Security Vulnerabilities - CVEs Published In March 2020
lix through 15.8.7 allows man-in-the-middle attackers to execute arbitrary code by modifying the HTTP client-server data stream so that the Location header is associated with attacker-controlled executable content in the postDownload field.
CVSS Score
8.1
EPSS Score
0.004
Published
2020-03-21
In FreeRADIUS 3.0.x before 3.0.20, the EAP-pwd module used a global OpenSSL BN_CTX instance to handle all handshakes. This mean multiple threads use the same BN_CTX instance concurrently, resulting in crashes when concurrent EAP-pwd handshakes are initiated. This can be abused by an adversary as a Denial-of-Service (DoS) attack.
CVSS Score
7.5
EPSS Score
0.005
Published
2020-03-21
UniValue::read() in UniValue before 1.0.5 allow attackers to cause a denial of service (the class internal data reaches an inconsistent state) via input data that triggers an error.
CVSS Score
7.5
EPSS Score
0.004
Published
2020-03-21
On Swann DVR04B, DVR08B, DVR-16CIF, and DVR16B devices, raysharpdvr application has a vulnerable call to “system”, which allows remote attackers to execute arbitrary code via TCP port 9000.
CVSS Score
9.8
EPSS Score
0.029
Published
2020-03-21
An issue was discovered on D-Link DAP-1650 devices before 1.04B02_J65H Hot Fix. Attackers can execute arbitrary commands.
CVSS Score
9.8
EPSS Score
0.009
Published
2020-03-21
An issue was discovered in Simple Machines Forum (SMF) before release 2.0.17. There is SSRF related to Subs-Package.php and Subs.php because user-supplied data is used directly in curl calls.
CVSS Score
9.8
EPSS Score
0.007
Published
2020-03-20
The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call.
CVSS Score
9.8
EPSS Score
0.003
Published
2020-03-20
cs/service/account/AutoCompleteGal.java in Zimbra zm-mailbox before 8.8.15.p8 allows authenticated users to request any GAL account. This differs from the intended behavior in which the domain of the authenticated user must match the domain of the galsync account in the request.
CVSS Score
6.5
EPSS Score
0.002
Published
2020-03-20
A missing check for IPv4 nested inside IPv6 in Nextcloud server < 17.0.1, < 16.0.7, and < 15.0.14 allowed a Server-Side Request Forgery (SSRF) vulnerability when subscribing to a malicious calendar URL.
CVSS Score
6.5
EPSS Score
0.002
Published
2020-03-20
A missing access control check in Nextcloud Server < 18.0.1, < 17.0.4, and < 16.0.9 causes hide-download shares to be downloadable when appending /download to the URL.
CVSS Score
6.5
EPSS Score
0.003
Published
2020-03-20