آسیبپذیریهای حیاتی هفته دوم مردادماه
این هفته آسیبپذیریهای «حیاتی» و «پرخطر» بسیاری در سیستمعامل CentOS از توزیعهای لینوکس گزارش شد. همچنین در محصولات شرکتهای IBM، Cisco، VMware، Qualcomm، HPE، rConfig، Huawei و افزونههای وُردپرس چندین آسیبپذیری «حیاتی» و «پرخطر» وجود داشت که وصلهها و بهروزرسانیهایی به منظور رفع آنها ارائه شده است. امّا مهمترین آسیبپذیری هفته، آسیبپذیری بوتلودر Grub2 بود که زمینه تسخیر سیستمعاملهای ویندوز و لینوکس را برای مهاجمین فراهم میسازد.
لیست این آسیبپذیریها به همراه ارزش روز صفر و لینک وصلهها و بهروزرسانیهای ارائهشده در جدول زیر آمده است.
|
شناسه آسیبپذیری |
امتیاز مبنا |
محصول آسیبپذیر |
نوع آسیبپذیری |
ارزش روز صفر |
رفع آسیبپذیری |
|
CVE-2020-14158 |
۵.۰ |
ABUS Secvest FUMO50110 RF |
Weak Authentication |
$۱k-$2k |
Not Defined |
|
CVE-2020-14337 |
۵.۳ |
Ansible Tower API User |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15900 |
۹.۸ |
Artifex Ghostscript Access Control Underflow |
Memory Corruption |
$۲k-$5k |
|
|
CVE-2020-15125 |
۷.۷ |
auth0 Package Log |
Information Disclosure |
$۱k-$2k |
|
|
CVE-2020-15625 |
۷.۵ |
CentOS Web Panel ajax_add_mailbox.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15613 |
۹.۸ |
CentOS Web Panel ajax_admin_apis.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15607 |
۹.۸ |
CentOS Web Panel ajax_admin_apis.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15606 |
۹.۸ |
CentOS Web Panel ajax_admin_apis.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15431 |
۹.۸ |
CentOS Web Panel ajax_crons.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15429 |
۹.۸ |
CentOS Web Panel ajax_crons.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15428 |
۹.۸ |
CentOS Web Panel ajax_crons.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15626 |
۷.۵ |
CentOS Web Panel ajax_dashboard.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15611 |
۷.۵ |
CentOS Web Panel ajax_dashboard.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15609 |
۹.۸ |
CentOS Web Panel ajax_dashboard.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15608 |
۹.۸ |
CentOS Web Panel ajax_dashboard.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15435 |
۹.۸ |
CentOS Web Panel ajax_dashboard.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15427 |
۹.۸ |
CentOS Web Panel ajax_disk_usage.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15615 |
۹.۸ |
CentOS Web Panel ajax_ftp_manager.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15612 |
۹.۸ |
CentOS Web Panel ajax_ftp_manager.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15620 |
۷.۵ |
CentOS Web Panel ajax_list_accounts.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15619 |
۷.۵ |
CentOS Web Panel ajax_list_accounts.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15618 |
۷.۵ |
CentOS Web Panel ajax_list_accounts.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15617 |
۷.۵ |
CentOS Web Panel ajax_list_accounts.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15616 |
۷.۵ |
CentOS Web Panel ajax_list_accounts.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15430 |
۹.۸ |
CentOS Web Panel ajax_list_accounts.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15628 |
۷.۵ |
