CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In June 2020

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
651 CVE-2020-9804 2020-06-09 2020-06-11
4.9
None Local Low Not required None None Complete
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Catalina 10.15.5. Inserting a USB device that sends invalid messages may cause a kernel panic.
652 CVE-2020-9803 20 Exec Code Mem. Corr. 2020-06-09 2021-12-01
6.8
None Remote Medium Not required Partial Partial Partial
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to arbitrary code execution.
653 CVE-2020-9802 Exec Code 2020-06-09 2020-10-16
6.8
None Remote Medium Not required Partial Partial Partial
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to arbitrary code execution.
654 CVE-2020-9801 2020-06-09 2020-10-16
4.6
None Local Low Not required Partial Partial Partial
A logic issue was addressed with improved restrictions. This issue is fixed in Safari 13.1.1. A malicious process may cause Safari to launch an application.
655 CVE-2020-9800 843 Exec Code 2020-06-09 2020-06-11
6.8
None Remote Medium Not required Partial Partial Partial
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to arbitrary code execution.
656 CVE-2020-9797 200 +Info 2020-06-09 2021-07-21
4.3
None Remote Medium Not required Partial None None
An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to determine another application's memory layout.
657 CVE-2020-9795 416 Exec Code 2020-06-09 2020-06-11
9.3
None Remote Medium Not required Complete Complete Complete
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. An application may be able to execute arbitrary code with kernel privileges.
658 CVE-2020-9794 125 DoS 2020-06-09 2021-03-09
5.8
None Remote Medium Not required Partial None Partial
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. A malicious application may cause a denial of service or potentially disclose memory contents.
659 CVE-2020-9793 119 Exec Code Overflow Mem. Corr. 2020-06-09 2021-07-21
9.3
None Remote Medium Not required Complete Complete Complete
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A remote attacker may be able to cause arbitrary code execution.
660 CVE-2020-9792 20 DoS 2020-06-09 2020-06-11
2.1
None Local Low Not required None None Partial
A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5. A USB device may be able to cause a denial of service.
661 CVE-2020-9791 125 Exec Code 2020-06-09 2020-06-11
9.3
None Remote Medium Not required Complete Complete Complete
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. Processing a maliciously crafted audio file may lead to arbitrary code execution.
662 CVE-2020-9790 787 Exec Code 2020-06-09 2020-06-11
9.3
None Remote Medium Not required Complete Complete Complete
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing a maliciously crafted image may lead to arbitrary code execution.
663 CVE-2020-9789 787 Exec Code 2020-06-09 2020-06-11
9.3
None Remote Medium Not required Complete Complete Complete
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing a maliciously crafted image may lead to arbitrary code execution.
664 CVE-2020-9788 20 2020-06-09 2020-06-11
9.3
None Remote Medium Not required Complete Complete Complete
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Catalina 10.15.5. A file may be incorrectly rendered to execute JavaScript.
665 CVE-2020-9666 125 2020-06-25 2020-07-01
4.3
None Remote Medium Not required Partial None None
Adobe Campaign Classic before 20.2 have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
666 CVE-2020-9662 787 Exec Code 2020-06-25 2021-09-08
9.3
None Remote Medium Not required Complete Complete Complete
Adobe After Effects versions 17.1 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .
667 CVE-2020-9661 125 Exec Code 2020-06-25 2020-06-29
9.3
None Remote Medium Not required Complete Complete Complete
Adobe After Effects versions 17.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to arbitrary code execution .
668 CVE-2020-9660 787 Exec Code 2020-06-25 2020-06-30
9.3
None Remote Medium Not required Complete Complete Complete
Adobe After Effects versions 17.1 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .
669 CVE-2020-9659 787 Exec Code 2020-06-25 2020-07-02
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Audition versions 13.0.6 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .
670 CVE-2020-9658 787 Exec Code 2020-06-25 2020-07-02
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Audition versions 13.0.6 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .
671 CVE-2020-9657 787 Exec Code 2020-06-25 2020-07-02
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Premiere Rush versions 1.5.12 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .
672 CVE-2020-9656 787 Exec Code 2020-06-25 2020-07-02
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Premiere Rush versions 1.5.12 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .
673 CVE-2020-9655 125 Exec Code 2020-06-25 2020-07-02
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Premiere Rush versions 1.5.12 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to arbitrary code execution .
674 CVE-2020-9654 787 Exec Code 2020-06-25 2020-07-02
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Premiere Pro versions 14.2 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .
675 CVE-2020-9653 787 Exec Code 2020-06-25 2020-07-02
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Premiere Pro versions 14.2 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .
676 CVE-2020-9652 125 Exec Code 2020-06-25 2020-07-02
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Premiere Pro versions 14.2 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to arbitrary code execution .
