CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 2 and 2.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1251 CVE-2020-14105 2021-04-20 2021-04-23
2.1
None Local Low Not required Partial None None
The application in the mobile phone can read the SNO information of the device, Xiaomi 10 MIUI < 2020.01.15.
1252 CVE-2020-13938 862 2021-06-10 2021-09-21
2.1
None Local Low Not required None None Partial
Apache HTTP Server versions 2.4.0 to 2.4.46 Unprivileged local users can stop httpd on Windows
1253 CVE-2020-13867 276 2020-06-05 2020-08-30
2.1
None Local Low Not required Partial None None
Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target (and for the backup directory and backup files).
1254 CVE-2020-13844 200 +Info 2020-06-08 2021-07-21
2.1
None Local Low Not required Partial None None
Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka "straight-line speculation."
1255 CVE-2020-13791 125 2020-06-04 2020-12-14
2.1
None Local Low Not required None None Partial
hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access by providing an address near the end of the PCI configuration space.
1256 CVE-2020-13657 269 2020-06-29 2021-07-21
2.1
None Local Low Not required None Partial None
An elevation of privilege vulnerability exists in Avast Free Antivirus and AVG AntiVirus Free before 20.4 due to improperly handling hard links. The vulnerability allows local users to take control of arbitrary files.
1257 CVE-2020-13632 476 2020-05-27 2020-10-20
2.1
None Local Low Not required None None Partial
ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.
1258 CVE-2020-13631 2020-05-27 2021-06-18
2.1
None Local Low Not required None Partial None
SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c.
1259 CVE-2020-13626 862 Bypass 2020-10-09 2020-10-20
2.1
None Local Low Not required None Partial None
OnePlus App Locker through 2020-10-06 allows physically proximate attackers to use Google Assistant to bypass an authorization check in order to send an SMS message when the SMS application is locked.
1260 CVE-2020-13602 20 DoS 2021-05-25 2021-05-27
2.1
None Local Low Not required None None Partial
Remote Denial of Service in LwM2M do_write_op_tlv. Zephyr versions >= 1.14.2, >= 2.2.0 contain Improper Input Validation (CWE-20), Loop with Unreachable Exit Condition ('Infinite Loop') (CWE-835). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-g9mg-fj58-6fqh
1261 CVE-2020-13599 276 2021-05-25 2021-08-05
2.1
None Local Low Not required Partial None None
Security problem with settings and littlefs. Zephyr versions >= 1.14.2, >= 2.3.0 contain Incorrect Default Permissions (CWE-276). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-5qhg-j6wc-4f6q
1262 CVE-2020-13597 200 +Info 2020-06-03 2020-06-08
2.1
None Remote High ??? Partial None None
Clusters using Calico (version 3.14.0 and below), Calico Enterprise (version 2.8.2 and below), may be vulnerable to information disclosure if IPv6 is enabled but unused. A compromised pod with sufficient privilege is able to reconfigure the node’s IPv6 interface due to the node accepting route advertisement by default, allowing the attacker to redirect full or partial network traffic from the node to the compromised pod.
1263 CVE-2020-13529 290 2021-05-10 2021-09-08
2.9
None Local Network Medium Not required None None Partial
An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigure the server.
1264 CVE-2020-13523 200 +Info 2020-08-04 2021-07-21
2.1
None Local Low Not required Partial None None
An exploitable information disclosure vulnerability exists in SoftPerfect’s RAM Disk 4.1 spvve.sys driver. A specially crafted I/O request packet (IRP) can cause the disclosure of sensitive information. An attacker can send a malicious IRP to trigger this vulnerability.
1265 CVE-2020-13518 200 +Info 2020-12-18 2021-07-21
2.1
None Local Low Not required Partial None None
An information disclosure vulnerability exists in the WinRing0x64 Driver IRP 0x9c402084 functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet (IRP) can cause the disclosure of sensitive information. An attacker can send a malicious IRP to trigger this vulnerability.
1266 CVE-2020-13517 200 +Info 2020-12-18 2021-07-21
2.1
None Local Low Not required Partial None None
An information disclosure vulnerability exists in the WinRing0x64 Driver IRP 0x9c406104 functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet (IRP) can cause the disclosure of sensitive information. An attacker can send a malicious IRP to trigger this vulnerability.
1267 CVE-2020-13516 200 +Info 2020-12-18 2021-07-21
2.1
None Local Low Not required Partial None None
An information disclosure vulnerability exists in the WinRing0x64 Driver IRP 0x9c406144 functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet (IRP) can cause the disclosure of sensitive information. An attacker can send a malicious IRP to trigger this vulnerability.
1268 CVE-2020-13511 200 +Info 2020-12-18 2021-07-21
2.1
None Local Low Not required Partial None None
An information disclosure vulnerability exists in the WinRing0x64 Driver Privileged I/O Read IRPs functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet (IRP) using the IRP 0x9c4060d4 gives a low privilege user direct access to the IN instruction that is completely unrestrained at an elevated privilege level. An attacker can send a malicious IRP to trigger this vulnerability.