CentOS Web Panel ajax_mail_autoreply.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15627 |
۷.۵ |
CentOS Web Panel ajax_mail_autoreply.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15622 |
۷.۵ |
CentOS Web Panel ajax_mail_autoreply.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15621 |
۷.۵ |
CentOS Web Panel ajax_mail_autoreply.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15432 |
۹.۸ |
CentOS Web Panel ajax_migration_cpanel.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15426 |
۹.۸ |
CentOS Web Panel ajax_migration_cpanel.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15623 |
۹.۸ |
CentOS Web Panel ajax_mod_security.php |
Privilege Escalation |
$۲k-$5k |
Not Defined |
|
CVE-2020-15425 |
۹.۸ |
CentOS Web Panel ajax_mod_security.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15424 |
۹.۸ |
CentOS Web Panel ajax_mod_security.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15423 |
۹.۸ |
CentOS Web Panel ajax_mod_security.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15422 |
۹.۸ |
CentOS Web Panel ajax_mod_security.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15421 |
۹.۸ |
CentOS Web Panel ajax_mod_security.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15624 |
۷.۵ |
CentOS Web Panel ajax_new_account.php |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2020-15614 |
۹.۸ |
CentOS Web Panel ajax_php_pecl.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15610 |
۹.۸ |
CentOS Web Panel ajax_php_pecl.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15434 |
۹.۸ |
CentOS Web Panel ajax_php_pecl.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15433 |
۹.۸ |
CentOS Web Panel ajax_php_pecl.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-15420 |
۹.۸ |
CentOS Web Panel loader_ajax.php |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-12845 |
۷.۵ |
Cherokee NULL Pointer Dereference |
DoS |
$۰-$۱k |
Not Defined |
|
CVE-2020-3383 |
۸.۸ |
Cisco Data Center Network Manager Archive Utility |
Directory Traversal |
$۱۰k-$25k |
|
|
CVE-2020-3377 |
۶.۳ |
Cisco Data Center Network Manager Device Manager Application |
Command Injection |
$۱۰k-$25k |
|
|
CVE-2020-3376 |
۷.۳ |
Cisco Data Center Network Manager Device Manager Application |
Weak Authentication |
$۱۰k-$25k |
|
|
CVE-2020-3384 |
۸.۲ |
Cisco Data Center Network Manager REST API Endpoint |
Command Injection |
$۱۰k-$25k |
|
|
CVE-2020-3386 |
۸.۸ |
Cisco Data Center Network Manager REST API Endpoint |
Privilege Escalation |
$۱۰k-$25k |
|
|
CVE-2020-3382 |
۹.۸ |
Cisco Data Center Network Manager REST API |
Weak Encryption |
$۵k-$10k |
|
|
CVE-2020-3460 |
۴.۷ |
Cisco Data Center Network Manager Web-based Management Interface |
XSS |
$۵k-$10k |
|
|
CVE-2020-3461 |
۵.۳ |
Cisco Data Center Network Manager Web-based Management Interface |
Information Disclosure |
$۵k-$10k |
|
|
CVE-2020-3462 |
۶.۳ |
Cisco Data Center Network Manager Web-based Management Interface |
SQL Injection |
$۱۰k-$25k |
|
|
CVE-2020-3375 |
۹.۸ |
Cisco SD-WAN Solution |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2020-3374 |
۹.۹ |
Cisco SD-WAN vManage Web-based Management Interface |
Weak Authentication |
$۵k-$10k |
|
|
CVE-2020-16094 |
۶.۳ |
