2020 CVE Vulnerabilities
21,060 CVEs published in 2020.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2020-14771 | LOW | 2.2 | 1.3% | Oct 21, 2020 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions t... |
| CVE-2020-14770 | LOW | 2 | 0.8% | Oct 21, 2020 | Vulnerability in the Hyperion BI+ product of Oracle Hyperion (component: IQR-Foundation service). The supported version ... |
| CVE-2020-14759 | LOW | 2.5 | 0.3% | Oct 21, 2020 | Vulnerability in the Oracle Solaris product of Oracle Systems (component: Kernel). The supported version that is affecte... |
| CVE-2020-14743 | LOW | 3.1 | 0.7% | Oct 21, 2020 | Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.... |
| CVE-2020-14742 | LOW | 2.7 | 0.9% | Oct 21, 2020 | Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, ... |
| CVE-2020-14740 | LOW | 2.8 | 0.4% | Oct 21, 2020 | Vulnerability in the SQL Developer Install component of Oracle Database Server. Supported versions that are affected are... |
| CVE-2020-14736 | LOW | 3.8 | 0.8% | Oct 21, 2020 | Vulnerability in the Database Vault component of Oracle Database Server. Supported versions that are affected are 11.2.0... |
| CVE-2020-14732 | LOW | 3.1 | 0.8% | Oct 21, 2020 | Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications... |
| CVE-2020-14731 | LOW | 3.1 | 0.8% | Oct 21, 2020 | Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications... |
| CVE-2020-15262 | LOW | 3.7 | 0.5% | Oct 19, 2020 | In webpack-subresource-integrity before version 1.5.1, all dynamically loaded chunks receive an invalid integrity hash t... |
| CVE-2020-9959 | LOW | 2.4 | 0.3% | Oct 16, 2020 | A lock screen issue allowed access to messages on a locked device. This issue was addressed with improved state manageme... |
| CVE-2020-9933 | LOW | 3.3 | 0.8% | Oct 16, 2020 | An authorization issue was addressed with improved state management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tv... |
| CVE-2020-9912 | LOW | 3.3 | 0.3% | Oct 16, 2020 | A logic issue was addressed with improved restrictions. This issue is fixed in Safari 13.1.2. A malicious attacker may b... |
| CVE-2020-25824 | LOW | 2.4 | 0.5% | Oct 14, 2020 | Telegram Desktop through 2.4.3 does not require passcode entry upon pushing the Export key within the Export Telegram Da... |
| CVE-2020-0422 | LOW | 3.3 | 0.2% | Oct 14, 2020 | In constructImportFailureNotification of NotificationImportExportListener.java, there is a possible permissions bypass d... |
| CVE-2020-0412 | LOW | 3.3 | 0.2% | Oct 14, 2020 | In setProcessMemoryTrimLevel of ActivityManagerService.java, there is a missing permission check. This could lead to loc... |
| CVE-2020-17411 | LOW | 3.3 | 3.0% | Oct 13, 2020 | This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomP... |
| CVE-2020-25779 | LOW | 3.3 | 0.8% | Oct 13, 2020 | Trend Micro Antivirus for Mac 2020 (Consumer) has a vulnerability in which a Internationalized Domain Name homograph att... |
| CVE-2020-26930 | LOW | 3.8 | 0.5% | Oct 9, 2020 | NETGEAR EX7700 devices before 1.0.0.210 are affected by incorrect configuration of security settings. |
| CVE-2020-26925 | LOW | 3.2 | 0.3% | Oct 9, 2020 | NETGEAR GS808E devices before 1.7.1.0 are affected by denial of service. |
| CVE-2020-2297 | LOW | 3.3 | 0.3% | Oct 8, 2020 | Jenkins SMS Notification Plugin 1.2 and earlier stores an access token unencrypted in its global configuration file on t... |
| CVE-2020-2291 | LOW | 3.3 | 0.3% | Oct 8, 2020 | Jenkins couchdb-statistics Plugin 0.3 and earlier stores its server password unencrypted in its global configuration fil... |
| CVE-2020-13342 | LOW | 2.7 | 0.9% | Oct 7, 2020 | An issue has been discovered in GitLab affecting versions prior to 13.2.10, 13.3.7 and 13.4.2: Lack of Rate Limiting at ... |
| CVE-2020-15239 | LOW | 3.5 | 1.5% | Oct 6, 2020 | In xmpp-http-upload before version 0.4.0, when the GET method is attacked, attackers can read files which have a `.data`... |
| CVE-2020-1905 | LOW | 3.3 | 0.6% | Oct 6, 2020 | Media ContentProvider URIs used for opening attachments in other apps were generated sequentially prior to WhatsApp for ... |
Check if your code is affected by 2020 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now