CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In May 2020 (CVSS score >= 5)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
51 CVE-2020-13114 770 2020-05-21 2022-04-27
5.0
None Remote Low Not required None None Partial
An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.
52 CVE-2020-13113 908 2020-05-21 2022-04-26
6.4
None Remote Low Not required Partial None Partial
An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions.
53 CVE-2020-13112 125 2020-05-21 2020-07-27
6.4
None Remote Low Not required Partial None Partial
An issue was discovered in libexif before 0.6.22. Several buffer over-reads in EXIF MakerNote handling could lead to information disclosure and crashes. This is different from CVE-2020-0093.
54 CVE-2020-13111 119 DoS Overflow 2020-05-16 2021-07-21
5.0
None Remote Low Not required None None Partial
NaviServer 4.99.4 to 4.99.19 allows denial of service due to the nsd/driver.c ChunkedDecode function not properly validating the length of a chunk. A remote attacker can craft a chunked-transfer request that will result in a negative value being passed to memmove via the size parameter, causing the process to crash.
55 CVE-2020-13110 427 Exec Code 2020-05-16 2020-05-20
6.9
None Local Medium Not required Complete Complete Complete
The kerberos package before 1.0.0 for Node.js allows arbitrary code execution and privilege escalation via injection of malicious DLLs through use of the kerberos_sspi LoadLibrary() method, because of a DLL path search.
56 CVE-2020-13109 787 Exec Code Overflow 2020-05-16 2020-05-20
7.5
None Remote Low Not required Partial Partial Partial
Morita Shogi 64 through 2020-05-02 for Nintendo 64 devices allows remote attackers to execute arbitrary code via crafted packet data to the built-in modem because 0x800b3e94 (aka the IF subcommand to top-level command 7) has a stack-based buffer overflow.
57 CVE-2020-13093 22 Dir. Trav. 2020-05-15 2020-05-15
5.0
None Remote Low Not required Partial None None
iSpyConnect.com Agent DVR before 2.7.1.0 allows directory traversal.
58 CVE-2020-13092 502 Exec Code 2020-05-15 2020-05-19
7.5
None Remote Low Not required Partial Partial Partial
** DISPUTED ** scikit-learn (aka sklearn) through 0.23.0 can unserialize and execute commands from an untrusted file that is passed to the joblib.load() function, if __reduce__ makes an os.system call. NOTE: third parties dispute this issue because the joblib.load() function is documented as unsafe and it is the user's responsibility to use the function in a secure manner.
59 CVE-2020-13091 502 Exec Code 2020-05-15 2020-05-19
7.5
None Remote Low Not required Partial Partial Partial
** DISPUTED ** pandas through 1.0.3 can unserialize and execute commands from an untrusted file that is passed to the read_pickle() function, if __reduce__ makes an os.system call. NOTE: third parties dispute this issue because the read_pickle() function is documented as unsafe and it is the user's responsibility to use the function in a secure manner.
60 CVE-2020-12889 2020-05-15 2020-05-19
7.5
None Remote Low Not required Partial Partial Partial
MISP MISP-maltego 1.4.4 incorrectly shares a MISP connection across users in a remote-transform use case.
61 CVE-2020-12877 200 +Info 2020-05-14 2021-07-21
5.0
None Remote Low Not required Partial None None
Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication.
62 CVE-2020-12876 200 +Info 2020-05-14 2021-07-21
5.0
None Remote Low Not required Partial None None
Veritas APTARE versions prior to 10.4 allowed remote users to access several unintended files on the server. This vulnerability only impacts Windows server deployments.
63 CVE-2020-12875 863 2020-05-14 2020-05-15
6.5
None Remote Low ??? Partial Partial Partial
Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating specific parameters within the application.
64 CVE-2020-12874 863 Bypass 2020-05-14 2021-07-21
7.5
None Remote Low Not required Partial Partial Partial
Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.