Claws Mail IMAP Server imap_scan_tree_recursive Stack-based |
Memory Corruption |
$۲k-$5k |
Not Defined |
|
CVE-2020-11476 |
۷.۲ |
concrete5 File Upload |
Privilege Escalation |
$۱k-$2k |
|
|
CVE-2020-7829 |
۷.۸ |
DaviewIndy Daview.exe Heap-based |
Memory Corruption |
$۱k-$2k |
Not Defined |
|
CVE-2020-7828 |
۷.۸ |
DaviewIndy Daview.exe Heap-based |
Memory Corruption |
$۱k-$2k |
Not Defined |
|
CVE-2020-7827 |
۷.۸ |
DaviewIndy Daview.exe Use-After-Free |
Memory Corruption |
$۱k-$2k |
Not Defined |
|
CVE-2020-5377 |
۹.۱ |
Dell EMC OpenManage Server Administrator Web API |
Directory Traversal |
$۱۰k-$25k |
|
|
CVE-2020-16095 |
۶.۱ |
dlf Extension |
XSS |
$۰-$۱k |
|
|
CVE-2020-7699 |
۷.۵ |
express-fileupload |
Remote Code Execution |
$۲k-$5k |
|
|
CVE-2020-7687 |
۷.۵ |
fast-http index.js fs.readFile |
Directory Traversal |
$۲k-$5k |
Not Defined |
|
CVE-2020-8192 |
۵.۳ |
Fastify Resource Exhaustion |
DoS |
$۰-$۱k |
|
|
CVE-2020-15134 |
۸.۰ |
Faye Certificate Verification Connection#start_tls Man-in-the-Middle |
Weak Authentication |
$۱k-$2k |
|
|
CVE-2020-15133 |
۸.۰ |
faye-websocket Certificate Verification Client Man-in-the-Middle |
Weak Authentication |
$۱k-$2k |
|
|
CVE-2020-6098 |
۷.۵ |
freeDiameter |
DoS |
$۰-$۱k |
Not Defined |
|
CVE-2020-15103 |
۳.۵ |
FreeRDP rdpegfx Channel Integer Overflow |
DoS |
$۰-$۱k |
|
|
CVE-2020-10984 |
۸.۸ |
Gambio GX admin.php |
CSRF |
$۰-$۱k |
|
|
CVE-2020-10985 |
۴.۸ |
Gambio GX coupon_admin.php |
XSS |
$۰-$۱k |
|
|
CVE-2020-10982 |
۴.۹ |
Gambio GX gv_mail.php |
SQL Injection |
$۱k-$2k |
|
|
CVE-2020-10983 |
۴.۹ |
Gambio GX mobile.php |
SQL Injection |
$۱k-$2k |
|
|
CVE-2020-7698 |
۹.۸ |
Gerapy popen |
Unknown Vulnerability |
$۲k-$5k |
|
|
CVE-2020-16118 |
۷.۵ |
GNOME Balsa imap-handle.c imap_mbox_connect NULL Pointer Dereference |
DoS |
$۰-$۱k |
|
|
CVE-2020-16117 |
۷.۵ |
GNOME evolution-data-server imapx_connect_to_server NULL Pointer Dereference |
DoS |
$۰-$۱k |
|
|
CVE-2020-11110 |
۶.۱ |
Grafana Stored |
XSS |
$۰-$۱k |
Not Defined |
|
CVE-2020-5760 |
۷.۸ |
Grandstream HT800 Configuration File |
Command Injection |
$۲k-$5k |
Not Defined |
|
CVE-2020-5763 |
۸.۸ |
Grandstream HT800 SSH Service Backdoor |
Weak Authentication |
$۱k-$2k |
Not Defined |
|
CVE-2020-5761 |
۷.۵ |
Grandstream HT800 TR-069 Service CPU Exhaustion |
DoS |
$۰-$۱k |
Not Defined |
|
CVE-2020-5762 |
۷.۵ |
Grandstream HT800 TR-069 Service NULL Pointer Dereference |
DoS |
$۰-$۱k |
Not Defined |
|
CVE-2020-10713 |
۸.۲ |
grub2 Config File Parser grub.cfg BootHole |
Memory Corruption |
$۱۰k-$25k |
Not Defined |
|
CVE-2020-14311 |
۵.۷ |
grub2 ext Filesystem |
Memory Corruption |
$۲k-$5k |
Not Defined |
|
CVE-2020-15705 |
۶.۴ |
grub2 Kernel Signature Validator |
Privilege Escalation |
$۱k-$2k |
Not Defined |
|
CVE-2020-14308 |
۷.۱ |
grub2 |
Memory Corruption |
$۱k-$2k |
|
|
CVE-2020-14310 |
۵.۷ |
grub2 read_section_as_string() Heap-based |
Memory Corruption |
$۲k-$5k |
Not Defined |
|
CVE-2020-15706 |
۶.۴ |
grub2 Secure Boot grub_script_function_create() Use-After-Free |
Memory Corruption |
$۲k-$5k |
Not Defined |
|
CVE-2020-14309 |
۵.۷ |
grub2 squashfs Filesystem Heap-based |
Memory Corruption |
$۲k-$5k |
Not Defined |
|
CVE-2020-15707 |
۵.۷ |
