Weekly Digest: a new vulnerability is published on the National Vulnerability Database (39 items)

New vulnerabilities from the NVD: CVE-2020-12681 Missing TLS certificate validation on 3xLogic Infinias eIDC32 devices through 3.4.125 allows an attacker to intercept/control the channel by which door lock policies are applied. Published at: July 26, 2021 at 03:15PM View on website July 26, 2021 at 05:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18174 A process injection vulnerability in setup.exe of AutoHotkey 1.1.32.00 allows attackers to escalate privileges. Published at: July 26, 2021 at 11:15PM View on website July 27, 2021 at 01:34AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18173 A DLL injection vulnerability in 1password.dll of 1Password 7.3.712 allows attackers to execute arbitrary code. Published at: July 26, 2021 at 11:15PM View on website July 27, 2021 at 01:34AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18172 A code injection vulnerability in the SeDebugPrivilege component of Trezor Bridge 2.0.27 allows attackers to escalate privileges. Published at: July 26, 2021 at 11:15PM View on website July 27, 2021 at 01:34AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18171 TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding (OLE) which can allow attackers to obfuscate and embed crafted files used to escalate privileges. Published at: July 26, 2021 at 11:15PM View on website July 27, 2021 at 01:34AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18170 An issue in the SeChangeNotifyPrivilege component of Abloy Key Manager Version 7.14301.0.0 allows attackers to escalate privileges via a change in permissions. Published at: July 26, 2021 at 11:15PM View on website July 27, 2021 at 01:34AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18169 A vulnerability in the Windows installer XML (WiX) toolset of TechSmith Snagit 19.1.1.2860 allows attackers to escalate privileges. Published at: July 26, 2021 at 11:15PM View on website July 27, 2021 at 01:34AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-17952 A remote code execution (RCE) vulnerability in /library/think/App.php of Twothink v2.0 allows attackers to execute arbitrary PHP code. Published at: July 26, 2021 at 11:15PM View on website July 27, 2021 at 01:34AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18430 tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage component, which can lead to a denial of service (DOS). Published at: July 27, 2021 at 01:15AM View on website July 27, 2021 at 03:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18428 tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service (DOS). Published at: July 27, 2021 at 01:15AM View on website July 27, 2021 at 03:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-5351 Dell EMC Data Protection Advisor versions 6.4, 6.5 and 18.1 contain an undocumented account with limited privileges that is protected with a hard-coded password. A remote unauthenticated malicious user with the knowledge of the hard-coded password may login to the system and gain read-only privileges. Published at: July 28, 2021 at 03:15AM View on website July 28, 2021 at 08:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-5341 Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1 and 19.2 and Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 and 2.4.1 contain a Deserialization of Untrusted Data Vulnerability. A remote unauthenticated attacker could exploit this vulnerability to send a serialized payload that would execute code on the system. Published at: July 28, 2021 at 03:15AM View on website July 28, 2021 at 08:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-26180 Dell EMC Isilon OneFS supported versions 8.1 and later and Dell EMC PowerScale OneFS supported version 9.0.0 contain an access issue with the remotesupport user account. A remote malicious user with low privileges may gain access to data stored on the /ifs directory through most protocols. Published at: July 28, 2021 at 03:15AM View on website July 28, 2021 at 08:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-5004 IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 192957. Published at: July 28, 2021 at 04:15PM View on website July 28, 2021 at 05:37PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-4974 IBM Jazz Foundation products are vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 192434. Published at: July 28, 2021 at 04:15PM View on website July 28, 2021 at 05:37PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-36239 Jira Data Center, Jira Core Data Center, Jira Software Data Center from version 6.3.0 before 8.5.16, from 8.6.0 before 8.13.8, from 8.14.0 before 8.17.0 and Jira Service Management Data Center from version 2.0.2 before 4.5.16, from version 4.6.0 before 4.13.8, and from version 4.14.0 before 4.17.0 exposed a Ehcache RMI network service which attackers, who can connect to the service, on port 40001 and potentially 40011[0][1], could execute arbitrary code of their choice in Jira through deserialization due to a missing authentication vulnerability. While Atlassian strongly suggests restricting access to the Ehcache ports to only Data Center instances, fixed versions of Jira will now require a shared secret in order to allow access to the Ehcache service. [0] In Jira Data Center, Jira Core Data Center, and Jira Software Data Center versions prior to 7.13.1, the Ehcache object port