65 CVE-2020-12860 200 +Info 2020-05-18 2021-07-21
5.0
None Remote Low Not required Partial None None
COVIDSafe through v1.0.17 allows a remote attacker to access phone name and model information because a BLE device can have four roles and COVIDSafe uses all of them. This allows for re-identification of a device, and potentially identification of the owner's name.
66 CVE-2020-12859 312 2020-05-18 2020-05-20
5.0
None Remote Low Not required Partial None None
Unnecessary fields in the OpenTrace/BlueTrace protocol in COVIDSafe through v1.0.17 allow a remote attacker to identify a device model by observing cleartext payload data. This allows re-identification of devices, especially less common phone models or those in low-density situations.
67 CVE-2020-12858 665 2020-05-18 2021-07-21
5.0
None Remote Low Not required Partial None None
Non-reinitialisation of random data in the advertising payload in COVIDSafe v1.0.15 and v1.0.16 allows a remote attacker to re-identify Android devices running COVIDSafe by scanning for their advertising beacons.
68 CVE-2020-12857 200 +Info 2020-05-18 2021-07-21
5.0
None Remote Low Not required Partial None None
Caching of GATT characteristic values (TempID) in COVIDSafe v1.0.15 and v1.0.16 allows a remote attacker to long-term re-identify an Android device running COVIDSafe.
69 CVE-2020-12856 2020-05-18 2020-05-20
7.5
None Remote Low Not required Partial Partial Partial
OpenTrace, as used in COVIDSafe through v1.0.17, TraceTogether, ABTraceTogether, and other applications on iOS and Android, allows remote attackers to conduct long-term re-identification attacks and possibly have unspecified other impact, because of how Bluetooth is used.
70 CVE-2020-12835 74 Exec Code 2020-05-20 2021-07-21
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in SmartBear ReadyAPI SoapUI Pro 3.2.5. Due to unsafe use of an Java RMI based protocol in an unsafe configuration, an attacker can inject malicious serialized objects into the communication, resulting in remote code execution in the context of a client-side Network Licensing Protocol component.
71 CVE-2020-12834 276 Exec Code 2020-05-15 2020-05-21
7.5
None Remote Low Not required Partial Partial Partial
eQ-3 Homematic Central Control Unit (CCU)2 through 2.51.6 and CCU3 through 3.51.6 allow Remote Code Execution in the JSON API Method ReGa.runScript, by unauthenticated attackers with access to the web interface, due to the default auto-login feature being enabled during first-time setup (or factory reset).
72 CVE-2020-12832 22 Dir. Trav. 2020-05-13 2020-05-21
7.5
None Remote Low Not required Partial Partial Partial
WordPress Plugin Simple File List before 4.2.8 is prone to a vulnerability that lets attackers delete arbitrary files because the application fails to properly verify user-supplied input.
73 CVE-2020-12828 434 2020-05-21 2020-06-02
10.0
None Remote Low Not required Complete Complete Complete
An issue was discovered in AnchorFree VPN SDK before 1.3.3.218. The VPN SDK service takes certain executable locations over a socket bound to localhost. Binding to the socket and providing a path where a malicious executable file resides leads to executing the malicious executable file with SYSTEM privileges.
74 CVE-2020-12825 674 2020-05-12 2020-09-08
5.8
None Remote Medium Not required None Partial Partial
libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption.
75 CVE-2020-12823 120 DoS Overflow 2020-05-12 2020-07-21
7.5
None Remote Low Not required Partial Partial Partial
OpenConnect 8.09 has a buffer overflow, causing a denial of service (application crash) or possibly unspecified other impact, via crafted certificate data to get_cert_name in gnutls.c.
76 CVE-2020-12801 312 2020-05-18 2021-11-04
5.0
None Remote Low Not required Partial None None
If LibreOffice has an encrypted document open and crashes, that document is auto-saved encrypted. On restart, LibreOffice offers to restore the document and prompts for the password to decrypt it. If the recovery is successful, and if the file format of the recovered document was not LibreOffice's default ODF file format, then affected versions of LibreOffice default that subsequent saves of the document are unencrypted. This may lead to a user accidentally saving a MSOffice file format document unencrypted while believing it to be encrypted. This issue affects: LibreOffice 6-3 series versions prior to 6.3.6; 6-4 series versions prior to 6.4.3.