grub2 UEFI Secure Boot grub_initrd_init Integer Overflow |
Memory Corruption |
$۲k-$5k |
Not Defined |
|
CVE-2020-10609 |
۷.۵ |
Grundfos CIM 500 Credential Plaintext |
Weak Encryption |
$۰-$۱k |
Not Defined |
|
CVE-2020-7205 |
۷.۸ |
HPE Intelligent Provisioning grub2 |
Code Execution |
$۱۰k-$25k |
|
|
CVE-2020-9248 |
۵.۵ |
Huawei FusionComput Authorization |
Privilege Escalation |
$۱۰k-$25k |
Not Defined |
|
CVE-2020-9251 |
۲.۴ |
Huawei Mate 20 Student Mode |
Privilege Escalation |
$۱۰k-$25k |
|
|
CVE-2020-9077 |
۳.۳ |
Huawei P30 |
Information Disclosure |
$۵k-$10k |
|
|
CVE-2020-9249 |
۳.۵ |
Huawei P30 Memory Leak |
DoS |
$۵k-$10k |
|
|
CVE-2020-4318 |
۵.۴ |
IBM Intelligent Operations Center Web UI |
XSS |
$۵k-$10k |
|
|
CVE-2020-4317 |
۵.۴ |
IBM Intelligent Operations Center Web UI |
XSS |
$۵k-$10k |
|
|
CVE-2020-4463 |
۸.۲ |
IBM Maximo Asset Management XML Data |
XML External Entity |
$۱۰k-$25k |
|
|
CVE-2020-4498 |
۴.۴ |
IBM MQ Appliance |
Information Disclosure |
$۱k-$2k |
|
|
CVE-2019-4731 |
۵.۵ |
IBM MQ Appliance |
Information Disclosure |
$۲k-$5k |
|
|
CVE-2020-4465 |
۶.۵ |
IBM MQ/MQ Appliance/MQ for HPE NonStop |
DoS |
$۲k-$5k |
|
|
CVE-2020-4319 |
۴.۳ |
IBM MQ/MQ Appliance/MQ for HPE NonStop Error Message |
Information Disclosure |
$۵k-$10k |
|
|
CVE-2020-4375 |
۷.۵ |
IBM MQ/MQ Appliance/MQ for HPE NonStop Memory Leak |
DoS |
$۵k-$10k |
|
|
CVE-2020-4644 |
۵.۴ |
IBM Planning Analytics Clickjacking |
Privilege Escalation |
$۱۰k-$25k |
|
|
CVE-2020-4645 |
۵.۴ |
IBM Planning Analytics Web UI |
XSS |
$۵k-$10k |
|
|
CVE-2020-4408 |
۴.۶ |
IBM QRadar Advisor |
Information Disclosure |
$۰-$۱k |
|
|
CVE-2020-4186 |
۵.۳ |
IBM Security Guardium Login Page |
Information Disclosure |
$۵k-$10k |
|
|
CVE-2020-4185 |
۵.۹ |
IBM Security Guardium |
Weak Encryption |
$۵k-$10k |
|
|
CVE-2020-4567 |
۹.۸ |
IBM Tivoli Key Lifecycle Manager Account Lockout |
Weak Authentication |
$۵k-$10k |
|
|
CVE-2020-4572 |
۵.۳ |
IBM Tivoli Key Lifecycle Manager Error Message |
Information Disclosure |
$۵k-$10k |
|
|
CVE-2020-4573 |
۵.۳ |
IBM Tivoli Key Lifecycle Manager |
Information Disclosure |
$۵k-$10k |
|
|
CVE-2020-4569 |
۶.۵ |
IBM Tivoli Key Lifecycle Manager Protection Mechanism |
Privilege Escalation |
$۱۰k-$25k |
|
|
CVE-2020-4574 |
۷.۵ |
IBM Tivoli Key Lifecycle Manager |
Weak Authentication |
$۵k-$10k |
|
|
CVE-2020-4405 |
۴.۳ |
IBM Verify Gateway Log File |
Information Disclosure |
$۵k-$10k |
|
|
CVE-2020-15954 |
۶.۵ |
KDE KMail POP3 |
Weak Encryption |
$۰-$۱k |
Not Defined |
|
CVE-2020-7017 |
۵.۴ |
Kibana Region Map Stored |
XSS |
$۰-$۱k |
|
|
CVE-2020-7016 |
۶.۵ |
Kibana Timelion CPU Exhaustion |
DoS |
$۰-$۱k |
|
|
CVE-2020-5614 |
۵.۳ |
KonaWiki |
Directory Traversal |
$۲k-$5k |
Not Defined |
|
CVE-2020-5613 |
۶.۱ |
KonaWiki URL |
XSS |
$۱k-$2k |
Not Defined |
|
CVE-2020-5612 |
۶.۱ |
KonaWiki URL |
XSS |
$۱k-$2k |
Not Defined |
|
CVE-2020-8553 |
۵.۹ |
Kubernetes ingress-nginx |
Privilege Escalation |
$۱k-$2k |
|
|
CVE-2020-14316 |
۸.۰ |
Kubevirt VMI |
Privilege Escalation |
$۲k-$5k |
|
|
CVE-2020-15953 |
۷.۴ |
LibEtPan STARTTLS Buffer |
Memory Corruption |
$۲k-$5k |
Not Defined |
|
CVE-2020-16135 |
۹.۸ |
libssh tftpserver.c ssh_buffer_new NULL Pointer Dereference |
