CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In July 2020

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
151 CVE-2020-15563 119 DoS Overflow 2020-07-07 2022-05-03
4.7
None Local Medium Not required None None Complete
An issue was discovered in Xen through 4.13.x, allowing x86 HVM guest OS users to cause a hypervisor crash. An inverted conditional in x86 HVM guests' dirty video RAM tracking code allows such guests to make Xen de-reference a pointer guaranteed to point at unmapped space. A malicious or buggy HVM guest may cause the hypervisor to crash, resulting in Denial of Service (DoS) affecting the entire host. Xen versions from 4.8 onwards are affected. Xen versions 4.7 and earlier are not affected. Only x86 systems are affected. Arm systems are not affected. Only x86 HVM guests using shadow paging can leverage the vulnerability. In addition, there needs to be an entity actively monitoring a guest's video frame buffer (typically for display purposes) in order for such a guest to be able to leverage the vulnerability. x86 PV guests, as well as x86 HVM guests using hardware assisted paging (HAP), cannot leverage the vulnerability.
152 CVE-2020-15562 79 XSS 2020-07-06 2020-09-24
4.3
None Remote Medium Not required None Partial None
An issue was discovered in Roundcube Webmail before 1.2.11, 1.3.x before 1.3.14, and 1.4.x before 1.4.7. It allows XSS via a crafted HTML e-mail message, as demonstrated by a JavaScript payload in the xmlns (aka XML namespace) attribute of a HEAD element when an SVG element exists.
153 CVE-2020-15543 20 2020-07-05 2020-07-15
7.5
None Remote Low Not required Partial Partial Partial
SolarWinds Serv-U FTP server before 15.2.1 does not validate an argument path.
154 CVE-2020-15542 2020-07-05 2020-07-15
7.5
None Remote Low Not required Partial Partial Partial
SolarWinds Serv-U FTP server before 15.2.1 mishandles the CHMOD command.
155 CVE-2020-15541 94 Exec Code 2020-07-05 2021-07-21
7.5
None Remote Low Not required Partial Partial Partial
SolarWinds Serv-U FTP server before 15.2.1 allows remote command execution.
156 CVE-2020-15540 89 Sql 2020-07-05 2020-07-09
7.5
None Remote Low Not required Partial Partial Partial
We-com OpenData CMS 2.0 allows SQL Injection via the username field on the administrator login page.
157 CVE-2020-15539 89 Sql 2020-07-05 2020-07-13
7.5
None Remote Low Not required Partial Partial Partial
SQL injection can occur in We-com Municipality portal CMS 2.1.x via the cerca/ keywords field.
158 CVE-2020-15538 79 XSS 2020-07-05 2020-07-13
4.3
None Remote Medium Not required None Partial None
XSS can occur in We-com Municipality portal CMS 2.1.x via the cerca/ search bar.
159 CVE-2020-15537 79 XSS 2020-07-05 2020-07-10
4.3
None Remote Medium Not required None Partial None
An issue was discovered in the Vanguard plugin 2.1 for WordPress. XSS can occur via the mails/new title field, a product field to the p/ URI, or the Products Search box.
160 CVE-2020-15536 79 XSS 2020-07-05 2020-07-13
4.3
None Remote Medium Not required None Partial None
An issue was discovered in the bestsoftinc Hotel Booking System Pro plugin through 1.1 for WordPress. Persistent XSS can occur via any of the registration fields.
161 CVE-2020-15535 79 XSS 2020-07-05 2020-07-08
4.3
None Remote Medium Not required None Partial None
An issue was discovered in the bestsoftinc Car Rental System plugin through 1.3 for WordPress. Persistent XSS can occur via any of the registration fields.
162 CVE-2020-15530 269 +Priv 2020-07-05 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
An issue was discovered in Valve Steam Client 2.10.91.91. The installer allows local users to gain NT AUTHORITY\SYSTEM privileges because some parts of %PROGRAMFILES(X86)%\Steam and/or %COMMONPROGRAMFILES(X86)%\Steam have weak permissions during a critical time window. An attacker can make this time window arbitrarily long by using opportunistic locks.