77 CVE-2020-12790 74 2020-05-11 2020-05-14
5.0
None Remote Low Not required Partial None None
In the SEOmatic plugin before 3.2.49 for Craft CMS, helpers/DynamicMeta.php does not properly sanitize the URL. This leads to Server-Side Template Injection and credentials disclosure via a crafted Twig template after a semicolon.
78 CVE-2020-12785 862 2020-05-11 2021-07-21
5.5
None Remote Low ??? Partial Partial None
cPanel before 86.0.14 allows attackers to obtain access to the current working directory via the account backup feature (SEC-540).
79 CVE-2020-12784 20 2020-05-11 2021-07-21
5.0
None Remote Low Not required None None Partial
cPanel before 86.0.14 allows remote attackers to trigger a bandwidth suspension via mail log strings (SEC-505).
80 CVE-2020-12783 125 Bypass 2020-05-11 2021-05-04
5.0
None Remote Low Not required Partial None None
Exim through 4.93 has an out-of-bounds read in the SPA authenticator that could result in SPA/NTLM authentication bypass in auths/spa.c and auths/auth-spa.c.
81 CVE-2020-12772 311 2020-05-12 2021-07-21
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Ignite Realtime Spark 2.8.3 (and the ROAR plugin for it) on Windows. A chat message can include an IMG element with a SRC attribute referencing an external host's IP address. Upon access to this external host, the (NT)LM hashes of the user are sent with the HTTP request. This allows an attacker to collect these hashes, crack them, and potentially compromise the computer. (ROAR can be configured for automatic access. Also, access can occur if the user clicks.)
82 CVE-2020-12766 89 Sql 2020-05-09 2020-05-12
7.5
None Remote Low Not required Partial Partial Partial
Gnuteca 3.8 allows action=main:search:simpleSearch SQL Injection via the exemplaryStatusId parameter.
83 CVE-2020-12765 22 Dir. Trav. 2020-05-09 2020-05-12
5.0
None Remote Low Not required Partial None None
Solis Miolo 2.0 allows index.php?module=install&action=view&item= Directory Traversal.
84 CVE-2020-12764 22 Dir. Trav. 2020-05-09 2020-05-12
5.0
None Remote Low Not required Partial None None
Gnuteca 3.8 allows file.php?folder=/&file= Directory Traversal.
85 CVE-2020-12763 787 DoS Exec Code Overflow 2020-05-13 2020-05-15
7.5
None Remote Low Not required Partial Partial Partial
TRENDnet ProView Wireless camera TV-IP512WN 1.0R 1.0.4 is vulnerable to an unauthenticated stack-based buffer overflow in handling RTSP packets. This may result in remote code execution or denial of service. The issue is in the binary rtspd (in /sbin) when parsing a long "Authorization: Basic" RTSP header.
86 CVE-2020-12762 787 Overflow 2020-05-09 2021-05-21
6.8
None Remote Medium Not required Partial Partial Partial
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbuf_memappend.
87 CVE-2020-12761 190 Overflow 2020-05-09 2021-07-21
6.4
None Remote Low Not required Partial None Partial
modules/loaders/loader_ico.c in imlib2 1.6.0 has an integer overflow (with resultant invalid memory allocations and out-of-bounds reads) via an icon with many colors in its color map.
88 CVE-2020-12760 502 Exec Code 2020-05-11 2020-05-13
6.5
None Remote Low ??? Partial Partial Partial
An issue was discovered in OpenNMS Horizon before 26.0.1, and Meridian before 2018.1.19 and 2019 before 2019.1.7. The ActiveMQ channel configuration allowed for arbitrary deserialization of Java objects (aka ActiveMQ Minion payload deserialization), leading to remote code execution for any authenticated channel user regardless of its assigned permissions.