DoS |
$۰-$۱k |
|
|
CVE-2020-16166 |
۳.۱ |
Linux Kernel RNG random.c |
Information Disclosure |
$۵k-$10k |
|
|
CVE-2020-9689 |
۶.۵ |
Magento |
Directory Traversal |
$۱k-$2k |
|
|
CVE-2020-9691 |
۹.۶ |
Magento DOM-Based |
XSS |
$۰-$۱k |
|
|
CVE-2020-9692 |
۶.۵ |
Magento |
Remote Code Execution |
$۲k-$5k |
|
|
CVE-2020-9690 |
۴.۲ |
Magento Signature Verification Timing |
Information Disclosure |
$۱k-$2k |
|
|
CVE-2020-7682 |
۷.۵ |
marked-tree index.js fs.readFile |
Directory Traversal |
$۲k-$5k |
Not Defined |
|
CVE-2020-7681 |
۷.۵ |
marscode index.js fs.readFile |
Directory Traversal |
$۲k-$5k |
Not Defined |
|
CVE-2020-15086 |
۹.۸ |
mediace Extension Checksum |
Remote Code Execution |
$۲k-$5k |
|
|
CVE-2020-7697 |
۹.۸ |
mock2easy |
Command Injection |
$۲k-$5k |
Not Defined |
|
CVE-2020-16157 |
۳.۵ |
Nagios Log Server Notification Methods Stored |
XSS |
$۰-$۱k |
|
|
CVE-2020-11474 |
۷.۸ |
NCP Secure Enterprise Client Support Assistant enumusb.reg Symlink |
Privilege Escalation |
$۱k-$2k |
|
|
CVE-2019-20033 |
۹.۸ |
NEC SV8100 DIM Interface Default Credentials |
Weak Authentication |
$۱k-$2k |
Not Defined |
|
CVE-2019-20028 |
۷.۵ |
NEC SV8100/SV9100/SL1100/SL2100 Administration Interface |
Information Disclosure |
$۱k-$2k |
Not Defined |
|
CVE-2019-20032 |
۷.۱ |
NEC SV8100/SV9100/SL1100/SL2100 |
Privilege Escalation |
$۲k-$5k |
Not Defined |
|
CVE-2019-20027 |
۶.۴ |
NEC SV8100/SV9100/SL1100/SL2100 |
Weak Authentication |
$۱k-$2k |
Not Defined |
|
CVE-2019-20029 |
۸.۸ |
NEC SV8100/SV9100/SL1100/SL2100 WebPro |
Privilege Escalation |
$۲k-$5k |
Not Defined |
|
CVE-2019-20025 |
۹.۸ |
NEC SV9100 Default Credentials |
Weak Authentication |
$۱k-$2k |
|
|
CVE-2019-20026 |
۹.۸ |
NEC SV9100 WebPro Interface Credentials |
DoS |
$۰-$۱k |
Not Defined |
|
CVE-2019-20030 |
۱۰ |
NEC UM8000 |
Privilege Escalation |
$۲k-$5k |
Not Defined |
|
CVE-2019-20031 |
۷.۷ |
NEC UM8000/UM4730 Telephone User Interface Bruteforce |
Weak Authentication |
$۱k-$2k |
Not Defined |
|
CVE-2020-10925 |
۸.۸ |
Netgear R6700 File Download |
Weak Authentication |
$۵k-$10k |
Not Defined |
|
CVE-2020-10928 |
۸.۴ |
Netgear R6700 File Upload Heap-based |
Memory Corruption |
$۱۰k-$25k |
Not Defined |
|
CVE-2020-10929 |
۸.۸ |
Netgear R6700 File Upload Integer Overflow |
Memory Corruption |
$۱۰k-$25k |
Not Defined |
|
CVE-2020-15417 |
۶.۳ |
Netgear R6700 File Upload Stack-based |
Memory Corruption |
$۱۰k-$25k |
Not Defined |
|
CVE-2020-10926 |
۸.۸ |
Netgear R6700 Firmware Update |
Privilege Escalation |
$۱۰k-$25k |
Not Defined |
|
CVE-2020-10927 |
۸.۸ |
Netgear R6700 Firmware Update |
Weak Encryption |
$۵k-$10k |
Not Defined |
|
CVE-2020-15416 |
۸.۸ |
Netgear R6700 httpd Service Stack-based |
Memory Corruption |
$۱۰k-$25k |
Not Defined |
|
CVE-2020-10924 |
۸.۸ |
Netgear R6700 Service Port 5000 Stack-based |
Memory Corruption |
$۲۵k-$50k |
Not Defined |
|
CVE-2020-10923 |
۸.۸ |
Netgear R6700 Service Port 5000 |
Weak Authentication |
$۵k-$10k |
Not Defined |
|
CVE-2020-10930 |
۶.۵ |
Netgear R6700 URL Credentials |
Information Disclosure |
$۵k-$10k |
Not Defined |
|
CVE-2020-8202 |
۵.۳ |
NextCloud Preferred Providers App |
DoS |
$۰-$۱k |
|
|
CVE-2020-15128 |
۶.۱ |
October CMS Cookie |
