CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In February 2020

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
251 CVE-2020-7968 287 2020-02-05 2021-07-21
5.0
None Remote Low Not required Partial None None
GitLab EE 8.0 through 12.7.2 has Incorrect Access Control.
252 CVE-2020-7967 276 2020-02-05 2020-02-06
4.0
None Remote Low ??? Partial None None
GitLab EE 8.0 through 12.7.2 has Insecure Permissions (issue 1 of 2).
253 CVE-2020-7966 22 Dir. Trav. 2020-02-05 2020-02-07
5.0
None Remote Low Not required Partial None None
GitLab EE 11.11 and later through 12.7.2 allows Directory Traversal.
254 CVE-2020-7959 200 +Info 2020-02-17 2021-07-21
5.0
None Remote Low Not required Partial None None
LabVantage LIMS 8.3 does not properly maintain the confidentiality of database names. For example, the web application exposes the database name. An attacker might be able to enumerate database names by providing his own database name in a request, because the response will return an 'Unrecognized Database exception message if the database does not exist.
255 CVE-2020-7957 20 DoS 2020-02-12 2022-01-01
5.0
None Remote Low Not required None None Partial
The IMAP and LMTP components in Dovecot 2.3.9 before 2.3.9.3 mishandle snippet generation when many characters must be read to compute the snippet and a trailing > character exists. This causes a denial of service in which the recipient cannot read all of their messages.
256 CVE-2020-7954 269 2020-02-06 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
An issue was discovered in OpServices OpMon 9.3.2. Starting from the apache user account, it is possible to perform privilege escalation through the lack of correct configuration in the server's sudoers file, which by default allows the execution of programs (e.g. nmap) without the need for a password with sudo.
257 CVE-2020-7953 306 2020-02-06 2020-02-11
5.0
None Remote Low Not required Partial None None
An issue was discovered in OpServices OpMon 9.3.2. Without authentication, it is possible to read server files (e.g., /etc/passwd) due to the use of the nmap -iL (aka input file) option.
258 CVE-2020-7942 295 2020-02-19 2021-12-30
4.0
None Remote Low ??? Partial None None
Previously, Puppet operated on a model that a node with a valid certificate was entitled to all information in the system and that a compromised certificate allowed access to everything in the infrastructure. When a node's catalog falls back to the `default` node, the catalog can be retrieved for a different node by modifying facts for the Puppet run. This issue can be mitigated by setting `strict_hostname_checking = true` in `puppet.conf` on your Puppet master. Puppet 6.13.0 and 5.5.19 changes the default behavior for strict_hostname_checking from false to true. It is recommended that Puppet Open Source and Puppet Enterprise users that are not upgrading still set strict_hostname_checking to true to ensure secure behavior. Affected software versions: Puppet 6.x prior to 6.13.0 Puppet Agent 6.x prior to 6.13.0 Puppet 5.5.x prior to 5.5.19 Puppet Agent 5.5.x prior to 5.5.19 Resolved in: Puppet 6.13.0 Puppet Agent 6.13.0 Puppet 5.5.19 Puppet Agent 5.5.19
259 CVE-2020-7920 400 DoS 2020-02-06 2021-07-21
7.8
None Remote Low Not required None None Complete
pmm-server in Percona Monitoring and Management (PMM) 2.2.x before 2.2.1 allows unauthenticated denial of service.
260 CVE-2020-7907 200 +Info 2020-02-21 2021-07-21
5.0
None Remote Low Not required Partial None None
In the JetBrains Scala plugin before 2019.2.1, some artefact dependencies were resolved over unencrypted connections.
261 CVE-2020-7796 918 2020-02-18 2020-02-24
6.8
None Remote Medium Not required Partial Partial Partial
Zimbra Collaboration Suite (ZCS) before 8.8.15 Patch 7 allows SSRF when WebEx zimlet is installed and zimlet JSP is enabled.
262 CVE-2020-7597 78 Exec Code 2020-02-17 2020-02-20
6.5
None Remote Low ??? Partial Partial Partial
codecov-node npm module before 3.6.5 allows remote attackers to execute arbitrary commands.The value provided as part of the gcov-root argument is executed by the exec function within lib/codecov.js. This vulnerability exists due to an incomplete fix of CVE-2020-7596.
