Weekly Update: a new vulnerability is published on the National Vulnerability Database (50 items)

New vulnerabilities from the NVD: CVE-2007-5967 A flaw in Mozilla's embedded certificate code might allow web sites to install root certificates on devices without user approval. Published at: May 17, 2021 at 03:15PM View on website May 17, 2021 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-13667 Access bypass vulnerability in of Drupal Core Workspaces allows an attacker to access data without correct permissions. The Workspaces module doesn't sufficiently check access permissions when switching workspaces, leading to an access bypass vulnerability. An attacker might be able to see content before the site owner intends people to see the content. This vulnerability is mitigated by the fact that sites are only vulnerable if they have installed the experimental Workspaces module. This issue affects Drupal Core8.8.X versions prior to 8.8.10; 8.9.X versions prior to 8.9.6; 9.0.X versions prior to 9.0.6. Published at: May 17, 2021 at 08:15PM View on website May 17, 2021 at 09:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2019-14827 A vulnerability was found in Moodle where javaScript injection was possible in some Mustache templates via recursive rendering from contexts. Mustache helper tags that were included in template contexts were not being escaped before that context was injected into another Mustache helper, which could result in script injection in some templates. This affects versions 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions. Published at: May 17, 2021 at 07:15PM View on website May 17, 2021 at 09:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21819 A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10.2641via htmlescape ../../programs/escape.c:51. Published at: May 17, 2021 at 10:15PM View on website May 17, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21818 A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:48. Published at: May 17, 2021 at 10:15PM View on website May 17, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21817 A null pointer dereference issue exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:29. which causes a denial of service (application crash). Published at: May 17, 2021 at 10:15PM View on website May 17, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21816 A heab based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:46. Published at: May 17, 2021 at 10:15PM View on website May 17, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21815 A null pointer deference issue exists in GNU LibreDWG 0.10.2641 via output_TEXT ../../programs/dwg2SVG.c:114, which causes a denial of service (application crash). Published at: May 17, 2021 at 10:15PM View on website May 17, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21814 A heap based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via htmlwescape ../../programs/escape.c:97. Published at: May 17, 2021 at 10:15PM View on website May 17, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21813 A heap based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via output_TEXT ../../programs/dwg2SVG.c:114. Published at: May 17, 2021 at 09:15PM View on website May 17, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21833 A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read_2004_section_classes ../../src/decode.c:2440. Published at: May 18, 2021 at 12:15AM View on website May 18, 2021 at 01:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21832 A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_compressed_section ../../src/decode.c:2417. Published at: May 18, 2021 at 12:15AM View on website May 18, 2021 at 01:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21830 A heap based buffer overflow vulneraibility exists in GNU LibreDWG 0.10 via bit_calc_CRC ../../src/bits.c:2213. Published at: May 18, 2021 at 12:15AM View on website May 18, 2021 at 01:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21827 A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_compressed_section ../../src/decode.c:2379. Published at: May 17, 2021 at 11:15PM View on website May 18, 2021 at 01:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18198 Cross Site Request Forgery (CSRF) in Pluck CMS v4.7.9 allows remote attackers to execute arbitrary code and delete specific images via the component " /admin.php?action=images." Published at: May 18, 2021 at 01:15AM View on website May 18, 2021 at 03:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18195 Cross Site Request Forgery (CSRF) in Pluck CMS v4.7.9 allows remote attackers to execute arbitrary code and delete a specific article via the component " /admin.php?action=page." Published at: May 18, 2021 at 01:15AM View on website May 18, 2021 at 03:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18194 Cross Site Scripting (XSS) in emlog v6.0.0 allows remote attackers to execute arbitrary code by adding a crafted script as a link to a new blog post. Published at: May 18, 2021 at 01:15AM View on website May 18, 2021 at 03:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-15279 An Improper Access Control vulnerability in the logging component of Bitdefender Endpoint Security Tools for Windows versions prior to 6.6.23.320 allows a regular user to learn the scanning exclusion paths. This issue was discovered