1269 CVE-2020-13510 200 +Info 2020-12-18 2021-07-21
2.1
None Local Low Not required Partial None None
An information disclosure vulnerability exists in the WinRing0x64 Driver Privileged I/O Read IRPs functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet (IRP) using the IRP 0x9c4060d0 gives a low privilege user direct access to the IN instruction that is completely unrestrained at an elevated privilege level. An attacker can send a malicious IRP to trigger this vulnerability.
1270 CVE-2020-13509 200 +Info 2020-12-18 2021-07-21
2.1
None Local Low Not required Partial None None
An information disclosure vulnerability exists in the WinRing0x64 Driver Privileged I/O Read IRPs functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet (IRP) Using the IRP 0x9c4060cc gives a low privilege user direct access to the IN instruction that is completely unrestrained at an elevated privilege level. An attacker can send a malicious IRP to trigger this vulnerability and this access could allow for information leakage of sensitive data.
1271 CVE-2020-13473 312 2020-12-28 2020-12-30
2.1
None Local Low Not required Partial None None
NCH Express Accounts 8.24 and earlier allows local users to discover the cleartext password by reading the configuration file.
1272 CVE-2020-13472 668 2020-08-31 2020-09-03
2.1
None Local Low Not required None Partial None
The flash memory readout protection in Gigadevice GD32F103 devices allows physical attackers to extract firmware via the debug interface by utilizing the DMA module.
1273 CVE-2020-13470 668 2020-08-31 2020-09-03
2.1
None Local Low Not required None Partial None
Gigadevice GD32F103 and GD32F130 devices allow physical attackers to extract data via the probing of easily accessible bonding wires and de-obfuscation of the observed data.
1274 CVE-2020-13469 668 2020-08-31 2020-09-04
2.1
None Local Low Not required None Partial None
The flash memory readout protection in Gigadevice GD32VF103 devices allows physical attackers to extract firmware via the debug interface by utilizing the CPU.
1275 CVE-2020-13467 755 2020-08-31 2020-09-09
2.1
None Local Low Not required None Partial None
The flash memory readout protection in China Key Systems & Integrated Circuit CKS32F103 devices allows physical attackers to extract firmware via the debug interface and exception handling.
1276 CVE-2020-13463 755 2020-08-31 2020-09-10
2.1
None Local Low Not required Partial None None
The flash memory readout protection in Apex Microelectronics APM32F103 devices allows physical attackers to extract firmware via the debug interface and exception handling.
1277 CVE-2020-13462 2021-02-09 2021-07-21
2.7
None Local Network Low ??? Partial None None
Insecure Direct Object Reference (IDOR) exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA.
1278 CVE-2020-13435 476 2020-05-24 2021-06-14
2.1
None Local Low Not required None None Partial
SQLite through 3.32.0 has a segmentation fault in sqlite3ExprCodeTarget in expr.c.
1279 CVE-2020-13434 190 Overflow 2020-05-24 2021-06-14
2.1
None Local Low Not required None None Partial
SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c.
1280 CVE-2020-13409 79 +Priv XSS 2021-02-09 2021-03-08
2.3
None Local Network Medium ??? None Partial None
Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or also later by different users). Both stored, and reflected payloads are triggerable by admin, so malicious non-authenticated user could get admin level access. Even malicious low-privileged user can inject XSS, which can be executed by admin, potentially elevating privileges and obtaining admin access. (issue 3 of 3)
1281 CVE-2020-13408 79 +Priv XSS 2021-02-09 2021-03-08
2.3
None Local Network Medium ??? None Partial None
Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or also later by different users). Both stored, and reflected payloads are triggerable by admin, so malicious non-authenticated user could get admin level access. Even malicious low-privileged user can inject XSS, which can be executed by admin, potentially elevating privileges and obtaining admin access. (issue 2 of 3)
1282 CVE-2020-13407 79 +Priv XSS 2021-02-09 2021-03-08
2.3
None Local Network Medium ??? None Partial None
Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or also later by different users). Both stored, and reflected payloads are triggerable by admin, so malicious non-authenticated user could get admin level access. Even malicious low-privileged user can inject XSS, which can be executed by admin, potentially elevating privileges and obtaining admin access. (issue 1 of 3)
1283 CVE-2020-13397 125 2020-05-22 2020-11-09
2.1
None Local Low Not required Partial None None
An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has been detected in security_fips_decrypt in libfreerdp/core/security.c due to an uninitialized value.
1284 CVE-2020-13362 125 2020-05-28 2020-11-11
2.1
None Local Low Not required None None Partial
In QEMU 5.0.0 and earlier, megasas_lookup_frame in hw/scsi/megasas.c has an out-of-bounds read via a crafted reply_queue_head field from a guest OS user.
