CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In April 2020

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
201 CVE-2020-11709 74 Http R.Spl. 2020-04-12 2020-04-13
5.0
None Remote Low Not required None Partial None
cpp-httplib through 0.5.8 does not filter \r\n in parameters passed into the set_redirect and set_header functions, which creates possibilities for CRLF injection and HTTP response splitting in some specific contexts.
202 CVE-2020-11708 269 2020-04-12 2020-04-13
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in ProVide (formerly zFTPServer) through 13.1. Privilege escalation can occur via the /ajax/SetUserInfo messages parameter because of the EXECUTE() feature, which is for executing programs when certain events are triggered.
203 CVE-2020-11707 20 2020-04-12 2021-07-21
6.5
None Remote Low ??? Partial Partial Partial
An issue was discovered in ProVide (formerly zFTPServer) through 13.1. It doesn't enforce permission over Windows Symlinks or Junctions. As a result, a low-privileged user (non-admin) can craft a Junction Link in a directory he has full control of, breaking out of the sandbox.
204 CVE-2020-11706 352 CSRF 2020-04-12 2020-04-13
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in ProVide (formerly zFTPServer) through 13.1. The Admin Interface allows CSRF for actions such as: Change any username and password, admin ones included; Create/Delete users; Enable/Disable Services; Set a rogue update proxy; and Shutdown the server.
205 CVE-2020-11705 22 Dir. Trav. 2020-04-12 2020-04-13
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in ProVide (formerly zFTPServer) through 13.1. /ajax/ImportCertificate allows an attacker to load an arbitrary certificate in .pfx format or overwrite arbitrary files via the fileName parameter.
206 CVE-2020-11704 79 XSS 2020-04-12 2020-04-13
4.3
None Remote Medium Not required None Partial None
An issue was discovered in ProVide (formerly zFTPServer) through 13.1. The Admin Web Interface has Multiple Stored and Reflected XSS. GetInheritedProperties is Reflected via the groups parameter. GetUserInfo is Reflected via POST data. SetUserInfo is Stored via the general parameter.
207 CVE-2020-11703 74 Http R.Spl. 2020-04-12 2020-04-13
5.0
None Remote Low Not required None Partial None
An issue was discovered in ProVide (formerly zFTPServer) through 13.1. /ajax/GetInheritedProperties allows HTTP Response Splitting via the language parameter.
208 CVE-2020-11702 79 XSS 2020-04-12 2020-04-13
4.3
None Remote Medium Not required None Partial None
An issue was discovered in ProVide (formerly zFTPServer) through 13.1. The User Web Interface has Multiple Stored and Reflected XSS issues. Collaborate is Reflected via the filename parameter. Collaborate is Stored via the displayname parameter. Deletemultiple is Reflected via the files parameter. Share is Reflected via the target parameter. Share is Stored via the displayname parameter. Waitedit is Reflected via the Host header.
209 CVE-2020-11701 352 CSRF 2020-04-12 2020-04-13
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in ProVide (formerly zFTPServer) through 13.1. CSRF exists in the User Web Interface, as demonstrated by granting filesystem access to the public for uploading and deleting files and directories.
210 CVE-2020-11694 312 2020-04-10 2022-04-06
5.0
None Remote Low Not required Partial None None
In JetBrains PyCharm 2019.2.5 and 2019.3 on Windows, Apple Notarization Service credentials were included. This is fixed in 2019.2.6 and 2019.3.3.
211 CVE-2020-11693 20 2020-04-22 2021-07-21
5.0
None Remote Low Not required None None Partial
JetBrains YouTrack before 2020.1.659 was vulnerable to DoS that could be caused by attaching a malformed TIFF file to an issue.
212 CVE-2020-11692 276 2020-04-22 2020-04-27
4.0
None Remote Low ??? None Partial None
In JetBrains YouTrack before 2020.1.659, DB export was accessible to read-only administrators.
213 CVE-2020-11691 20 2020-04-22 2021-07-21
5.0
None Remote Low Not required None Partial None
In JetBrains Hub before 2020.1.12099, content spoofing in the Hub OAuth error message was possible.
214 CVE-2020-11690 2020-04-22 2020-04-29
7.5
None Remote Low Not required Partial Partial Partial
In JetBrains IntelliJ IDEA before 2020.1, the license server could be resolved to an untrusted host in some cases.
215 CVE-2020-11689 276 2020-04-22 2020-04-27
4.0
None Remote Low ??? None Partial None
In JetBrains TeamCity before 2019.2.1, a user without appropriate permissions was able to import settings from the settings.kts file.
