Vulnerabilidades CVE
Base de datos de vulnerabilidades CVE enriquecida con datos de CISA KEV y NVD
| CVE ID | CVSS | Severidad | KEV | Avistamientos |
|---|---|---|---|---|
| CVE-2021-3239 E-Learning System 1.0 suffers from an unauthenticated SQL injection vulnerability, which allows remote attackers to execute arbitrary code on the hosting web server and gain a reverse shell. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-2501 A stack-based buffer overflow vulnerability has been reported to affect QNAP NAS devices running Surveillance Station. If exploited, this vulnerability allows attackers to execute arbitrary code. QNAP... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-25900 An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insert_many. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-10207 Use of Hard-coded Credentials in EntoneWebEngine in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows remote attackers to retrieve and... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-10210 Because of hard-coded SSH keys for the root user in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series, Kami7B, an attacker may remotely log in through S... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-26822 Teachers Record Management System 1.0 is affected by a SQL injection vulnerability in 'searchteacher' POST parameter in search-teacher.php. This vulnerability can be exploited by a remote unauthentica... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-36199 TinyCheck before commits 9fd360d and ea53de8 was vulnerable to command injection due to insufficient checks of input parameters in several places. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-26201 The Login Panel of CASAP Automated Enrollment System 1.0 is vulnerable to SQL injection authentication bypass. An attacker can obtain access to the admin panel by injecting a SQL query in the username... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-35263 EgavilanMedia User Registration & Login System 1.0 is affected by SQL injection to the admin panel, which may allow arbitrary code execution. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-28998 An issue was discovered on Geeni GNC-CW013 doorbell 1.8.1 devices. A vulnerability exists in the Telnet service that allows a remote attacker to take full control of the device with a high-privileged ... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-28221 A CWE-20: Improper Input Validation vulnerability exists in EcoStruxureβ’ Operator Terminal Expert and Pro-face BLUE (version details in the notification) that could cause arbitrary code execution when... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-35795 Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects AC2100 before 1.2.0.72, AC2400 before 1.2.0.72, AC2600 before 1.2.0.72, CBK40 before 2.5.0.10, CB... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-35797 NETGEAR NMS300 devices before 1.6.0.27 are affected by command injection by an unauthenticated attacker. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-27583 IBM InfoSphere Information Server 8.5.0.0 is affected by deserialization of untrusted data which could allow remote unauthenticated attackers to execute arbitrary code. NOTE: This vulnerability only a... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-27540 Bash injection vulnerability and bypass of signature verification in Rostelecom CS-C2SHW 5.0.082.1. The camera reads firmware update configuration from SD card file vc\version.json. fw-sign parameter ... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-27539 Heap overflow with full parsing of HTTP respose in Rostelecom CS-C2SHW 5.0.082.1. AgentUpdater service has a self-written HTTP parser and builder. HTTP parser has a heap buffer overflow (OOB write). I... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-20269 A specially crafted Markdown document could cause the execution of malicious JavaScript code in Caret Editor before 4.0.0-rc22. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-4958 IBM Security Identity Governance and Intelligence 5.2.6 does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. IBM ... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-3691 Possible out of bound memory access in audio due to integer underflow while processing modified contents in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapd... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-3686 Possible memory out of bound issue during music playback when an incorrect bit stream content is copied into array without checking the length of array in Snapdragon Auto, Snapdragon Compute, Snapdrag... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-11225 Out of bound access in WLAN driver due to lack of validation of array length before copying into array in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics ... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-11216 Buffer over read can happen in video driver when playing clip with atomsize having value UINT32_MAX in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-11213 Out of bound reads might occur in while processing Service descriptor due to improper validation of length of fields in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consume... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-11212 Out of bounds reads while parsing NAN beacons attributes and OUIs due to improper length of field check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-11197 Possible integer overflow can occur when stream info update is called when total number of streams detected are zero while parsing TS clip with invalid data in Snapdragon Auto, Snapdragon Compute, Sna... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-11167 Memory corruption while calculating L2CAP packet length in reassembly logic when remote sends more data than expected in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consum... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-35846 Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php check function. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-35847 Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php resetpassword function. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-11143 Out of bound memory access during music playback with modified content due to copying data without checking destination buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-35848 Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php newpassword function. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-11140 Out of bound memory access during music playback with ALAC modified content due to improper validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdra... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-29594 Rocket.Chat before 0.74.4, 1.x before 1.3.4, 2.x before 2.4.13, 3.x before 3.7.3, 3.8.x before 3.8.3, and 3.9.x before 3.9.1 mishandles SAML login. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-11138 Uninitialized pointers accessed during music play back with incorrect bit stream due to an uninitialized heap memory result in instability in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivi... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-11137 Integer multiplication overflow resulting in lower buffer size allocation than expected causes memory access out of bounds resulting in possible device instability in Snapdragon Auto, Snapdragon Compu... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-23262 An issue was discovered in ming-soft MCMS v5.0, where a malicious user can exploit SQL injection without logging in through /mcms/view.do. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-1139 Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For m... | 9.8 | CRITICAL | β | 0 |
| CVE-2019-12768 An issue was discovered on D-Link DAP-1650 devices through v1.03b07 before 1.04B02_J65H Hot Fix. Attackers can bypass authentication via forceful browsing. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-1138 Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For m... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-26200 The user area for Library System 1.0 is vulnerable to SQL injection where a user can bypass the authentication and login as the admin user. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-24841 PNPSCADA 2.200816204020 allows SQL injection via parameter 'interf' in /browse.jsp. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit laten... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-35173 The Amaze File Manager application before 3.4.2 for Android does not properly restrict intents for controlling the FTP server (aka services.ftpservice.FTPReceiver.ACTION_START_FTPSERVER and services.f... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-11103 JsLink in Webswing before 2.6.12 LTS, and 2.7.x and 20.x before 20.1, allows remote code execution. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-1301 Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device. For more information about these vulnerabilities, see t... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-1300 Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device. For more information about these vulnerabilities, see t... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-12658 gssproxy (aka gss-proxy) before 0.8.3 does not unlock cond_mutex before pthread exit in gp_worker_main() in gp_workers.c. NOTE: An upstream comment states "We are already on a shutdown path when runni... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-5640 Local file inclusion vulnerability in OneThird CMS v1.96c and earlier allows a remote unauthenticated attacker to execute arbitrary code or obtain sensitive information via unspecified vectors. | 9.8 | CRITICAL | β | 0 |
| CVE-2016-9021 Exponent CMS before 2.6.0 has improper input validation in storeController.php. | 9.8 | CRITICAL | β | 0 |
| CVE-2016-9022 Exponent CMS before 2.6.0 has improper input validation in usersController.php. | 9.8 | CRITICAL | β | 0 |
| CVE-2016-9023 Exponent CMS before 2.6.0 has improper input validation in cron/find_help.php. | 9.8 | CRITICAL | β | 0 |
| CVE-2016-9025 Exponent CMS before 2.6.0 has improper input validation in purchaseOrderController.php. | 9.8 | CRITICAL | β | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.