can be randomly allocated. [1] In Jira Service Management Data Center versions prior to 3 .16.1, the Ehcache object port can be randomly allocated. Published at: July 29, 2021 at 02:15PM View on website July 29, 2021 at 03:35PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2021-20505 The PowerVM Logical Partition Mobility(LPM) (PowerVM Hypervisor FW920, FW930, FW940, and FW950) encryption key exchange protocol can be compromised. If an attacker has the ability to capture encrypted LPM network traffic and is able to gain service access to the FSP they can use this information to perform a series of PowerVM service procedures to decrypt the captured migration traffic IBM X-Force ID: 198232 Published at: July 29, 2021 at 03:15PM View on website July 29, 2021 at 05:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-5353 The Dell Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 default configuration for Network File System (NFS) allows access to an 'admin' home directory. An attacker may leverage a spoofed Unique Identifier (UID) over NFS to rewrite sensitive files to gain administrative access to the system. Published at: July 29, 2021 at 07:15PM View on website July 29, 2021 at 09:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-5329 Dell EMC Avamar Server contains an open redirect vulnerability. A remote unauthenticated attacker may exploit this vulnerability to redirect application users to arbitrary web URLs by tricking the victim users to click on maliciously crafted links. Published at: July 29, 2021 at 07:15PM View on website July 29, 2021 at 09:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-22765 Cross Site Scripting (XSS) vulnerability in NukeViet cms 4.4.0 via the editor in the News module. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-22761 Cross Site Request Forgery (CSRF) vulnerability in FlatPress 1.1 via the DeleteFile function in flat/admin.php. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21854 Cross Site Scripting vulnerabiity exists in WDScanner 1.1 in the system management page. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21809 SQL Injection vulnerability in NukeViet CMS module Shops 4.0.29 and 4.3 via the (1) listid parameter in detail.php and the (2) group_price or groupid parameters in search_result.php. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21808 SQL Injection vulnerability in NukeViet CMS 4.0.10 - 4.3.07 via:the topicsid parameter in modules/news/admin/addtotopics.php. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21806 SQL Injection Vulnerability in ECTouch v2 via the shop page in index.php.. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20701 A stored cross site scripting (XSS) vulnerability in /app/config/of S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20700 A stored cross site scripting (XSS) vulnerability in /app/form_add/of S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the Title Entry text box. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20699 A cross site scripting (XSS) vulnerability in S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the Copyright text box under Basic Settings. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20698 A remote code execution (RCE) vulnerability in /1.com.php of S-CMS PHP v3.0 allows attackers to getshell via modification of a PHP file. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-19118 Cross Site Scripting (XSS) vulnerabiity in YzmCMS 5.2 via the site_code parameter in admin/index/init.html. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18175 SQL Injection vulnerability in Metinfo 6.1.3 via a dosafety_emailadd action in basic.php. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18158 Cross Site Scripting (XSS) vulnerability in HuCart 5.7.4 via nickname in index.php. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18157 Cross Site Request Forgery (CSRF) vulnerability in MetInfo 6.1.3 via a doaddsave action in admin/index.php. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18013 SQL Injextion vulnerability exists in Whatsns 4.0 via the ip parameter in index.php?admin_banned/add.htm. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-16839 On Crestron DM-NVX-DIR, DM-NVX-DIR80, and DM-NVX-ENT devices before the DM-XIO/1-0-3-802 patch, the password can be changed by sending an unauthenticated WebSocket request. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-15948 eGain Chat 15.5.5 allows XSS via the Name (aka full_name) field. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-14999 A logic bug in system monitoring driver of Acronis Agent after 12.5.21540 and before 12.5.23094 allowed to bypass Windows memory protection and access sensitive data. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-11511 The LearnPress plugin before 3.2.6.9 for WordPress allows remote attackers to escalate the privileges of any user to LP Instructor via the accept-to-be-teacher action parameter. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-10590 Replicated Classic 2.x versions have an improperly secured API that exposes sensitive data from the Replicated Admin Console configuration. An attacker with network access to the Admin Console port (8800) on the Replicated Classic server could retrieve the TLS Keypair (Cert and Key) used to configure the Admin Console. Published at: July 30, 2021 at 05:15PM View on website July 30, 2021 at 07:33PM via National Vulnerability Database