216 CVE-2020-11688 613 2020-04-22 2020-04-27
5.0
None Remote Low Not required None None Partial
In JetBrains TeamCity before 2019.2.1, the application state is kept alive after a user ends his session.
217 CVE-2020-11687 200 +Info 2020-04-22 2020-04-27
5.0
None Remote Low Not required Partial None None
In JetBrains TeamCity before 2019.2.2, password values were shown in an unmasked format on several pages.
218 CVE-2020-11686 200 +Info 2020-04-22 2021-07-21
4.0
None Remote Low ??? Partial None None
In JetBrains TeamCity before 2019.1.4, a project administrator was able to retrieve some TeamCity server settings.
219 CVE-2020-11685 311 2020-04-22 2021-07-21
5.0
None Remote Low Not required Partial None None
In JetBrains GoLand before 2019.3.2, the plugin repository was accessed via HTTP instead of HTTPS.
220 CVE-2020-11677 120 Overflow 2020-04-29 2020-05-04
5.8
None Local Network Low Not required Partial Partial Partial
Cerner medico 26.00 has a Local Buffer Overflow (issue 3 of 3).
221 CVE-2020-11676 120 Overflow 2020-04-29 2020-05-04
5.8
None Local Network Low Not required Partial Partial Partial
Cerner medico 26.00 has a Local Buffer Overflow (issue 2 of 3).
222 CVE-2020-11675 120 Overflow 2020-04-29 2020-05-04
5.8
None Local Network Low Not required Partial Partial Partial
Cerner medico 26.00 has a Local Buffer Overflow (issue 1 of 3).
223 CVE-2020-11674 20 2020-04-29 2021-07-21
5.8
None Local Network Low Not required Partial Partial Partial
Cerner medico 26.00 allows variable reuse, possibly causing data corruption.
224 CVE-2020-11673 287 2020-04-13 2021-07-21
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in the Responsive Poll through 1.3.4 for Wordpress. It allows an unauthenticated user to manipulate polls, e.g., delete, clone, or view a hidden poll. This is due to the usage of the callback wp_ajax_nopriv function in Includes/Total-Soft-Poll-Ajax.php for sensitive operations.
225 CVE-2020-11669 2020-04-10 2020-05-28
2.1
None Local Low Not required None None Partial
An issue was discovered in the Linux kernel before 5.2 on the powerpc platform. arch/powerpc/kernel/idle_book3s.S does not have save/restore functionality for PNV_POWERSAVE_AMR, PNV_POWERSAVE_UAMOR, and PNV_POWERSAVE_AMOR, aka CID-53a712bae5dd.
226 CVE-2020-11668 476 2020-04-09 2020-06-10
5.6
None Local Low Not required None Partial Complete
In the Linux kernel before 5.6.1, drivers/media/usb/gspca/xirlink_cit.c (aka the Xirlink camera USB driver) mishandles invalid descriptors, aka CID-a246b4d54770.
227 CVE-2020-11666 269 2020-04-15 2021-07-21
6.5
None Remote Low ??? Partial Partial Partial
CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows malicious users to elevate privileges.
228 CVE-2020-11665 601 2020-04-15 2020-04-20
5.8
None Remote Medium Not required Partial Partial None
CA API Developer Portal 4.3.1 and earlier handles loginRedirect page redirects in an insecure manner, which allows attackers to perform open redirect attacks.
229 CVE-2020-11664 601 2020-04-15 2020-04-20
5.8
None Remote Medium Not required Partial Partial None
CA API Developer Portal 4.3.1 and earlier handles homeRedirect page redirects in an insecure manner, which allows attackers to perform open redirect attacks.
230 CVE-2020-11663 601 2020-04-15 2020-04-20
5.8
None Remote Medium Not required Partial Partial None
CA API Developer Portal 4.3.1 and earlier handles 404 requests in an insecure manner, which allows attackers to perform open redirect attacks.
231 CVE-2020-11662 200 +Info 2020-04-15 2020-04-20
5.0
None Remote Low Not required Partial None None
CA API Developer Portal 4.3.1 and earlier handles requests insecurely, which allows remote attackers to exploit a Cross-Origin Resource Sharing flaw and access sensitive information.
232 CVE-2020-11661 269 2020-04-15 2021-07-21
5.5
None Remote Low ??? Partial Partial None
CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows privileged users to view and edit user data.
233 CVE-2020-11660 200 +Info 2020-04-15 2021-07-21
4.0
None Remote Low ??? Partial None None
CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows privileged users to view restricted sensitive information.
234 CVE-2020-11659 639 2020-04-15 2020-04-20
4.0
None Remote Low ??? None Partial None
CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows privileged users to perform a restricted user administration action.
