HUAWEI Mate 20 smartphones with 9.0.0.205(C00E205R2P1) have a logic error vulnerability. In a special scenario, the system does not properly process. As a result, attackers can perform a series of operations to successfully establish...
A command injection vulnerability exists in EdgeSwitch firmware
An information disclosure vulnerability exists in EdgeMax EdgeSwitch firmware v1.9.0 that allowed read only users could obtain unauthorized information through SNMP community pages. Date published : 2020-08-17 https://community.ui.com/releases/EdgeMAX-EdgeSwitch-Firmware-v1-9-1-v1-9-1/8a87dfc5-70f5-4055-8d67-570db1f5695c https://community.ui.com/releases/Security-advisory-bulletin-014-014/1c32c056-2c64-4e60-ac23-ce7d8f387821
A memory corruption vulnerability exists in NextCloud Desktop Client v2.6.4 where missing ASLR and DEP protections in for windows allowed to corrupt memory. Date published : 2020-08-17 https://hackerone.com/reports/380102 https://nextcloud.com/security/advisory/?id=NC-SA-2020-035
A vulnerability exists in phpBB
Improper access control in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server before 10.9 RP5 allows access to privileged functionality. Date...
Improper input validation in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server before 10.9 RP5 allows SQL Injection. Date published :...
Insufficient protection of secrets in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server before 10.9 RP5 discloses credentials of a service...
Improper access control in Citrix XenMobile Server 10.12 before RP2, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.10 before RP6 and Citrix XenMobile Server before 10.9 RP5 and leads to the ability...
Improper input validation in Citrix XenMobile Server 10.12 before RP1, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.11 before RP6 and Citrix XenMobile Server before 10.9 RP5 allows Cross-Site Scripting (XSS). Date...
The package linux-cmdline before 1.0.1 are vulnerable to Prototype Pollution via the constructor. Date published : 2020-08-17 https://github.com/piranna/linux-cmdline/commit/53c61a88bc47eb25d71832205056beaab95cf677 https://snyk.io/vuln/SNYK-JS-LINUXCMDLINE-598674
All versions of package nis-utils are vulnerable to Prototype Pollution via the setValue function. Date published : 2020-08-17 https://snyk.io/vuln/SNYK-JS-NISUTILS-598799
All versions of package templ8 are vulnerable to Prototype Pollution via the parse function. Date published : 2020-08-17 https://snyk.io/vuln/SNYK-JS-TEMPL8-598770
IBM Spectrum Virtualize 8.3.1 could allow a remote user authenticated via LDAP to escalate their privileges and perform actions they should not have access to. IBM X-Force ID: 186678. Date published : 2020-08-17 https://www.ibm.com/support/pages/node/6260199...