263 CVE-2020-7471 89 Sql Bypass 2020-02-03 2020-06-19
7.5
None Remote Low Not required Partial Partial Partial
Django 1.11 before 1.11.28, 2.2 before 2.2.10, and 3.0 before 3.0.3 allows SQL Injection if untrusted data is used as a StringAgg delimiter (e.g., in Django applications that offer downloads of data as a series of rows with a user-specified column delimiter). By passing a suitably crafted delimiter to a contrib.postgres.aggregates.StringAgg instance, it was possible to break escaping and inject malicious SQL.
264 CVE-2020-7450 787 Exec Code Overflow 2020-02-18 2020-03-05
7.5
None Remote Low Not required Partial Partial Partial
In FreeBSD 12.1-STABLE before r357213, 12.1-RELEASE before 12.1-RELEASE-p2, 12.0-RELEASE before 12.0-RELEASE-p13, 11.3-STABLE before r357214, and 11.3-RELEASE before 11.3-RELEASE-p6, URL handling in libfetch with URLs containing username and/or password components is vulnerable to a heap buffer overflow allowing program misbehavior or malicious code execution.
265 CVE-2020-7252 428 DoS 2020-02-17 2020-02-28
1.9
None Local Medium Not required None None Partial
Unquoted service executable path in DXL Broker in McAfee Data eXchange Layer (DXL) Framework 6.0.0 and earlier allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.
266 CVE-2020-7251 863 2020-02-14 2020-02-27
2.1
None Local Low Not required None Partial None
Improper access control vulnerability in Configuration Tool in McAfee Mcafee Endpoint Security (ENS) Prior to 10.6.1 February 2020 Update allows local users to disable security features via unauthorised use of the configuration tool from older versions of ENS.
267 CVE-2020-7221 269 2020-02-04 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
mysql_install_db in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of auth_pam_tool_dir/auth_pam_tool. NOTE: this does not affect the Oracle MySQL product, which implements mysql_install_db differently.
268 CVE-2020-7217 401 DoS 2020-02-11 2022-01-01
5.0
None Remote Low Not required None None Partial
An ni_dhcp4_fsm_process_dhcp4_packet memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets with a different client-id.
269 CVE-2020-7216 772 DoS 2020-02-05 2021-07-21
5.0
None Remote Low Not required None None Partial
An ni_dhcp4_parse_response memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets without a message type option.
270 CVE-2020-7209 Exec Code 2020-02-13 2022-01-01
7.5
None Remote Low Not required Partial Partial Partial
LinuxKI v6.0-1 and earlier is vulnerable to an remote code execution which is resolved in release 6.0-2.
271 CVE-2020-7208 79 XSS 2020-02-13 2020-02-18
4.3
None Remote Medium Not required None Partial None
LinuxKI v6.0-1 and earlier is vulnerable to an XSS which is resolved in release 6.0-2.
272 CVE-2020-7063 281 2020-02-27 2022-05-08
5.0
None Remote Low Not required None Partial None
In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when creating PHAR archive using PharData::buildFromIterator() function, the files are added with default permissions (0666, or all access) even if the original files on the filesystem were with more restrictive permissions. This may result in files having more lax permissions than intended when such archive is extracted.
273 CVE-2020-7062 476 2020-02-27 2022-01-01
4.3
None Remote Medium Not required None None Partial
In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when using file upload functionality, if upload progress tracking is enabled, but session.upload_progress.cleanup is set to 0 (disabled), and the file upload fails, the upload procedure would try to clean up data that does not exist and encounter null pointer dereference, which would likely lead to a crash.
274 CVE-2020-7061 125 2020-02-27 2022-05-16
6.4
None Remote Low Not required Partial None Partial
In PHP versions 7.3.x below 7.3.15 and 7.4.x below 7.4.3, while extracting PHAR files on Windows using phar extension, certain content inside PHAR file could lead to one-byte read past the allocated buffer. This could potentially lead to information disclosure or crash.
275 CVE-2020-7060 125 2020-02-10 2022-07-01
6.4
None Remote Low Not required Partial None Partial
When using certain mbstring functions to convert multibyte encodings, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause function mbfl_filt_conv_big5_wchar to read past the allocated buffer. This may lead to information disclosure or crash.