235 CVE-2020-11658 639 Bypass 2020-04-15 2020-04-20
7.5
None Remote Low Not required Partial Partial Partial
CA API Developer Portal 4.3.1 and earlier handles shared secret keys in an insecure manner, which allows attackers to bypass authorization.
236 CVE-2020-11656 416 2020-04-09 2022-04-08
7.5
None Remote Low Not required Partial Partial Partial
In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement.
237 CVE-2020-11655 665 DoS 2020-04-09 2022-04-08
5.0
None Remote Low Not required None None Partial
SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a malformed window-function query because the AggInfo object's initialization is mishandled.
238 CVE-2020-11653 617 2020-04-08 2022-04-22
5.0
None Remote Low Not required None None Partial
An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There can be an assertion failure and daemon restart, which causes a performance loss.
239 CVE-2020-11652 22 Dir. Trav. 2020-04-30 2022-05-03
4.0
None Remote Low ??? Partial None None
An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs class allows access to some methods that improperly sanitize paths. These methods allow arbitrary directory access to authenticated users.
240 CVE-2020-11651 306 2020-04-30 2022-03-31
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs class does not properly validate method calls. This allows a remote user to access some methods without authentication. These methods can be used to retrieve user tokens from the salt master and/or run arbitrary commands on salt minions.
241 CVE-2020-11650 287 DoS 2020-04-08 2021-07-21
5.0
None Remote Low Not required None None Partial
An issue was discovered in iXsystems FreeNAS (and TrueNAS) 11.2 before 11.2-u8 and 11.3 before 11.3-U1. It allows a denial of service. The login authentication component has no limits on the length of an authentication message or the rate at which such messages are sent.
242 CVE-2020-11649 306 2020-04-22 2020-04-28
4.0
None Remote Low ??? Partial None None
An issue was discovered in GitLab CE and EE 8.15 through 12.9.2. Members of a group could still have access after the group is deleted.
243 CVE-2020-11647 74 2020-04-10 2021-07-21
5.0
None Remote Low Not required None None Partial
In Wireshark 3.2.0 to 3.2.2, 3.0.0 to 3.0.9, and 2.6.0 to 2.6.15, the BACapp dissector could crash. This was addressed in epan/dissectors/packet-bacapp.c by limiting the amount of recursion.
244 CVE-2020-11631 20 Exec Code 2020-04-08 2021-07-21
4.0
None Remote Low ??? None Partial None
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. An error state can be generated in the CA UI by a malicious user. This, in turn, allows exploitation of other bugs. This follow-on exploitation can lead to privilege escalation and remote code execution. (This is exploitable only when at least one accessible port lacks a requirement for client certificate authentication. These ports are 8442 or 8080 in a standard installation.)
245 CVE-2020-11630 502 2020-04-08 2020-04-08
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. In several sections of code, the verification of serialized objects sent between nodes (connected via the Peers protocol) allows insecure objects to be deserialized.
246 CVE-2020-11629 434 2020-04-08 2021-07-21
6.5
None Remote Low ??? Partial Partial Partial
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. The External Command Certificate Validator, which allows administrators to upload external linters to validate certificates, is supposed to save uploaded test certificates to the server. An attacker who has gained access to the CA UI could exploit this to upload malicious scripts to the server. (Risks associated with this issue alone are negligible unless a malicious user already has gained access to the CA UI through other means, as a trusted user is already trusted to upload scripts by virtue of having access to the validator.)
247 CVE-2020-11628 863 Bypass 2020-04-08 2020-04-08
5.0
None Remote Low Not required Partial None None
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. It is intended to support restriction of available remote protocols (CMP, ACME, REST, etc.) through the system configuration. These restrictions can be bypassed by modifying the URI string from a client. (EJBCA's internal access control restrictions are still in place, and each respective protocol must be configured to allow for enrollment.)
248 CVE-2020-11627 352 CSRF 2020-04-08 2020-04-08
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. A Cross Site Request Forgery (CSRF) issue has been found in the CA UI.
249 CVE-2020-11626 79 XSS 2020-04-08 2020-04-08
4.3
None Remote Medium Not required None Partial None
An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. Two Cross Side Scripting (XSS) vulnerabilities have been found in the Public Web and the Certificate/CRL download servlets.
250 CVE-2020-11620 502 2020-04-07 2021-02-22
6.8
None Remote Medium Not required Partial Partial Partial
FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.jelly.impl.Embedded (aka commons-jelly).
Total number of vulnerabilities : 2187   Page : 1 2 3 4 5 (This Page)6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.