1285 CVE-2020-13358 863 2020-11-17 2021-07-21
2.1
None Local Low Not required Partial None None
A vulnerability in the internal Kubernetes agent api in GitLab CE/EE version 13.3 and above allows unauthorized access to private projects. Affected versions are: >=13.4, <13.4.5,>=13.3, <13.3.9,>=13.5, <13.5.2.
1286 CVE-2020-13353 613 2020-11-17 2020-11-28
2.1
None Local Low Not required Partial None None
When importing repos via URL, one time use git credentials were persisted beyond the expected time window in Gitaly 1.79.0 or above. Affected versions are: >=1.79.0, <13.3.9,>=13.4, <13.4.5,>=13.5, <13.5.2.
1287 CVE-2020-13344 200 +Info 2020-10-08 2021-07-21
2.1
None Local Low Not required Partial None None
An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Sessions keys are stored in plain-text in Redis which allows attacker with Redis access to authenticate as any user that has a session stored in Redis
1288 CVE-2020-13253 125 2020-05-27 2020-12-14
2.1
None Local Low Not required None None Partial
sd_wp_addr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of-bounds read during sdhci_write() operations. A guest OS user can crash the QEMU process.
1289 CVE-2020-13186 352 CSRF 2021-02-11 2021-02-22
2.6
None Remote High Not required None Partial None
An Anti CSRF mechanism was discovered missing in the Teradici Cloud Access Connector v31 and earlier in a specific web form, which allowed an attacker with knowledge of both a machineID and user GUID to modify data if a user clicked a malicious link.
1290 CVE-2020-13179 212 2020-08-11 2021-11-04
2.1
None Local Low Not required Partial None None
Broker Protocol messages in Teradici PCoIP Standard Agent for Windows and Graphics Agent for Windows prior to 20.04.1 are not cleaned up in server memory, which may allow an attacker to read confidential information from a memory dump via forcing a crashing during the single sign-on procedure.
1291 CVE-2020-13132 327 DoS 2020-07-09 2021-07-21
2.1
None Local Low Not required None None Partial
An issue was discovered in Yubico libykpiv before 2.1.0. An attacker can trigger an incorrect free() in the ykpiv_util_generate_key() function in lib/util.c through incorrect error handling code. This could be used to cause a denial of service attack.
1292 CVE-2020-12960 20 DoS 2021-11-15 2021-11-17
2.1
None Local Low Not required None None Partial
AMD Graphics Driver for Windows 10, amdfender.sys may improperly handle input validation on InputBuffer which may result in a denial of service (DoS).
1293 CVE-2020-12954 863 Bypass 2021-11-16 2021-11-18
2.1
None Local Low Not required None Partial None
A side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI ROM protections, allowing unauthorized SPI ROM modification.
1294 CVE-2020-12920 DoS 2021-11-15 2021-11-18
2.1
None Local Low Not required None None Partial
A potential denial of service issue exists in the AMD Display driver Escape 0x130007 Call handler. An attacker with low privilege could potentially induce a Windows BugCheck.
1295 CVE-2020-12912 203 2020-11-12 2020-12-03
2.1
None Local Low Not required Partial None None
A potential vulnerability in the AMD extension to Linux "hwmon" service may allow an attacker to use the Linux-based Running Average Power Limit (RAPL) interface to show various side channel attacks. In line with industry partners, AMD has updated the RAPL interface to require privileged access.
1296 CVE-2020-12905 125 2021-11-15 2021-11-18
2.1
None Local Low Not required Partial None None
Out of Bounds Read in AMD Graphics Driver for Windows 10 in Escape 0x3004403 may lead to arbitrary information disclosure.
1297 CVE-2020-12904 125 2021-11-15 2021-11-18
2.1
None Local Low Not required Partial None None
Out of Bounds Read in AMD Graphics Driver for Windows 10 in Escape 0x3004203 may lead to arbitrary information disclosure.
1298 CVE-2020-12901 416 Bypass 2021-11-15 2021-11-17
2.1
None Local Low Not required Partial None None
Arbitrary Free After Use in AMD Graphics Driver for Windows 10 may lead to KASLR bypass or information disclosure.
1299 CVE-2020-12897 200 Bypass +Info 2021-11-15 2021-11-17
2.1
None Local Low Not required Partial None None
Kernel Pool Address disclosure in AMD Graphics Driver for Windows 10 may lead to KASLR bypass.
1300 CVE-2020-12880 200 +Info 2020-07-27 2021-07-21
2.1
None Local Low Not required Partial None None
An issue was discovered in Pulse Policy Secure (PPS) and Pulse Connect Secure (PCS) Virtual Appliance before 9.1R8. By manipulating a certain kernel boot parameter, it can be tricked into dropping into a root shell in a pre-install phase where the entire source code of the appliance is available and can be retrieved. (The source code is otherwise inaccessible because the appliance has its hard disks encrypted, and no root shell is available during normal operation.)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.