276 CVE-2020-7059 125 2020-02-10 2022-07-01
6.4
None Remote Low Not required Partial None Partial
When using fgetss() function to read data with stripping tags, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause this function to read past the allocated buffer. This may lead to information disclosure or crash.
277 CVE-2020-7051 79 XSS 2020-02-13 2020-02-18
4.3
None Remote Medium Not required None Partial None
Codologic Codoforum through 4.8.4 allows stored XSS in the login area. This is relevant in conjunction with CVE-2020-5842 because session cookies lack the HttpOnly flag. The impact is account takeover.
278 CVE-2020-7050 79 XSS 2020-02-15 2020-02-20
3.5
None Remote Medium ??? None Partial None
Codologic Codoforum through 4.8.4 allows a DOM-based XSS. While creating a new topic as a normal user, it is possible to add a poll that is automatically loaded in the DOM once the thread/topic is opened. Because session cookies lack the HttpOnly flag, it is possible to steal authentication cookies and take over accounts.
279 CVE-2020-7046 835 2020-02-12 2021-12-30
7.8
None Remote Low Not required None None Complete
lib-smtp in submission-login and lmtp in Dovecot 2.3.9 before 2.3.9.3 mishandles truncated UTF-8 data in command parameters, as demonstrated by the unauthenticated triggering of a submission-login infinite loop.
280 CVE-2020-7043 295 2020-02-27 2020-10-09
6.4
None Remote Low Not required Partial Partial None
An issue was discovered in openfortivpn 1.11.0 when used with OpenSSL before 1.0.2. tunnel.c mishandles certificate validation because hostname comparisons do not consider '\0' characters, as demonstrated by a good.example.com\x00evil.example.com attack.
281 CVE-2020-7042 295 2020-02-27 2021-07-21
5.0
None Remote Low Not required None Partial None
An issue was discovered in openfortivpn 1.11.0 when used with OpenSSL 1.0.2 or later. tunnel.c mishandles certificate validation because the hostname check operates on uninitialized memory. The outcome is that a valid certificate is never accepted (only a malformed certificate may be accepted).
282 CVE-2020-7041 295 2020-02-27 2020-10-09
5.0
None Remote Low Not required None Partial None
An issue was discovered in openfortivpn 1.11.0 when used with OpenSSL 1.0.2 or later. tunnel.c mishandles certificate validation because an X509_check_host negative error code is interpreted as a successful return value.
283 CVE-2020-6977 20 2020-02-20 2020-03-05
7.2
None Local Low Not required Complete Complete Complete
A restricted desktop environment escape vulnerability exists in the Kiosk Mode functionality of affected devices. Specially crafted inputs can allow the user to escape the restricted environment, resulting in access to the underlying operating system. Affected devices include the following GE Ultrasound Products: Vivid products - all versions; LOGIQ - all versions not including LOGIQ 100 Pro; Voluson - all versions; Versana Essential - all versions; Invenia ABUS Scan station - all versions; Venue - all versions not including Venue 40 R1-3 and Venue 50 R4-5
284 CVE-2020-6975 434 2020-02-12 2020-02-21
4.0
None Remote Low ??? None Partial None
Digi International ConnectPort LTS 32 MEI, Firmware Version 1.4.3 (82002228_K 08/09/2018), bios Version 1.2. Successful exploitation of this vulnerability could allow an attacker to upload a malicious file to the application.
285 CVE-2020-6973 79 XSS 2020-02-13 2020-02-21
6.3
None Remote Medium ??? None None Complete
Digi International ConnectPort LTS 32 MEI, Firmware Version 1.4.3 (82002228_K 08/09/2018), bios Version 1.2. Multiple cross-site scripting vulnerabilities exist that could allow an attacker to cause a denial-of-service condition.
286 CVE-2020-6970 787 Exec Code Overflow 2020-02-19 2020-02-28
7.5
None Remote Low Not required Partial Partial Partial
A Heap-based Buffer Overflow was found in Emerson OpenEnterprise SCADA Server 2.83 (if Modbus or ROC Interfaces have been installed and are in use) and all versions of OpenEnterprise 3.1 through 3.3.3, where a specially crafted script could execute code on the OpenEnterprise Server.