during external security research. Published at: May 18, 2021 at 02:15PM View on website May 18, 2021 at 03:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2002-2438 TCP firewalls could be circumvented by sending a SYN Packets with other flags (like e.g. RST flag) set, which was not correctly discarded by the Linux TCP stack after firewalling. Published at: May 18, 2021 at 03:15PM View on website May 18, 2021 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20254 Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the /nova/bin/lcdstat process. An authenticated remote attacker can cause a Denial of Service (NULL pointer dereference). Published at: May 18, 2021 at 05:15PM View on website May 18, 2021 at 07:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20253 Mikrotik RouterOs before 6.47 (stable tree) suffers from a divison by zero vulnerability in the /nova/bin/lcdstat process. An authenticated remote attacker can cause a Denial of Service due to a divide by zero error. Published at: May 18, 2021 at 05:15PM View on website May 18, 2021 at 07:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20951 In Pluck-4.7.10-dev2 admin background, a remote command execution vulnerability exists when uploading files. Published at: May 18, 2021 at 07:15PM View on website May 18, 2021 at 09:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20237 Mikrotik RouterOs 6.46.3 (stable tree) suffers from a memory corruption vulnerability in the /nova/bin/sniffer process. An authenticated remote attacker can cause a Denial of Service due to improper memory access. Published at: May 18, 2021 at 10:15PM View on website May 18, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20236 Mikrotik RouterOs 6.46.3 (stable tree) suffers from a memory corruption vulnerability in the /nova/bin/sniffer process. An authenticated remote attacker can cause a Denial of Service due to improper memory access. Published at: May 18, 2021 at 10:15PM View on website May 18, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20222 Mikrotik RouterOs 6.44.6 (long-term tree) suffers from a memory corruption vulnerability in the /nova/bin/sniffer process. An authenticated remote attacker can cause a Denial of Service (NULL pointer dereference). Published at: May 18, 2021 at 10:15PM View on website May 18, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20214 Mikrotik RouterOs 6.44.6 (long-term tree) suffers from an assertion failure vulnerability in the btest process. An authenticated remote attacker can cause a Denial of Service due to an assertion failure via a crafted packet. Published at: May 18, 2021 at 10:15PM View on website May 18, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18178 Path Traversal in HongCMS v4.0.0 allows remote attackers to view, edit, and delete arbitrary files via a crafted POST request to the component "/hcms/admin/index.php/language/ajax." Published at: May 18, 2021 at 10:15PM View on website May 18, 2021 at 11:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20246 Mikrotik RouterOs stable 6.46.3 suffers from a memory corruption vulnerability in the mactel process. An authenticated remote attacker can cause a Denial of Service due to improper memory access. Published at: May 18, 2021 at 11:15PM View on website May 19, 2021 at 01:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20245 Mikrotik RouterOs stable 6.46.3 suffers from a memory corruption vulnerability in the log process. An authenticated remote attacker can cause a Denial of Service due to improper memory access. Published at: May 18, 2021 at 11:15PM View on website May 19, 2021 at 01:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20227 Mikrotik RouterOs stable 6.47 suffers from a memory corruption vulnerability in the /nova/bin/diskd process. An authenticated remote attacker can cause a Denial of Service due to invalid memory access. Published at: May 18, 2021 at 11:15PM View on website May 19, 2021 at 01:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20220 Mikrotik RouterOs prior to stable 6.47 suffers from a memory corruption vulnerability in the /nova/bin/bfd process. An authenticated remote attacker can cause a Denial of Service (NULL pointer dereference). Published at: May 18, 2021 at 11:15PM View on website May 19, 2021 at 01:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-19924 In Boostnote 0.12.1, exporting to PDF contains opportunities for XSS attacks. Published at: May 18, 2021 at 11:15PM View on website May 19, 2021 at 01:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20266 Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the /nova/bin/dot1x process. An authenticated remote attacker can cause a Denial of Service (NULL pointer dereference). Published at: May 19, 2021 at 03:15PM View on website May 19, 2021 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-20264 Mikrotik RouterOs before 6.47 (stable tree) in the /ram/pckg/advanced-tools/nova/bin/netwatch process. An authenticated remote attacker can cause a Denial of Service due to a divide by zero error. Published at: May 19, 2021 at 03:15PM View on website May 19, 2021 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2017-17678 BMC Remedy Mid Tier 9.1SP3 is affected by cross-site scripting (XSS). A DOM-based cross-site scripting vulnerability was discovered in a legacy utility. Published at: May 19, 2021 at 05:15PM View on website