diff options
author | security tracker role <sectracker@soriano.debian.org> | 2020-04-07 20:10:25 +0000 |
---|---|---|
committer | security tracker role <sectracker@soriano.debian.org> | 2020-04-07 20:10:25 +0000 |
commit | dd4400f1db870786894aaffb39d8ce0dc54669f1 (patch) | |
tree | d7de7b31ce90e5331ee41532eea6dd0a519c5ac9 /data/CVE/2020.list | |
parent | 5bec588651f967488b2ae49a8f843fd77f62d332 (diff) |
automatic update
Diffstat (limited to 'data/CVE/2020.list')
-rw-r--r-- | data/CVE/2020.list | 133 |
1 files changed, 81 insertions, 52 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list index 483b6572c8..379c2bd07c 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -1,3 +1,37 @@ +CVE-2020-11616 + RESERVED +CVE-2020-11615 + RESERVED +CVE-2020-11614 + RESERVED +CVE-2020-11613 + RESERVED +CVE-2020-11612 (The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memo ...) + TODO: check +CVE-2020-11611 (An issue was discovered in xdLocalStorage through 2.0.5. The buildMess ...) + TODO: check +CVE-2020-11610 (An issue was discovered in xdLocalStorage through 2.0.5. The postData( ...) + TODO: check +CVE-2020-11609 (An issue was discovered in the stv06xx subsystem in the Linux kernel b ...) + TODO: check +CVE-2020-11608 (An issue was discovered in the Linux kernel before 5.6.1. drivers/medi ...) + TODO: check +CVE-2020-11607 + RESERVED +CVE-2020-11606 + RESERVED +CVE-2020-11605 + RESERVED +CVE-2020-11604 + RESERVED +CVE-2020-11603 + RESERVED +CVE-2020-11602 + RESERVED +CVE-2020-11601 + RESERVED +CVE-2020-11600 + RESERVED CVE-2020-11599 (An issue was discovered in CIPPlanner CIPAce 6.80 Build 2016031401. Ge ...) NOT-FOR-US: CIPPlanner CVE-2020-11598 (An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. Upl ...) @@ -75,10 +109,10 @@ CVE-2020-11563 RESERVED CVE-2020-11562 RESERVED -CVE-2020-11561 - RESERVED -CVE-2020-11560 - RESERVED +CVE-2020-11561 (In NCH Express Invoice 7.25, an authenticated low-privilege user can e ...) + TODO: check +CVE-2020-11560 (NCH Express Invoice 7.25 allows local users to discover the cleartext ...) + TODO: check CVE-2020-11559 RESERVED CVE-2020-11558 (An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by ...) @@ -168,24 +202,24 @@ CVE-2020-11518 (Zoho ManageEngine ADSelfService Plus before 5815 allows unauthen NOT-FOR-US: Zoho CVE-2020-11517 RESERVED -CVE-2020-11516 - RESERVED -CVE-2020-11515 - RESERVED -CVE-2020-11514 - RESERVED +CVE-2020-11516 (Stored XSS in the Contact Form 7 Datepicker plugin through 2.6.0 for W ...) + TODO: check +CVE-2020-11515 (The Rank Math plugin through 1.0.40.2 for WordPress allows unauthentic ...) + TODO: check +CVE-2020-11514 (The Rank Math plugin through 1.0.40.2 for WordPress allows unauthentic ...) + TODO: check CVE-2020-11513 RESERVED -CVE-2020-11512 - RESERVED +CVE-2020-11512 (Stored XSS in the IMPress for IDX Broker WordPress plugin before 2.6.2 ...) + TODO: check CVE-2020-11511 RESERVED CVE-2020-11510 RESERVED -CVE-2020-11509 - RESERVED -CVE-2020-11508 - RESERVED +CVE-2020-11509 (An XSS vulnerability in the WP Lead Plus X plugin through 0.98 for Wor ...) + TODO: check +CVE-2020-11508 (An XSS vulnerability in the WP Lead Plus X plugin through 0.98 for Wor ...) + TODO: check CVE-2020-11507 (An Untrusted Search Path vulnerability in Malwarebytes AdwCleaner 8.0. ...) NOT-FOR-US: Malwarebytes AdwCleaner CVE-2020-11506 @@ -4454,8 +4488,8 @@ CVE-2020-9516 RESERVED CVE-2020-9515 RESERVED -CVE-2020-9514 - RESERVED +CVE-2020-9514 (An issue was discovered in the IMPress for IDX Broker plugin before 2. ...) + TODO: check CVE-2020-9513 RESERVED CVE-2020-9512 @@ -4999,8 +5033,8 @@ CVE-2020-9288 RESERVED CVE-2020-9287 (An Unsafe Search Path vulnerability in FortiClient EMS online installe ...) NOT-FOR-US: Fortiguard -CVE-2020-9286 - RESERVED +CVE-2020-9286 (An improper authorization vulnerability in FortiADC may allow a remote ...) + TODO: check CVE-2020-9285 RESERVED CVE-2020-9284 @@ -7563,8 +7597,8 @@ CVE-2020-8098 RESERVED CVE-2020-8097 RESERVED -CVE-2020-8096 - RESERVED +CVE-2020-8096 (Untrusted Search Path vulnerability in Bitdefender High-Level Antimalw ...) + TODO: check CVE-2020-8095 (A vulnerability in the