Search

Search Results (364155 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2020-6643 1 Fortinet 1 Fortiisolator 2024-11-21 5.4 Medium
An improper neutralization of input vulnerability in the URL Description in Fortinet FortiIsolator version 1.2.2 allows a remote authenticated attacker to perform a cross site scripting attack (XSS).
CVE-2020-6641 1 Fortinet 1 Fortipresence 2024-11-21 4.3 Medium
Two authorization bypass through user-controlled key vulnerabilities in the Fortinet FortiPresence 2.1.0 administration interface may allow an attacker to gain access to some user data via portal manager or portal users parameters.
CVE-2020-6640 1 Fortinet 1 Fortianalyzer 2024-11-21 5.4 Medium
An improper neutralization of input vulnerability in the Admin Profile of FortiAnalyzer may allow a remote authenticated attacker to perform a stored cross site scripting attack (XSS) via the Description Area.
CVE-2020-6638 1 Grin 1 Grin 2024-11-21 7.5 High
Grin through 2.1.1 has Insufficient Validation.
CVE-2020-6637 1 Os4ed 1 Opensis 2024-11-21 9.8 Critical
openSIS Community Edition version 7.3 is vulnerable to SQL injection via the USERNAME parameter of index.php.
CVE-2020-6632 1 Prestashop 1 Prestashop 2024-11-21 6.1 Medium
In PrestaShop 1.7.6.2, XSS can occur during addition or removal of a QuickAccess link. This is related to AdminQuickAccessesController.php, themes/default/template/header.tpl, and themes/new-theme/js/header.js.
CVE-2020-6631 1 Gpac 1 Gpac 2024-11-21 5.5 Medium
An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_m2ts_stream_process_pmt() in media_tools/m2ts_mux.c.
CVE-2020-6630 1 Gpac 1 Gpac 2024-11-21 5.5 Medium
An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_isom_get_media_data_size() in isomedia/isom_read.c.
CVE-2020-6629 1 Libming 1 Libming 2024-11-21 6.5 Medium
Ming (aka libming) 0.4.8 has z NULL pointer dereference in the function decompileGETURL2() in decompile.c.
CVE-2020-6628 1 Libming 1 Libming 2024-11-21 8.8 High
Ming (aka libming) 0.4.8 has a heap-based buffer over-read in the function decompile_SWITCH() in decompile.c.
CVE-2020-6625 1 Jhead Project 1 Jhead 2024-11-21 7.1 High
jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c.
CVE-2020-6624 1 Jhead Project 1 Jhead 2024-11-21 7.1 High
jhead through 3.04 has a heap-based buffer over-read in process_DQT in jpgqguess.c.
CVE-2020-6623 1 Nothings 1 Stb Truetype.h 2024-11-21 8.8 High
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_get_index.
CVE-2020-6622 1 Nothings 1 Stb Truetype.h 2024-11-21 8.8 High
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_peek8.
CVE-2020-6621 1 Nothings 1 Stb Truetype.h 2024-11-21 8.8 High
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in ttUSHORT.
CVE-2020-6620 1 Nothings 1 Stb Truetype.h 2024-11-21 8.8 High
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_get8.
CVE-2020-6619 1 Nothings 1 Stb Truetype.h 2024-11-21 8.8 High
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__buf_seek.
CVE-2020-6618 1 Nothings 1 Stb Truetype.h 2024-11-21 8.8 High
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__find_table.
CVE-2020-6617 1 Nothings 1 Stb Truetype.h 2024-11-21 8.8 High
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_int.
CVE-2020-6616 3 Apple, Google, Samsung 7 Ipados, Iphone Os, Mac Os X and 4 more 2024-11-21 6.5 Medium
Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations where a Hardware Random Number Generator (HRNG) should have been used to prevent spoofing. This affects, for example, Samsung Galaxy S8, S8+, and Note8 devices with the BCM4361 chipset. The Samsung ID is SVE-2020-16882 (May 2020).