CVE Vulnerabilities
CVE vulnerability database enriched with CISA KEV and NVD data
| CVE ID | CVSS | Severity | KEV | Sightings |
|---|---|---|---|---|
| CVE-2020-5593 Zenphoto versions prior to 1.5.7 allows an attacker to conduct PHP code injection attacks by leading a user to upload a specially crafted .zip file. | 8.8 | HIGH | — | 0 |
| CVE-2020-4380 IBM Workload Scheduler 9.3.0.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentia... | 5.4 | MEDIUM | — | 0 |
| CVE-2020-12712 A vulnerability based on insecure user/password encryption in the JOE (job editor) component of SOS JobScheduler 1.12 and 1.13 allows attackers to decrypt the user/password that is optionally stored w... | 7.5 | HIGH | — | 0 |
| CVE-2020-4101 "HCL Digital Experience is susceptible to Server Side Request Forgery." | 9.8 | CRITICAL | — | 0 |
| CVE-2020-6090 An exploitable code execution vulnerability exists in the Web-Based Management (WBM) functionality of WAGO PFC 200 03.03.10(15). A specially crafted series of HTTP requests can cause code execution re... | 7.2 | HIGH | — | 0 |
| CVE-2020-0124 In markBootComplete of InstalldNativeService.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileg... | 6.7 | MEDIUM | — | 0 |
| CVE-2020-0126 In multiple functions in DrmPlugin.cpp, there is a possible use after free due to a race condition. This could lead to local code execution with System execution privileges required. User interaction ... | 6.4 | MEDIUM | — | 0 |
| CVE-2020-0127 In AudioStream::decode of AudioGroup.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure in the phone process with no additional... | 6.5 | MEDIUM | — | 0 |
| CVE-2020-0128 In addPacket of AMPEG4ElementaryAssembler, there is an out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges required.... | 7.5 | HIGH | — | 0 |
| CVE-2020-0129 In SetData of btm_ble_multi_adv.cc, there is a possible out-of-bound write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges ne... | 7.8 | HIGH | — | 0 |
| CVE-2020-0131 In parseChunk of MPEG4Extractor.cpp, there is a possible out of bounds write due to incompletely initialized data. This could lead to remote code execution with no additional execution privileges need... | 8.8 | HIGH | — | 0 |
| CVE-2020-0132 In BnAAudioService::onTransact of IAAudioService.cpp, there is a possible out of bounds read due to unsafe deserialization. This could lead to local information disclosure with no additional execution... | 5.5 | MEDIUM | — | 0 |
| CVE-2020-0133 In MockLocationAppPreferenceController.java, it is possible to mock the GPS location of the device due to a permissions bypass. This could lead to local escalation of privilege with User execution pri... | 7.3 | HIGH | — | 0 |
| CVE-2020-0134 In BnDrm::onTransact of IDrm.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. ... | 5.5 | MEDIUM | — | 0 |
| CVE-2020-0135 In dump of RollbackManagerServiceImpl.java, there is a possible backup metadata exposure due to a missing permission check. This could lead to local information disclosure with System execution privil... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0136 In multiple locations of Parcel.cpp, there is a possible out-of-bounds write due to an integer overflow. This could lead to local escalation of privilege in the system server with no additional execut... | 7.8 | HIGH | — | 0 |
| CVE-2020-0137 In setIPv6AddrGenMode of NetworkManagementService.java, there is a possible bypass of networking permissions due to a missing permission check. This could lead to local escalation of privilege with no... | 7.8 | HIGH | — | 0 |
| CVE-2020-0138 In get_element_attr_rsp of btif_rc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if bluetoothtbd were used, which it isn't in typi... | 9.8 | CRITICAL | — | 0 |
| CVE-2020-0139 In NDEF_MsgValidate of ndef_utils.c, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure if a malformed NFC tag is provided by the firmwa... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0140 In rw_i93_sm_detect_ndef of rw_i93.c, there is a possible information disclosure due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges... | 7.5 | HIGH | — | 0 |
| CVE-2020-0141 In OutputBuffersArray::realloc of CCodecBuffers.cpp, there is a possible heap disclosure due to a race condition. This could lead to remote information disclosure with System execution privileges need... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0142 In rw_i93_sm_format of rw_i93.c, there is a possible information disclosure due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges need... | 7.5 | HIGH | — | 0 |