Privilege Escalation |
$۲k-$5k |
|
|
CVE-2020-14487 |
۹.۸ |
OpenClinic GA Default Credentials |
Weak Authentication |
$۱k-$2k |
Not Defined |
|
CVE-2020-14488 |
۸.۸ |
OpenClinic GA File Upload Verification |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-14489 |
۷.۵ |
OpenClinic GA Hash Password |
Weak Encryption |
$۰-$۱k |
Not Defined |
|
CVE-2020-14486 |
۸.۸ |
OpenClinic GA |
Privilege Escalation |
$۲k-$5k |
Not Defined |
|
CVE-2020-14492 |
۶.۱ |
OpenClinic GA |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-14490 |
۸.۸ |
OpenClinic GA |
Remote Code Execution |
$۲k-$5k |
Not Defined |
|
CVE-2020-14493 |
۸.۸ |
OpenClinic GA SQL |
Privilege Escalation |
$۲k-$5k |
Not Defined |
|
CVE-2020-12460 |
۹.۸ |
OpenDMARC opendmarc_xml_parse Heap-based |
Memory Corruption |
$۲k-$5k |
Not Defined |
|
CVE-2020-16088 |
۹.۸ |
OpenIKED iked ca.c |
Weak Authentication |
$۱k-$2k |
Not Defined |
|
CVE-2020-10643 |
۶.۵ |
OSIsoft PI Vision 2019 Web Page |
Open Redirect |
$۲k-$5k |
Not Defined |
|
CVE-2020-10604 |
۵.۳ |
OSIsoft Product PI Network Manager Crash |
DoS |
$۰-$۱k |
Not Defined |
|
CVE-2020-10614 |
۶.۳ |
OSIsoft Product PI Vision Database Code Injection |
Privilege Escalation |
$۲k-$5k |
Not Defined |
|
CVE-2020-12620 |
۵.۵ |
Pi-Hole dns-servers.conf |
Command Injection |
$۲k-$5k |
Not Defined |
|
CVE-2020-14162 |
۷.۸ |
Pi-Hole sudo |
Privilege Escalation |
$۲k-$5k |
Not Defined |
|
CVE-2020-8218 |
۷.۲ |
Pulse Connect Secure Admin Web Interface |
Remote Code Execution |
$۲k-$5k |
|
|
CVE-2020-8222 |
۶.۸ |
Pulse Connect Secure Administrator Web Interface |
Directory Traversal |
$۱k-$2k |
|
|
CVE-2020-8221 |
۶.۸ |
Pulse Connect Secure Administrator Web Interface |
Directory Traversal |
$۱k-$2k |
|
|
CVE-2020-8217 |
۵.۴ |
Pulse Connect Secure Citrix ICA URL |
XSS |
$۰-$۱k |
|
|
CVE-2020-8220 |
۶.۵ |
Pulse Connect Secure |
Command Injection |
$۲k-$5k |
|
|
CVE-2020-8206 |
۹.۸ |
Pulse Connect Secure Google TOTP |
Weak Authentication |
$۱k-$2k |
|
|
CVE-2020-8216 |
۴.۳ |
Pulse Connect Secure Meeting Detail |
Information Disclosure |
$۱k-$2k |
|
|
CVE-2020-8219 |
۵.۵ |
Pulse Connect Secure Permission Check Password |
Privilege Escalation |
$۲k-$5k |
|
|
CVE-2020-8204 |
۶.۱ |
Pulse Connect Secure PSAL Page |
XSS |
$۰-$۱k |
|
|
CVE-2020-12880 |
۵.۵ |
Pulse Policy Secure.Pulse Connect Secure Kernel Boot |
Privilege Escalation |
$۱k-$2k |
|
|
CVE-2020-15408 |
۴.۶ |
Pulse Secure Pulse Connect Secure Web Interface |
Privilege Escalation |
$۲k-$5k |
|
|
CVE-2020-15863 |
۷.۹ |
QEMU XGMAC Ethernet Controller xgmac.c |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2020-3681 |
۵.۵ |
Qualcomm PLC Firmware HPAV2 |
Privilege Escalation |
$۲k-$5k |
|
|
CVE-2020-3699 |
۹.۸ |
Qualcomm Snapdragon Auto assoc Response Out-of-Bounds |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2019-14101 |
۷.۱ |
Qualcomm Snapdragon Auto Command Out-of-Bounds |
Information Disclosure |
$۵k-$10k |
|
|
CVE-2019-14100 |
۷.۸ |
Qualcomm Snapdragon Auto debugfs |
Privilege Escalation |
$۲۵k-$50k |
|
|
CVE-2019-14093 |
۷.۸ |
Qualcomm Snapdragon Auto Display Module Out-of-Bounds |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2019-10580 |
۷.۸ |