improper handling of junctions before deletion ...) NOT-FOR-US: Bitdefender Total Security CVE-2020-8094 @@ -8563,18 +8597,18 @@ CVE-2020-7620 (pomelo-monitor through 0.3.7 is vulnerable to Command Injection.I NOT-FOR-US: Node pomelo-monitor CVE-2020-7619 (get-git-data through 1.3.1 is vulnerable to Command Injection. It is p ...) NOT-FOR-US: get-git-data node module -CVE-2020-7618 - RESERVED +CVE-2020-7618 (sds through 3.2.0 is vulnerable to Prototype Pollution.The library cou ...) + TODO: check CVE-2020-7617 (ini-parser through 0.0.2 is vulnerable to Prototype Pollution.The libr ...) NOT-FOR-US: Node ini-parser -CVE-2020-7616 - RESERVED -CVE-2020-7615 - RESERVED -CVE-2020-7614 - RESERVED -CVE-2020-7613 - RESERVED +CVE-2020-7616 (express-mock-middleware through 0.0.6 is vulnerable to Prototype Pollu ...) + TODO: check +CVE-2020-7615 (fsa through 0.5.1 is vulnerable to Command Injection. The first argume ...) + TODO: check +CVE-2020-7614 (npm-programmatic through 0.0.12 is vulnerable to Command Injection.The ...) + TODO: check +CVE-2020-7613 (clamscan through 1.2.0 is vulnerable to Command Injection. It is possi ...) + TODO: check CVE-2020-7612 RESERVED CVE-2020-7611 (All versions of io.micronaut:micronaut-http-client before 1.2.11 and a ...) @@ -10010,8 +10044,8 @@ CVE-2020-6976 (Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and pr NOT-FOR-US: Delta Industrial Automation CNCSoft ScreenEditor CVE-2020-6975 (Digi International ConnectPort LTS 32 MEI, Firmware Version 1.4.3 (820 ...) NOT-FOR-US: Digi International ConnectPort LTS 32 MEI -CVE-2020-6974 - RESERVED +CVE-2020-6974 (Honeywell Notifier Web Server (NWS) Version 3.50 is vulnerable to a pa ...) + TODO: check CVE-2020-6973 (Digi International ConnectPort LTS 32 MEI, Firmware Version 1.4.3 (820 ...) NOT-FOR-US: Digi International ConnectPort LTS 32 MEI CVE-2020-6972 (In Notifier Web Server (NWS) Version 3.50 and earlier, the Honeywell F ...) @@ -10797,8 +10831,8 @@ CVE-2020-6649 RESERVED CVE-2020-6648 RESERVED -CVE-2020-6647 - RESERVED +CVE-2020-6647 (An improper neutralization of input vulnerability in the dashboard of ...) + TODO: check CVE-2020-6646 (An improper neutralization of input vulnerability in FortiWeb allows a ...) NOT-FOR-US: Fortiguard CVE-2020-6645 @@ -11896,8 +11930,8 @@ CVE-2020-6173 (TUF (aka The Update Framework) 0.7.2 through 0.12.1 allows Uncont - python-tuf <itp> (bug #934151) CVE-2020-6172 RESERVED -CVE-2020-6171 - RESERVED +CVE-2020-6171 (A cross-site scripting (XSS) vulnerability in the index page of the CL ...) + TODO: check CVE-2020-6170 (An authentication bypass vulnerability on Genexis Platinum-4410 v2.1 P ...) NOT-FOR-US: Genexis CVE-2020-6169 @@ -12794,8 +12828,8 @@ CVE-2020-5736 RESERVED CVE-2020-5735 RESERVED -CVE-2020-5734 - RESERVED +CVE-2020-5734 (Classic buffer overflow in SolarWinds Dameware allows a remote, unauth ...) + TODO: check CVE-2020-5733 RESERVED CVE-2020-5732 @@ -13698,8 +13732,8 @@ CVE-2020-5304 RESERVED CVE-2020-5303 RESERVED -CVE-2020-5302 - RESERVED +CVE-2020-5302 (MH-WikiBot (an IRC Bot for interacting with the Miraheze API), had a b ...) + TODO: check CVE-2020-5301 RESERVED CVE-2020-5300 (In Hydra (an OAuth2 Server and OpenID Certified™ OpenID Connect ...) @@ -20160,20 +20194,15 @@ CVE-2020-2178 RESERVED CVE-2020-2177 RESERVED -CVE-2020-2176 - RESERVED +CVE-2020-2176 (Multiple form validation endpoints in Jenkins useMango Runner Plugin 1 ...) NOT-FOR-US: Jenkins plugin -CVE-2020-2175 - RESERVED +CVE-2020-2175 (Jenkins FitNesse Plugin 1.31 and earlier does not correctly escape rep ...) NOT-FOR-US: Jenkins plugin -CVE-2020-2174 - RESERVED +CVE-2020-2174 (Jenkins AWSEB Deployment Plugin 0.3.19 and earlier does not escape var ...) NOT-FOR-US: Jenkins plugin -CVE-2020-2173 - RESERVED +CVE-2020-2173 (Jenkins Gatling Plugin 1.2.7 and earlier prevents Content-Security-Pol ...) NOT-FOR-US: Jenkins plugin -CVE-2020-2172 - RESERVED +CVE-2020-2172 (Jenkins Code Coverage API Plugin 1.1.4 and earlier does not configure ...) NOT-FOR-US: Jenkins plugin CVE-2020-2171 (Jenkins RapidDeploy Plugin 4.2 and earlier does not configure its XML ...) NOT-FOR-US: Jenkins plugin |