Lucene search
K

8183 matches found

Cvelist
Cvelist
added 2020/10/21 6:35 p.m.19 views

CVE-2020-3553 Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient validation o...

4.8CVSS6AI score0.00765EPSS
Exploits0References1
Cisco
Cisco
added 2020/10/21 4:0 p.m.80 views

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Cross-Site Scripting Vulnerabilities

Update June 28, 2021: Cisco has become aware that public exploit code exists for CVE-2020-3580, and this vulnerability is being actively exploited. Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD...

6.1CVSS6.6AI score0.85439EPSS
Exploits2References1
OSV
OSV
added 2020/10/21 3:15 p.m.2 views

CVE-2020-14787

Vulnerability in the Oracle Communications Diameter Signaling Router DSR product of Oracle Communications component: User Interface. Supported versions that are affected are 8.0.0.0-8.4.0.5. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

5.4CVSS6.8AI score0.00718EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.4 views

CVE-2020-14788

Vulnerability in the Oracle Communications Diameter Signaling Router DSR product of Oracle Communications component: User Interface. Supported versions that are affected are 8.0.0.0-8.4.0.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromis...

6.1CVSS6.8AI score0.01153EPSS
Exploits0References1
Prion
Prion
added 2020/10/21 3:15 p.m.11 views

Design/Logic Flaw

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

5.8CVSS8.3AI score0.01241EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/10/21 3:15 p.m.15 views

Design/Logic Flaw

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

7.8CVSS8.3AI score0.0146EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/10/21 3:15 p.m.15 views

Design/Logic Flaw

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

8.5CVSS8.5AI score0.02797EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2020/10/21 3:15 p.m.24 views

CVE-2020-14876

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

9.1CVSS7.1AI score0.02797EPSS
Exploits0References2
Prion
Prion
added 2020/10/21 3:15 p.m.13 views

Design/Logic Flaw

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

5.8CVSS8.3AI score0.01241EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/10/21 3:15 p.m.14 views

Design/Logic Flaw

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

7.8CVSS8.3AI score0.0146EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/10/21 3:15 p.m.9 views

Design/Logic Flaw

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

5.8CVSS8.3AI score0.01241EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/10/21 2:4 p.m.5 views

CVE-2020-14876

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

9.1CVSS7.1AI score0.02797EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2020/10/21 2:4 p.m.8 views

CVE-2020-14808

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite component: User Interface. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Trade...

8.2CVSS7.3AI score0.01241EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/10/21 2:4 p.m.9 views

CVE-2020-14787

Vulnerability in the Oracle Communications Diameter Signaling Router DSR product of Oracle Communications component: User Interface. Supported versions that are affected are 8.0.0.0-8.4.0.5. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

5.4CVSS6.1AI score0.00718EPSS
Exploits0References1
NVD
NVD
added 2020/10/20 5:15 p.m.16 views

CVE-2020-7369

User Interface UI Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browser. This issue affects the Yandex Browser version 20.8.3 and prior versions, and was fixed in version...

4.3CVSS0.00982EPSS
Exploits1References2
NVD
NVD
added 2020/10/20 5:15 p.m.21 views

CVE-2020-7370

User Interface UI Misrepresentation of Critical Information vulnerability in the address bar of Danyil Vasilenko's Bolt Browser allows an attacker to obfuscate the true source of data as presented in the browser. This issue affects the Bolt Browser version 1.4 and prior versions...

4.3CVSS0.00982EPSS
Exploits1References2
OSV
OSV
added 2020/10/20 5:15 p.m.4 views

CVE-2020-7369

User Interface UI Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browser. This issue affects the Yandex Browser version 20.8.3 and prior versions, and was fixed in version...

4.3CVSS5.8AI score0.00982EPSS
Exploits1References2
Prion
Prion
added 2020/10/20 5:15 p.m.20 views

Design/Logic Flaw

User Interface UI Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browser. This issue affects UCWeb's UC Browser version 13.0.8 and prior versions...

4.3CVSS4.6AI score0.00733EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2020/10/20 5:15 p.m.17 views

Design/Logic Flaw

User Interface UI Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browser. This issue affects the Yandex Browser version 20.8.3 and prior versions, and was fixed in version...

4.3CVSS4.6AI score0.00982EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2020/10/20 5:15 p.m.12 views

Design/Logic Flaw

User Interface UI Misrepresentation of Critical Information vulnerability in the address bar of Danyil Vasilenko's Bolt Browser allows an attacker to obfuscate the true source of data as presented in the browser. This issue affects the Bolt Browser version 1.4 and prior versions...

4.3CVSS4.6AI score0.00982EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder