CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 3 and 3.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
2151 CVE-2020-10944 79 XSS 2020-04-28 2020-05-06
3.5
None Remote Medium ??? None Partial None
HashiCorp Nomad and Nomad Enterprise up to 0.10.4 contained a cross-site scripting vulnerability such that files from a malicious workload could cause arbitrary JavaScript to execute in the web UI. Fixed in 0.10.5.
2152 CVE-2020-10935 79 XSS 2020-04-20 2020-04-28
3.5
None Remote Medium ??? None Partial None
Zulip Server before 2.1.3 allows XSS via a Markdown link, with resultant account takeover.
2153 CVE-2020-10930 284 2020-07-28 2020-07-30
3.3
None Local Network Low Not required Partial None None
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of URLs. The issue results from the lack of proper routing of URLs. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-9618.
2154 CVE-2020-10840 401 2020-03-24 2020-03-26
3.6
None Local Low Not required Partial None Partial
An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) (Exynos 9610 chipsets) software. There is a kernel pointer leak in the vipx driver. The Samsung ID is SVE-2019-16293 (February 2020).
2155 CVE-2020-10821 79 XSS 2020-03-22 2020-03-23
3.5
None Remote Medium ??? None Partial None
Nagios XI 5.6.11 allows XSS via the account/main.php theme parameter.
2156 CVE-2020-10820 79 XSS 2020-03-22 2020-03-23
3.5
None Remote Medium ??? None Partial None
Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integration/ password parameter.
2157 CVE-2020-10819 79 XSS 2020-03-22 2020-03-23
3.5
None Remote Medium ??? None Partial None
Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integration/ username parameter.
2158 CVE-2020-10803 79 Sql XSS 2020-03-22 2020-11-02
3.5
None Remote Medium ??? None Partial None
In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability was discovered where malicious code could be used to trigger an XSS attack through retrieving and displaying results (in tbl_get_field.php and libraries/classes/Display/Results.php). The attacker must be able to insert crafted data into certain database tables, which when retrieved (for instance, through the Browse tab) can trigger the XSS attack.
2159 CVE-2020-10790 79 XSS 2020-03-25 2020-03-27
3.5
None Remote Medium ??? None Partial None
openITCOCKPIT before 3.7.3 has unnecessary files (such as Lodash files) under the web root, which leads to XSS.
2160 CVE-2020-10777 79 XSS 2020-08-11 2020-08-12
3.5
None Remote Medium ??? None Partial None
A cross-site scripting flaw was found in Report Menu feature of Red Hat CloudForms 4.7 and 5. An attacker could use this flaw to execute a stored XSS attack on an application administrator using CloudForms.
2161 CVE-2020-10776 79 XSS 2020-11-17 2020-11-27
3.5
None Remote Medium ??? None Partial None
A flaw was found in Keycloak before version 12.0.0, where it is possible to add unsafe schemes for the redirect_uri parameter. This flaw allows an attacker to perform a Cross-site scripting attack.
2162 CVE-2020-10759 347 Bypass 2020-09-15 2020-09-22
3.3
None Local Medium Not required Partial Partial None
A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practical because the Linux Vendor Firmware Service (LVFS) is either not implemented or enabled in versions of fwupd shipped with Red Hat Enterprise Linux 7 and 8. The highest threat from this vulnerability is to confidentiality and integrity.
2163 CVE-2020-10751 345 2020-05-26 2021-06-14
3.6
None Local Low Not required Partial Partial None
A flaw was found in the Linux kernels SELinux LSM hook implementation before version 5.7, where it incorrectly assumed that an skb would only contain a single netlink message. The hook would incorrectly only validate the first netlink message in the skb and allow or deny the rest of the messages within the skb with the granted permission without further processing.
2164 CVE-2020-10744 668 2020-05-15 2020-05-29
3.7
None Local High Not required Partial Partial Partial
An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insecure temporary directory when running become_user from become directive. The provided fix is insufficient to prevent the race condition on systems using ACLs and FUSE filesystems. Ansible Engine 2.7.18, 2.8.12, and 2.9.9 as well as previous versions are affected and Ansible Tower 3.4.5, 3.5.6 and 3.6.4 as well as previous versions are affected.
2165 CVE-2020-10742 787 Overflow 2021-06-02 2021-06-11
3.6
None Local Low Not required Partial None Partial
A flaw was found in the Linux kernel. An index buffer overflow during Direct IO write leading to the NFS client to crash. In some cases, a reach out of the index after one memory allocation by kmalloc will cause a kernel panic. The highest threat from this vulnerability is to data confidentiality and system availability.
2166 CVE-2020-10737 362 2020-05-27 2021-10-26
3.7
None Local High Not required Partial Partial Partial
A race condition was found in the mkhomedir tool shipped with the oddjob package in versions before 0.34.5 and 0.34.6 wherein, during the home creation, mkhomedir copies the /etc/skel directory into the newly created home and changes its ownership to the home's user without properly checking the homedir path. This flaw allows an attacker to leverage this issue by creating a symlink point to a target folder, which then has its ownership transferred to the new home directory's unprivileged user.
2167 CVE-2020-10732 200 +Info 2020-06-12 2021-01-29
3.6
None Local Low Not required Partial None Partial
A flaw was found in the Linux kernel's implementation of Userspace core dumps. This flaw allows an attacker with a local account to crash a trivial program and exfiltrate private kernel data.
2168 CVE-2020-10709 287 2021-05-27 2021-06-08
3.6
None Local Low Not required Partial Partial None
A security flaw was found in Ansible Tower when requesting an OAuth2 token with an OAuth2 application. Ansible Tower uses the token to provide authentication. This flaw allows an attacker to obtain a refresh token that does not expire. The original token granted to the user still has access to Ansible Tower, which allows any user that can gain access to the token to be fully authenticated to Ansible Tower. This flaw affects Ansible Tower versions before 3.6.4 and Ansible Tower versions before 3.5.6.
2169 CVE-2020-10697 400 DoS 2021-05-27 2021-06-08
3.6
None Local Low Not required Partial None Partial
A flaw was found in Ansible Tower when running Openshift. Tower runs a memcached, which is accessed via TCP. An attacker can take advantage of writing a playbook polluting this cache, causing a denial of service attack. This attack would not completely stop the service, but in the worst-case scenario, it can reduce the Tower performance, for which memcached is designed. Theoretically, more sophisticated attacks can be performed by manipulating and crafting the cache, as Tower relies on memcached as a place to pull out setting values. Confidential and sensitive data stored in memcached should not be pulled, as this information is encrypted. This flaw affects Ansible Tower versions before 3.6.4, Ansible Tower versions before 3.5.6 and Ansible Tower versions before 3.4.6.
2170 CVE-2020-10691 22 Dir. Trav. 2020-04-30 2020-05-21
3.6
None Local Low Not required None Partial Partial
An archive traversal flaw was found in all ansible-engine versions 2.9.x prior to 2.9.7, when running ansible-galaxy collection install. When extracting a collection .tar.gz file, the directory is created without sanitizing the filename. An attacker could take advantage to overwrite any file within the system.
2171 CVE-2020-10684 94 2020-03-24 2021-08-07
3.6
None Local Low Not required None Partial Partial
A flaw was found in Ansible Engine, all versions 2.7.x, 2.8.x and 2.9.x prior to 2.7.17, 2.8.9 and 2.9.6 respectively, when using ansible_facts as a subkey of itself and promoting it to a variable when inject is enabled, overwriting the ansible_facts after the clean. An attacker could take advantage of this by altering the ansible_facts, such as ansible_hosts, users and any other key data which would lead into privilege escalation or code injection.
2172 CVE-2020-10681 79 XSS 2020-03-20 2020-03-25
3.5
None Remote Medium ??? None Partial None
The Filemanager in CMS Made Simple 2.2.13 has stored XSS via a .pxd file, as demonstrated by m1_files[] to admin/moduleinterface.php.
2173 CVE-2020-10643 79 XSS 2020-07-27 2020-08-05
3.5
None Remote Medium ??? None Partial None
An authenticated remote attacker could use specially crafted URLs to send a victim using PI Vision 2019 mobile to a vulnerable web page due to a known issue in a third-party component.
2174 CVE-2020-10614 79 XSS 2020-07-25 2020-08-05
3.5
None Remote Medium ??? None Partial None
In OSIsoft PI System multiple products and versions, an authenticated remote attacker with write access to PI Vision databases could inject code into a display. Unauthorized information disclosure, deletion, or modification is possible if a victim views the infected display.
2175 CVE-2020-10602 476 2020-07-24 2020-08-05
3.5
None Remote Medium ??? None None Partial
In OSIsoft PI System multiple products and versions, an authenticated remote attacker could crash PI Network Manager due to a race condition. This can result in blocking connections and queries to PI Data Archive.
2176 CVE-2020-10598 2020-04-01 2021-09-14
3.6
None Local Low Not required Partial Partial None
In BD Pyxis MedStation ES System v1.6.1 and Pyxis Anesthesia (PAS) ES System v1.6.1, a restricted desktop environment escape vulnerability exists in the kiosk mode functionality of affected devices. Specially crafted inputs could allow the user to escape the restricted environment, resulting in access to sensitive data.
2177 CVE-2020-10596 79 XSS 2020-03-17 2020-06-03
3.5
None Remote Medium ??? None Partial None
OpenCart 3.0.3.2 allows remote authenticated users to conduct XSS attacks via a crafted filename in the users' image upload section.
2178 CVE-2020-10570 287 Bypass 2020-03-24 2021-07-21
3.6
None Local Low Not required Partial Partial None
The Telegram application through 5.12 for Android, when Show Popup is enabled, might allow physically proximate attackers to bypass intended restrictions on message reading and message replying. This might be interpreted as a bypass of the passcode feature.
2179 CVE-2020-10477 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/manage-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort.
2180 CVE-2020-10476 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort.
2181 CVE-2020-10475 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/manage-tickets.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort.
2182 CVE-2020-10474 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/manage-comments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort.
2183 CVE-2020-10473 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/manage-categories.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort.
2184 CVE-2020-10472 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/manage-templates.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort.
2185 CVE-2020-10471 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/manage-articles.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort.
2186 CVE-2020-10470 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/manage-fields.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort.
2187 CVE-2020-10469 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/manage-departments.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort.
2188 CVE-2020-10468 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/edit-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
2189 CVE-2020-10467 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/edit-comment.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
2190 CVE-2020-10466 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/edit-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
2191 CVE-2020-10465 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/edit-category.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
2192 CVE-2020-10464 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/edit-article.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
2193 CVE-2020-10463 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/edit-template.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
2194 CVE-2020-10462 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
Reflected XSS in admin/edit-field.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter p.
2195 CVE-2020-10456 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/trash-box.php by adding a question mark (?) followed by the payload.
2196 CVE-2020-10455 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/translate.php by adding a question mark (?) followed by the payload.
2197 CVE-2020-10454 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/sitemap-generator.php by adding a question mark (?) followed by the payload.
2198 CVE-2020-10453 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/search-users.php by adding a question mark (?) followed by the payload.
2199 CVE-2020-10452 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/save-article.php by adding a question mark (?) followed by the payload.
2200 CVE-2020-10451 79 XSS 2020-03-12 2020-03-26
3.5
None Remote Medium ??? None Partial None
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS (injecting arbitrary web script or HTML) in admin/report-user.php by adding a question mark (?) followed by the payload.
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.