89 CVE-2020-12754 2020-05-11 2020-05-12
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered on LG mobile devices with Android OS 7.2, 8.0, 8.1, 9, and 10 software. A crafted application can obtain control of device input via the window system service. The LG ID is LVE-SMP-170011 (May 2020).
90 CVE-2020-12753 787 Exec Code 2020-05-11 2022-04-26
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered on LG mobile devices with Android OS 7.2, 8.0, 8.1, 9, and 10 software. Arbitrary code execution can occur via the bootloader because of an EL1/EL3 coldboot vulnerability involving raw_resources. The LG ID is LVE-SMP-200006 (May 2020).
91 CVE-2020-12752 522 2020-05-11 2021-07-21
5.0
None Remote Low Not required Partial None None
An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) (with TEEGRIS) software. Attackers can determine user credentials via a brute-force attack against the Gatekeeper trustlet. The Samsung ID is SVE-2020-16908 (May 2020).
92 CVE-2020-12751 119 Exec Code Overflow 2020-05-11 2021-07-21
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered on Samsung mobile devices with O(8.X), P(9.0), and Q(10.0) software. The Quram image codec library allows attackers to overwrite memory and execute arbitrary code via crafted JPEG data that is mishandled during decoding. The Samsung ID is SVE-2020-16943 (May 2020).
93 CVE-2020-12750 Bypass 2020-05-11 2020-05-13
5.0
None Remote Low Not required None Partial None
An issue was discovered on Samsung mobile devices with Q(10.0) software. Attackers can bypass Factory Reset Protection (FRP) via SPEN. The Samsung ID is SVE-2020-17019 (May 2020).
94 CVE-2020-12748 Bypass 2020-05-11 2020-05-13
5.0
None Remote Low Not required None Partial None
An issue was discovered on Samsung mobile devices with Q(10.0) software. Attackers can bypass the locked-state protection mechanism and designate a different preferred SIM card. The Samsung ID is SVE-2020-16594 (May 2020).
95 CVE-2020-12747 787 Overflow 2020-05-11 2020-05-13
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered on Samsung mobile devices with Q(10.0) (Exynos980 9630 and Exynos990 9830 chipsets) software. The Bootloader has a heap-based buffer overflow because of the mishandling of specific commands. The Samsung IDs are SVE-2020-16981, SVE-2020-16991 (May 2020).
96 CVE-2020-12746 787 Exec Code Overflow Bypass 2020-05-11 2020-05-12
10.0
None Remote Low Not required Complete Complete Complete
An issue was discovered on Samsung mobile devices with O(8.X), P(9.0), and Q(10.0) (Exynos chipsets) software. Attackers can bypass the Secure Bootloader protection mechanism via a heap-based buffer overflow to execute arbitrary code. The Samsung ID is SVE-2020-16712 (May 2020).
97 CVE-2020-12745 863 Bypass 2020-05-11 2021-07-21
5.0
None Remote Low Not required Partial None None
An issue was discovered on Samsung mobile devices with Q(10.0) software. Attackers can bypass the locked-state protection mechanism and access clipboard content via USSD. The Samsung ID is SVE-2019-16556 (May 2020).
98 CVE-2020-12743 552 File Inclusion 2020-05-11 2020-05-15
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Gazie 7.32. A successful installation does not remove or block (or in any other way prevent use of) its own file /setup/install/setup.php, meaning that anyone can request it without authentication. This file allows arbitrary PHP file inclusion via a hidden_req POST parameter.
99 CVE-2020-12740 125 2020-05-08 2022-04-08
6.4
None Remote Low Not required Partial None Partial
tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read during a get_c operation. The issue is being triggered in the function get_ipv6_next() at common/get.c.
100 CVE-2020-12735 331 2020-05-08 2020-05-12
7.5
None Remote Low Not required Partial Partial Partial
reset.php in DomainMOD 4.13.0 uses insufficient entropy for password reset requests, leading to account takeover.
Total number of vulnerabilities : 592   Page : 1 2 (This Page)3 4 5 6 7 8 9 10 11 12
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.