| CVE-2020-0143 In nfa_dm_ndef_find_next_handler of nfa_dm_ndef.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of heap data via compromised de... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0144 In btm_proc_sp_req_evt of btm_sec.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System ... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0145 In btm_simple_pair_complete of btm_sec.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with Sy... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0146 In btu_hcif_hardware_error_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware wit... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0147 In btu_hcif_esco_connection_chg_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmwar... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0148 In btu_hcif_pin_code_request_evt, btu_hcif_link_key_request_evt, and btu_hcif_link_key_notification_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0149 In btu_hcif_mode_change_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with S... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0150 In rw_t3t_message_set_block_list of rw_t3t.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution priv... | 7.8 | HIGH | — | 0 |
| CVE-2020-0151 In avb_vbmeta_image_verify of avb_vbmeta_image.c there is a possible out of bounds read due to a missing bounds check. This could lead to a local information disclosure with System execution privilege... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0152 In avb_vbmeta_image_verify of avb_vbmeta_image.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0153 In phNxpNciHal_write_ext of phNxpNciHal_ext.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges... | 6.7 | MEDIUM | — | 0 |
| CVE-2020-0154 In nci_proc_core_rsp of nci_hrcv.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure via compromised device firmware with Syste... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0155 In phNxpNciHal_send_ese_hal_cmd of phNxpNciHal_ext.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privi... | 7.8 | HIGH | — | 0 |
| CVE-2020-0156 In NxpNfc::ioctl of NxpNfc.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with User execution privileges needed. User intera... | 5.5 | MEDIUM | — | 0 |
| CVE-2020-0157 In nfa_hci_conn_cback of nfa_hci_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure via compromised device firmware with Sy... | 4.9 | MEDIUM | — | 0 |
| CVE-2020-0158 In nfc_ncif_proc_t3t_polling_ntf of nfc_ncif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges ... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0159 In rw_mfc_writeBlock of rw_mfc.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. Use... | 5.5 | MEDIUM | — | 0 |
| CVE-2020-0160 In setSyncSampleParams of SampleTable.cpp, there is possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges need... | 8.8 | HIGH | — | 0 |
| CVE-2020-0161 In parseChunk of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed.... | 6.5 | MEDIUM | — | 0 |
| CVE-2020-0162 In parseSampleAuxiliaryInformationOffsets of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional ... | 6.5 | MEDIUM | — | 0 |
| CVE-2020-0163 In parseSampleAuxiliaryInformationSizes of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional ex... | 6.5 | MEDIUM | — | 0 |
| CVE-2020-0164 In phNxpNciHal_NfcDep_cmd_ext of phNxpNciHal_NfcDepSWPrio.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System executio... | 4.4 | MEDIUM | — | 0 |
| CVE-2020-0165 In phNxpNciHal_NfcDep_cmd_ext of phNxpNciHal_NfcDepSWPrio.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege via compromised de... | 6.7 | MEDIUM | — | 0 |
| CVE-2020-0166 In multiple functions of URI.java, there is a possible escalation of privilege due to missing validation in the parceling of URI information. This could lead to a local escalation of privilege with no... | 7.8 | HIGH | — | 0 |
| CVE-2020-0167 In load of ResourceTypes.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User in... | 5.5 | MEDIUM | — | 0 |
| CVE-2020-0168 In impeg2_fmt_conv_yuv420p_to_yuv420sp_uv of impeg2_format_conv.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional ex... | 8.8 | HIGH | — | 0 |
| CVE-2020-0169 In RTTTL_Event of eas_rtttl.c, there is possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User int... | 6.5 | MEDIUM | — | 0 |
| CVE-2020-0170 In IMY_Event of eas_imelody.c, there is possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User int... | 6.5 | MEDIUM | — | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.