163 CVE-2020-15529 269 2020-07-05 2021-07-21
9.3
None Remote Medium Not required Complete Complete Complete
An issue was discovered in GOG Galaxy Client 2.0.17. Local escalation of privileges is possible when a user installs a game or performs a verify/repair operation. The issue exists because of weak file permissions and can be exploited by using opportunistic locks.
164 CVE-2020-15528 269 2020-07-05 2021-07-21
9.3
None Remote Medium Not required Complete Complete Complete
An issue was discovered in GOG Galaxy Client 2.0.17. Local escalation of privileges is possible when a user starts or uninstalls a game because of weak file permissions and missing file integrity checks.
165 CVE-2020-15526 200 +Info 2020-07-09 2021-07-21
4.3
None Remote Medium Not required Partial None None
In Redgate SQL Monitor 7.1.4 through 10.1.6 (inclusive), the scope for disabling some TLS security certificate checks can extend beyond that defined by various options on the Configuration > Notifications pages to disable certificate checking for alert notifications. These TLS security checks are also ignored during monitoring of VMware machines. This would make SQL Monitor vulnerable to potential man-in-the-middle attacks when sending alert notification emails, posting to Slack or posting to webhooks. The vulnerability is fixed in version 10.1.7.
166 CVE-2020-15525 269 2020-07-07 2021-07-21
5.0
None Remote Low Not required Partial None None
GitLab EE 11.3 through 13.1.2 has Incorrect Access Control because of the Maven package upload endpoint.
167 CVE-2020-15523 427 2020-07-04 2021-07-21
6.9
None Local Medium Not required Complete Complete Complete
In Python 3.6 through 3.6.10, 3.7 through 3.7.8, 3.8 through 3.8.4rc1, and 3.9 through 3.9.0b4 on Windows, a Trojan horse python3.dll might be used in cases where CPython is embedded in a native application. This occurs because python3X.dll may use an invalid search path for python3.dll loading (after Py_SetPath has been used). NOTE: this issue CANNOT occur when using python.exe from a standard (non-embedded) Python installation on Windows.
168 CVE-2020-15518 119 Overflow 2020-07-03 2021-07-21
6.5
None Remote Low ??? Partial Partial Partial
VeeamFSR.sys in Veeam Availability Suite before 10 and Veeam Backup & Replication before 10 has no device object DACL, which allows unprivileged users to achieve total control over filesystem I/O requests.
169 CVE-2020-15517 79 XSS 2020-07-07 2020-07-13
3.5
None Remote Medium ??? None Partial None
The ke_search (aka Faceted Search) extension through 2.8.2, and 3.x through 3.1.3, for TYPO3 allows XSS.
170 CVE-2020-15516 352 XSS CSRF 2020-07-07 2021-07-21
5.8
None Remote Medium Not required Partial Partial None
The mm_forum extension through 1.9.5 for TYPO3 allows XSS that can be exploited via CSRF.
171 CVE-2020-15515 74 Exec Code 2020-07-07 2021-07-21
6.5
None Remote Low ??? Partial Partial Partial
The turn extension through 0.3.2 for TYPO3 allows Remote Code Execution.
172 CVE-2020-15514 79 XSS 2020-07-07 2020-07-13
3.5
None Remote Medium ??? None Partial None
The jh_captcha extension through 2.1.3, and 3.x through 3.0.2, for TYPO3 allows XSS.
173 CVE-2020-15513 863 2020-07-07 2020-07-14
5.0
None Remote Low Not required None Partial None
The typo3_forum extension before 1.2.1 for TYPO3 has Incorrect Access Control.
174 CVE-2020-15511 20 Bypass 2020-07-30 2021-07-21
5.0
None Remote Low Not required None Partial None
HashiCorp Terraform Enterprise up to v202006-1 contained a default signup page that allowed user registration even when disabled, bypassing SAML enforcement. Fixed in v202007-1.