Qualcomm Snapdragon Auto Kernel Thread Use-After-Free |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2019-14130 |
۷.۸ |
Qualcomm Snapdragon Auto |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2019-14123 |
۷.۸ |
Qualcomm Snapdragon Auto |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2019-14099 |
۷.۸ |
Qualcomm Snapdragon Auto |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2020-3688 |
۹.۸ |
Qualcomm Snapdragon Auto MP4 File |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2020-3700 |
۷.۵ |
Qualcomm Snapdragon Auto Out-of-Bounds |
Information Disclosure |
$۵k-$10k |
|
|
CVE-2019-14124 |
۷.۸ |
Qualcomm Snapdragon Auto Protection Module |
Memory Corruption |
$۵k-$10k |
|
|
CVE-2020-3698 |
۹.۸ |
Qualcomm Snapdragon Auto QoS DSCP Mapping Out-of-Bounds |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2019-14037 |
۷.۸ |
Qualcomm Snapdragon Auto Socket Use-After-Free |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2020-3671 |
۹.۸ |
Qualcomm Snapdragon Compute OpenGL ES Use-After-Free |
Memory Corruption |
$۱۰k-$25k |
|
|
CVE-2020-3701 |
۷.۸ |
Qualcomm Snapdragon Mobile camx Driver Use-After-Free |
Memory Corruption |
$۵k-$10k |
|
|
CVE-2020-15712 |
۴.۳ |
rConfig ajaxGetFileByPath.php |
Directory Traversal |
$۱k-$2k |
|
|
CVE-2020-15714 |
۸.۸ |
rConfig Back-End Database devices.crud.php |
SQL Injection |
$۱k-$2k |
|
|
CVE-2020-15713 |
۸.۸ |
rConfig Back-End Database devices.php |
SQL Injection |
$۱k-$2k |
|
|
CVE-2020-15715 |
۹.۹ |
rConfig search.crud.php |
Remote Code Execution |
$۲k-$5k |
|
|
CVE-2020-10731 |
۵.۵ |
Red Hat OpenStack Platform Virtual Machine nova_libvirt |
Privilege Escalation |
$۱۰k-$25k |
|
|
CVE-2020-14334 |
۳.۵ |
Red Hat Satellite Cache File |
Information Disclosure |
$۵k-$10k |
|
|
CVE-2020-16164 |
۶.۳ |
RIPE NCC RPKI Validator Access Restriction |
Privilege Escalation |
$۱k-$2k |
Not Defined |
|
CVE-2020-16162 |
۵.۶ |
RIPE NCC RPKI Validator CRL |
Weak Authentication |
$۱k-$2k |
Not Defined |
|
CVE-2020-16163 |
۶.۳ |
RIPE NCC RPKI Validator RRDP Fetch |
Privilege Escalation |
$۱k-$2k |
Not Defined |
|
CVE-2020-7686 |
۷.۵ |
rollup-plugin-dev-server readFileFromContentBase |
Directory Traversal |
$۲k-$5k |
Not Defined |
|
CVE-2020-7683 |
۷.۵ |
rollup-plugin-serve readFileFromContentBase |
Directory Traversal |
$۲k-$5k |
Not Defined |
|
CVE-2020-5384 |
۸.۴ |
RSA MFA Agent |
Weak Authentication |
$۵k-$10k |
|
|
CVE-2020-13913 |
۶.۱ |
Ruckus Wireless C110 |
XSS |
$۱k-$2k |
|
|
CVE-2020-13919 |
۹.۸ |
Ruckus Wireless C110 emfd/libemf |
Command Injection |
$۲k-$5k |
|
|
CVE-2020-13915 |
۷.۵ |
Ruckus Wireless C110 emfd/libemf Credentials |
Privilege Escalation |
$۲k-$5k |
|
|
CVE-2020-13917 |
۹.۸ |
Ruckus Wireless C110 rkscli |
Command Injection |
$۲k-$5k |
|
|
CVE-2020-13918 |
۷.۵ |
Ruckus Wireless C110 webs |
Information Disclosure |
$۱k-$2k |
|
|
CVE-2020-13916 |
۹.۸ |
Ruckus Wireless C110 webs Stack-based |
Memory Corruption |
$۲k-$5k |
|
|
CVE-2020-13914 |
۷.۵ |
Ruckus Wireless C110 Webserver Segmentation Fault |
DoS |
$۱k-$2k |
|
|
CVE-2020-13997 |
۷.۵ |
Shopware Error Password |
Information Disclosure |
$۱k-$2k |
|
|
CVE-2020-13971 |
۵.۴ |
Shopware Mediabrowser File Upload Persistent |
XSS |