677 CVE-2020-9651 79 XSS 2020-06-12 2020-06-15
4.3
None Remote Medium Not required None Partial None
Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting (reflected) vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser.
678 CVE-2020-9648 79 XSS 2020-06-12 2020-06-15
4.3
None Remote Medium Not required None Partial None
Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser.
679 CVE-2020-9647 79 XSS 2020-06-12 2020-06-15
4.3
None Remote Medium Not required None Partial None
Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting (dom-based) vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser.
680 CVE-2020-9645 918 2020-06-12 2020-06-15
5.0
None Remote Low Not required Partial None None
Adobe Experience Manager versions 6.5 and earlier have a blind server-side request forgery (ssrf) vulnerability. Successful exploitation could lead to sensitive information disclosure.
681 CVE-2020-9644 79 XSS 2020-06-12 2020-06-15
3.5
None Remote Medium ??? None Partial None
Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting (stored) vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser.
682 CVE-2020-9643 918 2020-06-12 2020-06-15
5.0
None Remote Low Not required Partial None None
Adobe Experience Manager versions 6.5 and earlier have a server-side request forgery (ssrf) vulnerability. Successful exploitation could lead to sensitive information disclosure.
683 CVE-2020-9642 119 Exec Code Overflow 2020-06-25 2020-06-29
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Illustrator versions 24.1.2 and earlier have a buffer errors vulnerability. Successful exploitation could lead to arbitrary code execution .
684 CVE-2020-9641 119 Exec Code Overflow Mem. Corr. 2020-06-25 2021-07-21
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
685 CVE-2020-9640 119 Exec Code Overflow Mem. Corr. 2020-06-25 2021-07-21
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
686 CVE-2020-9639 119 Exec Code Overflow Mem. Corr. 2020-06-25 2021-07-21
9.3
None Remote Medium Not required Complete Complete Complete
Adobe Illustrator versions 24.1.2 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
687 CVE-2020-9638 787 Exec Code Overflow 2020-06-25 2020-06-29
9.3
None Remote Medium Not required Complete Complete Complete
Adobe After Effects versions 17.1 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution .
688 CVE-2020-9637 787 Exec Code Overflow 2020-06-25 2020-06-29
9.3
None Remote Medium Not required Complete Complete Complete
Adobe After Effects versions 17.1 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution .
689 CVE-2020-9636 119 Exec Code Overflow Mem. Corr. 2020-06-12 2021-07-21
6.8
None Remote Medium Not required Partial Partial Partial
Adobe Framemaker versions 2019.0.5 and below have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
690 CVE-2020-9635 787 Exec Code 2020-06-12 2020-06-16
6.8
None Remote Medium Not required Partial Partial Partial
Adobe Framemaker versions 2019.0.5 and below have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution.
691 CVE-2020-9634 787 Exec Code 2020-06-12 2020-06-16
6.8
None Remote Medium Not required Partial Partial Partial
Adobe Framemaker versions 2019.0.5 and below have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution.
692 CVE-2020-9633 416 Exec Code 2020-06-12 2021-09-16
10.0
None Remote Low Not required Complete Complete Complete
Adobe Flash Player Desktop Runtime 32.0.0.371 and earlier, Adobe Flash Player for Google Chrome 32.0.0.371 and earlier, and Adobe Flash Player for Microsoft Edge and Internet Explorer 32.0.0.330 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution.
693 CVE-2020-9632 Exec Code Bypass 2020-06-26 2020-07-02
10.0
None Remote Low Not required Complete Complete Complete
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a security mitigation bypass vulnerability. Successful exploitation could lead to arbitrary code execution.
694 CVE-2020-9631 Exec Code Bypass 2020-06-26 2020-07-01
10.0
None Remote Low Not required Complete Complete Complete
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a security mitigation bypass vulnerability. Successful exploitation could lead to arbitrary code execution.
695 CVE-2020-9630 269 2020-06-26 2021-07-21
7.5
None Remote Low Not required Partial Partial Partial
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a business logic error vulnerability. Successful exploitation could lead to privilege escalation.
696 CVE-2020-9629 125 2020-06-26 2020-06-29
4.3
None Remote Medium Not required Partial None None
Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
697 CVE-2020-9628 125 2020-06-26 2021-09-08
5.0
None Remote Low Not required Partial None None
Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
698 CVE-2020-9627 125 2020-06-26 2021-09-08
5.0
None Remote Low Not required Partial None None
Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
699 CVE-2020-9626 125 2020-06-26 2020-07-01
4.3
None Remote Medium Not required Partial None None
Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
700 CVE-2020-9625 125 2020-06-26 2021-09-08
5.0
None Remote Low Not required Partial None None
Adobe DNG Software Development Kit (SDK) 1.5 and earlier versions have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
Total number of vulnerabilities : 1786   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 (This Page)15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.