trade Management application, a part of the Oracle E-Business Suite, relates to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to modify, add, or delete data using the HTTP network protoc...

9.1CVSS7.5AI score0.02797EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/11/05 12:0 a.m.3 views

The vulnerability of the Google Chrome browser’s WebUI user interface allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Google Chrome browser’s WebUI interface relates to the use of memory after it is freed during the processing of HTML content. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information through a specially...

7.8CVSS7AI score0.00573EPSS
Exploits0References5Affected Software3
Rows per page
Query Builder