175 CVE-2020-15509 311 2020-07-07 2021-07-21
3.3
None Local Network Low Not required Partial None None
Nordic Semiconductor Android BLE Library through 2.2.1 and DFU Library through 1.10.4 for Android (as used by nRF Connect and other applications) can engage in unencrypted communication while showing the user that the communication is purportedly encrypted. The problem is in bond creation (e.g., internalCreateBond in BleManagerHandler).
176 CVE-2020-15507 200 +Info 2020-07-07 2021-07-21
5.0
None Remote Low Not required Partial None None
An arbitrary file reading vulnerability in MobileIron Core versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0 that allows remote attackers to read files on the system via unspecified vectors.
177 CVE-2020-15506 287 Bypass 2020-07-07 2021-07-21
7.5
None Remote Low Not required Partial Partial Partial
An authentication bypass vulnerability in MobileIron Core & Connector versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0 that allows remote attackers to bypass authentication mechanisms via unspecified vectors.
178 CVE-2020-15505 Exec Code 2020-07-07 2021-02-03
7.5
None Remote Low Not required Partial Partial Partial
A remote code execution vulnerability in MobileIron Core & Connector versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0; and Sentry versions 9.7.2 and earlier, and 9.8.0; and Monitor and Reporting Database (RDB) version 2.0.0.1 and earlier that allows remote attackers to execute arbitrary code via unspecified vectors.
179 CVE-2020-15504 89 Sql 2020-07-10 2020-07-14
7.5
None Remote Low Not required Partial Partial Partial
A SQL injection vulnerability in the user and admin web interfaces of Sophos XG Firewall v18.0 MR1 and older potentially allows an attacker to run arbitrary code remotely. The fix is built into the re-release of XG Firewall v18 MR-1 (named MR-1-Build396) and the v17.5 MR13 release. All other versions >= 17.0 have received a hotfix.
180 CVE-2020-15503 20 2020-07-02 2020-08-19
5.0
None Remote Low Not required None None Partial
LibRaw before 0.20-RC1 lacks a thumbnail size range check. This affects decoders/unpack_thumb.cpp, postprocessing/mem_image.cpp, and utils/thumb_utils.cpp. For example, malloc(sizeof(libraw_processed_image_t)+T.tlength) occurs without validating T.tlength.
181 CVE-2020-15502 200 +Info 2020-07-02 2020-07-14
5.0
None Remote Low Not required Partial None None
** DISPUTED ** The DuckDuckGo application through 5.58.0 for Android, and through 7.47.1.0 for iOS, sends hostnames of visited web sites within HTTPS .ico requests to servers in the duckduckgo.com domain, which might make visit data available temporarily at a Potentially Unwanted Endpoint. NOTE: the vendor has stated "the favicon service adheres to our strict privacy policy."
182 CVE-2020-15500 79 XSS 2020-07-01 2021-04-15
4.3
None Remote Medium Not required None Partial None
An issue was discovered in server.js in TileServer GL through 3.0.0. The content of the key GET parameter is reflected unsanitized in an HTTP response for the application's main page, causing reflected XSS.
183 CVE-2020-15497 79 XSS 2020-07-17 2022-01-01
4.3
None Remote Medium Not required None Partial None
** DISPUTED ** jcore/portal/ajaxPortal.jsp in Jalios JCMS 10.0.2 build-20200224104759 allows XSS via the types parameter. Note: It is asserted that this vulnerability is not present in the standard installation of Jalios JCMS.
184 CVE-2020-15492 22 Dir. Trav. 2020-07-23 2020-07-28
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in INNEO Startup TOOLS 2017 M021 12.0.66.3784 through 2018 M040 13.0.70.3804. The sut_srv.exe web application (served on TCP port 85) includes user input into a filesystem access without any further validation. This might allow an unauthenticated attacker to read files on the server via Directory Traversal, or possibly have unspecified other impact.
185 CVE-2020-15490 120 Exec Code Overflow 2020-07-01 2020-07-09
10.0
None Remote Low Not required Complete Complete Complete
An issue was discovered on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices. Multiple buffer overflow vulnerabilities exist in CGI scripts, leading to remote code execution with root privileges. (The set of affected scripts is similar to CVE-2020-12266.)