May 19, 2021 at 07:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2017-17677 BMC Remedy 9.1SP3 is affected by authenticated code execution. Authenticated users that have the right to create reports can use BIRT templates to run code. Published at: May 19, 2021 at 05:15PM View on website May 19, 2021 at 07:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2017-17675 BMC Remedy Mid Tier 9.1SP3 is affected by log hijacking. Remote logging can be accessed by unauthenticated users, allowing for an attacker to hijack the system logs. This data can include user names and HTTP data. Published at: May 19, 2021 at 05:15PM View on website May 19, 2021 at 07:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2017-17674 BMC Remedy Mid Tier 9.1SP3 is affected by remote and local file inclusion. Due to the lack of restrictions on what can be targeted, the system can be vulnerable to attacks such as system fingerprinting, internal port scanning, Server Side Request Forgery (SSRF), or remote code execution (RCE). Published at: May 19, 2021 at 05:15PM View on website May 19, 2021 at 07:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-15522 Bouncy Castle BC Java before 1.66, BC C# .NET before 1.8.7, BC-FJA before 1.0.1.2, 1.0.2.1, and BC-FNA before 1.0.1.1 have a timing issue within the EC math library that can expose information about the private key when an attacker is able to observe timing information for the generation of multiple deterministic ECDSA signatures. Published at: May 20, 2021 at 03:15PM View on website May 20, 2021 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21053 Cross Site Scriptiong (XSS) vulnerability exists in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "query_string" variable in app\devices\device_imports.php. Published at: May 20, 2021 at 06:15PM View on website May 20, 2021 at 07:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-21054 Cross Site Scripting (XSS) vulnerability in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "f" variable in app\vars\vars_textarea.php. Published at: May 20, 2021 at 07:15PM View on website May 20, 2021 at 09:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18220 Weak Encoding for Password in DoraCMS v2.1.1 and earlier allows attackers to obtain sensitive information as it does not use a random salt or IV for its AES-CBC encryption, causes password encrypted for users to be susceptible to dictionary attacks. Published at: May 20, 2021 at 11:15PM View on website May 21, 2021 at 01:36AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-12061 An issue was discovered in Nitrokey FIDO U2F firmware through 1.1. Communication between the microcontroller and the secure element transmits credentials in plain. This allows an adversary to eavesdrop the communication and derive the secrets stored in the microcontroller. As a result, the attacker is able to arbitrarily manipulate the firmware of the microcontroller. Published at: May 21, 2021 at 03:15PM View on website May 21, 2021 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-25014 A flaw was found in libwebp in versions before 1.0.1. An unitialized variable is used in function ReadSymbol. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Published at: May 21, 2021 at 08:15PM View on website May 21, 2021 at 09:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-25013 A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ShiftBytes. The highest threat from this vulnerability is to data confidentiality and to the service availability. Published at: May 21, 2021 at 08:15PM View on website May 21, 2021 at 09:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-25012 A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function WebPMuxCreateInternal. The highest threat from this vulnerability is to data confidentiality and to the service availability. Published at: May 21, 2021 at 08:15PM View on website May 21, 2021 at 09:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-25011 A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow was found in PutLE16(). The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Published at: May 21, 2021 at 08:15PM View on website May 21, 2021 at 09:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-25010 A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ApplyFilter. The highest threat from this vulnerability is to data confidentiality and to the service availability. Published at: May 21, 2021 at 08:15PM View on website May 21, 2021 at 09:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-25009 A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function WebPMuxCreateInternal. The highest threat from this vulnerability is to data confidentiality and to the service availability. Published at: May 21, 2021 at 08:15PM View on website May 21, 2021 at 09:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2008-3280 It was found that various OpenID Providers (OPs) had TLS Server Certificates that used weak keys, as a result of the Debian Predictable Random Number Generator (CVE-2008-0166). In combination with the DNS Cache Poisoning issue (CVE-2008-1447) and the fact that almost all SSL/TLS implementations do not consult CRLs (currently an untracked issue), this means that it is impossible to rely on these OPs. Published at: May 21, 2021 at 11:15PM View on website May 22, 2021 at 01:36AM via National Vulnerability Database