287 CVE-2020-6969 522 2020-02-05 2020-02-14
10.0
None Remote Low Not required Complete Complete Complete
It is possible to unmask credentials and other sensitive information on “unprotected” project files, which may allow an attacker to remotely access the C-More Touch Panels EA9 series: firmware versions prior to 6.53 and manipulate system configurations.
288 CVE-2020-6968 269 2020-02-20 2020-02-28
4.6
None Local Low Not required Partial Partial Partial
Honeywell INNCOM INNControl 3 allows workstation users to escalate application user privileges through the modification of local configuration files.
289 CVE-2020-6864 200 +Info 2020-02-27 2021-07-21
3.3
None Local Network Low Not required Partial None None
ZTE E8820V3 router product is impacted by an information leak vulnerability. Attackers could use this vulnerability to to gain wireless passwords. After obtaining the wireless password, the attacker could collect information and attack the router.
290 CVE-2020-6863 732 2020-02-27 2021-07-21
3.3
None Local Network Low Not required None None Partial
ZTE E8820V3 router product is impacted by a permission and access control vulnerability. Attackers could use this vulnerability to tamper with DDNS parameters and send DoS attacks on the specified URL.
291 CVE-2020-6856 776 2020-02-06 2020-02-07
4.0
None Remote Low ??? Partial None None
An XML External Entity (XEE) vulnerability exists in the JOC Cockpit component of SOS JobScheduler 1.12 and 1.13.2 allows attackers to read files from the server via an entity declaration in any of the XML documents that are used to specify the run-time settings of jobs and orders.
292 CVE-2020-6855 835 DoS 2020-02-06 2020-02-07
6.8
None Remote Low ??? None None Complete
A large or infinite loop vulnerability in the JOC Cockpit component of SOS JobScheduler 1.11 and 1.13.2 allows attackers to parameterize housekeeping jobs in a way that exhausts system resources and results in a denial of service.
293 CVE-2020-6854 79 XSS 2020-02-05 2020-02-07
3.5
None Remote Medium ??? None Partial None
A cross-site scripting (XSS) vulnerability in the JOC Cockpit component of SOS JobScheduler 1.11 and 1.13.2 allows attackers to inject arbitrary web script or HTML via JSON properties available from the REST API.
294 CVE-2020-6850 79 XSS 2020-02-17 2020-02-20
4.3
None Remote Medium Not required None Partial None
Utilities.php in the miniorange-saml-20-single-sign-on plugin before 4.8.84 for WordPress allows XSS via a crafted SAML XML Response to wp-login.php. This is related to the SAMLResponse and RelayState variables, and the Destination parameter of the samlp:Response XML element.
295 CVE-2020-6845 79 XSS 2020-02-18 2020-02-26
4.3
None Remote Medium Not required None Partial None
An issue was discovered in TopManage OLK 2020. As there is no ReadOnly on the Session cookie, the user and admin accounts can be taken over in a DOM-Based XSS attack.
296 CVE-2020-6844 352 CSRF 2020-02-18 2020-02-27
6.8
None Remote Medium Not required Partial Partial Partial
In TopManage OLK 2020, login CSRF can be chained with another vulnerability in order to takeover admin and user accounts.
297 CVE-2020-6842 78 Exec Code 2020-02-21 2020-02-25
9.0
None Remote Low ??? Complete Complete Complete
D-Link DCH-M225 1.05b01 and earlier devices allow remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the media renderer name.
298 CVE-2020-6841 78 Exec Code 2020-02-21 2020-02-25
10.0
None Remote Low Not required Complete Complete Complete
D-Link DCH-M225 1.05b01 and earlier devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the spotifyConnect.php userName parameter.
299 CVE-2020-6833 200 Bypass +Info 2020-02-05 2021-07-21
5.0
None Remote Low Not required Partial None None
An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request smuggling.
300 CVE-2020-6804 79 XSS 2020-02-28 2020-03-03
4.3
None Remote Medium Not required None Partial None
A reflected XSS vulnerability exists within the gateway, allowing an attacker to craft a specialized URL which could steal the user's authentication token. When combined with CVE-2020-6803, an attacker could fully compromise the system.
Total number of vulnerabilities : 1395   Page : 1 2 3 4 5 6 (This Page)7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.