$۰-$۱k |
|
|
CVE-2020-13970 |
۸.۸ |
Shopware Mediabrowser upload by URL Server-Side Request Forgery |
Server-Side Request Forgery |
$۲k-$5k |
|
|
CVE-2020-2078 |
۳.۵ |
SICK Package Analytics Configuration File Credentials |
Information Disclosure |
$۱k-$2k |
|
|
CVE-2020-2077 |
۳.۵ |
SICK Package Analytics REST API |
Information Disclosure |
$۱k-$2k |
|
|
CVE-2020-2076 |
۶.۳ |
SICK Package Analytics REST API |
Weak Authentication |
$۱k-$2k |
|
|
CVE-2020-15130 |
۷.۵ |
slpjs Package NFT1 Child Genesis Transaction |
Incorrect Comparison |
$۲k-$5k |
|
|
CVE-2020-15131 |
۷.۵ |
slp-validate NFT1 Child Genesis Transaction |
Incorrect Comparison |
$۲k-$5k |
|
|
CVE-2020-11933 |
۷.۳ |
snapd External Media |
Weak Encryption |
$۱k-$2k |
|
|
CVE-2020-11934 |
۵.۹ |
snapd snapctl launcher.go OpenURL() |
Privilege Escalation |
$۱k-$2k |
|
|
CVE-2020-15870 |
۶.۱ |
Sonatype Nexus Repository Manager |
XSS |
$۰-$۱k |
|
|
CVE-2020-15869 |
۶.۱ |
Sonatype Nexus Repository Manager |
XSS |
$۰-$۱k |
|
|
CVE-2020-15871 |
۹.۶ |
Sonatype Nexus Repository Manager |
Remote Code Execution |
$۲k-$5k |
|
|
CVE-2020-15592 |
۷.۵ |
SteelCentral Aternity Agent Inter-Process Communication plugins |
Directory Traversal |
$۲k-$5k |
Not Defined |
|
CVE-2020-15593 |
۷.۸ |
SteelCentral Aternity Agent Inter-Process Communication |
Privilege Escalation |
$۲k-$5k |
Not Defined |
|
CVE-2020-13699 |
۶.۳ |
TeamViewer Desktop URI |
Privilege Escalation |
$۲k-$5k |
|
|
CVE-2020-15098 |
۸.۸ |
TYPO3 CMS Checksum |
Remote Code Execution |
$۲k-$5k |
|
|
CVE-2020-15099 |
۸.۱ |
TYPO3 CMS LocalConfiguration.php |
Privilege Escalation |
$۲k-$5k |
|
|
CVE-2020-7685 |
۷.۵ |
UmbracoForms File Upload |
Privilege Escalation |
$۲k-$5k |
|
|
CVE-2020-7695 |
۷.۵ |
uvicorn httptools Parser Response Splitting |
Privilege Escalation |
$۲k-$5k |
Not Defined |
|
CVE-2020-7694 |
۳.۷ |
uvicorn Request Logger urllib.parse.unquote Code Injection |
Privilege Escalation |
$۲k-$5k |
Not Defined |
|
CVE-2020-15419 |
۷.۵ |
Veeam ONE Reporter_ImportLicense |
XML External Entity |
$۲k-$5k |
Not Defined |
|
CVE-2020-15418 |
۷.۵ |
Veeam ONE SSRSReport |
XML External Entity |
$۲k-$5k |
Not Defined |
|
CVE-2020-5396 |
۶.۳ |
VMware GemFire/Tanzu GemFire for VMs JMX Service |
Remote Code Execution |
$۱۰k-$25k |
|
|
CVE-2019-11286 |
۹.۰ |
VMware GemFire/Tanzu GemFire for VMs JMX Service |
Remote Code Execution |
$۱۰k-$25k |
|
|
CVE-2020-5413 |
۵.۵ |
VMware Spring Kryo Codec Deserialization |
Privilege Escalation |
$۱۰k-$25k |
|
|
CVE-2020-5414 |
۵.۷ |
VMware Tanzu Application Service for VMs App Autoscaler Credentials |
Information Disclosure |
$۲k-$5k |
|
|
CVE-2020-5611 |
۸.۸ |
WP Social Sharing Plugin |
CSRF |
$۱k-$2k |
|
|
CVE-2020-15588 |
۹.۸ |
Zoho ManageEngine Desktop Central Header Integer Overflow |
Memory Corruption |
$۲k-$5k |
سطح خطر حدود ۶۳% آسیبپذیریهای هفته، «پرخطر» و «حیاتی» برآورد شده است که بسیار قابلتوجّه است.
ارزش روز صفرم ۶۳ % آسیبپذیریهای هفته بیش از ۲۰۰۰ دلار بوده است.
خوشبختانه برای ۵۴% آسیبپذیریهای هفته، بهروزرسانیها و یا وصلههایی رسماً ارائه شده که برای جلوگیری از سوءاستفاده ازآسیبپذیریها بهتر است سریعاً اعمال شوند.
همچنین با ۳۹ مورد، اکثر آسیبپذیریهای هفته (۱۶%) از نوع «اجرای کد از راه دور» بودند.