186 CVE-2020-15489 74 Exec Code 2020-07-01 2021-07-21
10.0
None Remote Low Not required Complete Complete Complete
An issue was discovered on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices. Multiple shell metacharacter injection vulnerabilities exist in CGI scripts, leading to remote code execution with root privileges.
187 CVE-2020-15478 200 +Info 2020-07-01 2021-07-21
5.0
None Remote Low Not required Partial None None
The Journal theme before 3.1.0 for OpenCart allows exposure of sensitive data via SQL errors.
188 CVE-2020-15477 74 Exec Code 2020-07-23 2021-07-21
10.0
None Remote Low Not required Complete Complete Complete
The WebControl in RaspberryTortoise through 2012-10-28 is vulnerable to remote code execution via shell metacharacters in a URI. The file nodejs/raspberryTortoise.js has no validation on the parameter incomingString before passing it to the child_process.exec function.
189 CVE-2020-15476 125 2020-07-01 2020-08-30
5.0
None Remote Low Not required None None Partial
In nDPI through 3.2, the Oracle protocol dissector has a heap-based buffer over-read in ndpi_search_oracle in lib/protocols/oracle.c.
190 CVE-2020-15475 416 2020-07-01 2020-07-06
7.5
None Remote Low Not required Partial Partial Partial
In nDPI through 3.2, ndpi_reset_packet_line_info in lib/ndpi_main.c omits certain reinitialization, leading to a use-after-free.
191 CVE-2020-15474 787 Overflow 2020-07-01 2020-07-06
7.5
None Remote Low Not required Partial Partial Partial
In nDPI through 3.2, there is a stack overflow in extractRDNSequence in lib/protocols/tls.c.
192 CVE-2020-15473 125 2020-07-01 2020-07-06
6.4
None Remote Low Not required Partial None Partial
In nDPI through 3.2, the OpenVPN dissector is vulnerable to a heap-based buffer over-read in ndpi_search_openvpn in lib/protocols/openvpn.c.
193 CVE-2020-15472 125 2020-07-01 2020-07-06
6.4
None Remote Low Not required Partial None Partial
In nDPI through 3.2, the H.323 dissector is vulnerable to a heap-based buffer over-read in ndpi_search_h323 in lib/protocols/h323.c, as demonstrated by a payload packet length that is too short.
194 CVE-2020-15471 125 2020-07-01 2020-07-06
6.4
None Remote Low Not required Partial None Partial
In nDPI through 3.2, the packet parsing code is vulnerable to a heap-based buffer over-read in ndpi_parse_packet_line_info in lib/ndpi_main.c.
195 CVE-2020-15470 787 Overflow 2020-07-01 2020-07-06
4.3
None Remote Medium Not required None None Partial
ffjpeg through 2020-02-24 has a heap-based buffer overflow in jfif_decode in jfif.c.
196 CVE-2020-15469 476 2020-07-02 2021-02-24
2.1
None Local Low Not required None None Partial
In QEMU 4.2.0, a MemoryRegionOps object may lack read/write callback methods, leading to a NULL pointer dereference.
197 CVE-2020-15468 89 Sql 2020-07-01 2020-07-07
7.5
None Remote Low Not required Partial Partial Partial
Persian VIP Download Script 1.0 allows SQL Injection via the cart_edit.php active parameter.
198 CVE-2020-15466 835 2020-07-05 2021-02-10
5.0
None Remote Low Not required None None Partial
In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.c by ensuring that an offset increases in all situations.
199 CVE-2020-15435 78 Exec Code 2020-07-28 2020-07-29
10.0
None Remote Low Not required Complete Complete Complete
This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_dashboard.php. When parsing the service_start parameter, the process does not properly validate a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-9719.
200 CVE-2020-15434 78 Exec Code 2020-07-28 2020-07-29
10.0
None Remote Low Not required Complete Complete Complete
This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajax_php_pecl.php. When parsing the canal parameter, the process does not properly validate a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-9745.
Total number of vulnerabilities : 1418   Page : 1 2 3 4 (This Page)5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.