Archive 02/19/2020

IDBaseTempVulnerability0dayTodayExpRemCTICVE
1503776.56.3Western Digital WesternDigitalSSDDashboardSetup.exe DLL uncontrolled search path$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2020-8959
1503764.44.4Hitron CODA-4582U Managed Device cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2020-8824
1503758.58.5Jyaml load deserialization$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-8441
1503745.15.1Puppet Enterprise puppet.conf certificate validation$0-$5k$0-$5kNot DefinedNot Defined0.01CVE-2020-7942
1503726.46.4coTURN null pointer dereference$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2020-6062
1503718.58.5coTURN out-of-bounds write$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2020-6061
1503706.46.1VMware vRealize Operations information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2020-3945
1503697.97.6VMware vRealize Operations Trust Store improper authentication$5k-$25k$0-$5kNot DefinedOfficial Fix0.01CVE-2020-3944
1503688.58.2VMware vRealize Operations JMX RMI Service input validation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-3943
1503675.25.0Cisco Unified Contact Center Enterprise Live Data Server race condition$5k-$25k$0-$5kNot DefinedOfficial Fix0.05CVE-2020-3163
1503665.35.1Cisco Meeting Server Extensible Messaging/Presence Protocol input validation$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2020-3160
1503655.75.4Cisco Finesse Web-based Management Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.01CVE-2020-3159
1503647.57.2Cisco Smart Software Manager On-Prem High Availability Service hard-coded credentials$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-3158
1503635.75.4Cisco Identity Services Engine Log Stored cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2020-3156
1503625.65.4Cisco Cloud Web Security Web-based Management Interface sql injection$5k-$25k$0-$5kNot DefinedOfficial Fix0.01CVE-2020-3154
1503615.95.6Cisco AnyConnect Secure Mobility Client uncontrolled search path$5k-$25k$0-$5kNot DefinedOfficial Fix0.05CVE-2020-3153
1503606.05.7Cisco Enterprise NFV Infrastructure Software Signature Validation signature verification$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-3138
1503595.25.0Cisco Email Security Appliance Email Message Scanner resource consumption$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2020-3132
1503587.06.7Cisco Data Center Network Manager Web-based Management Interface cross-site request forgery$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2020-3114
1503574.54.3Cisco Data Center Network Manager Web-based Management Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.01CVE-2020-3113
1503567.57.2Cisco Data Center Network Manager REST API Endpoint access control$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2020-3112
1503556.25.9Cisco UCS C-Series Rack Servers Signature Validation credentials management$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-1950
1503545.75.7TIBCO EBX Web Server Stored cross site scriting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-17333
1503536.56.2SilverStripe GraphQL cross-site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.01CVE-2019-12437
1503524.34.3SilverStripe URL Tools cross-site request forgery$0-$5k$0-$5kNot DefinedNot Defined0.01CVE-2019-12246
1503516.46.1WSO2 transport-http Netty response splitting$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2019-10797
1503506.06.0IBM DB2 Command privileges management$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2020-4230
1503498.48.4IBM DB2 memory corruption$5k-$25k$5k-$25kNot DefinedNot Defined0.05CVE-2020-4204
1503485.45.4IBM DB2 Command denial of service$0-$5k$0-$5kNot DefinedNot Defined0.01CVE-2020-4200
1503475.45.4IBM DB2 Command denial of service$0-$5k$0-$5kNot DefinedNot Defined0.01CVE-2020-4161
1503466.46.4IBM DB2 memory allocation$5k-$25k$0-$5kNot DefinedNot Defined0.06CVE-2020-4135
1503454.24.2IBM Security Secret Server Update improper authentication$5k-$25k$5k-$25kNot DefinedNot Defined0.01CVE-2019-4640
1503444.34.3IBM Jazz Foundation information disclosure$5k-$25k$0-$5kNot DefinedNot Defined0.04CVE-2019-4457
1503434.74.7IBM Maximo Asset Management Web UI cross site scriting$5k-$25k$0-$5kNot DefinedNot Defined0.01CVE-2019-4429
1503288.58.5ruamel.yaml input validation$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2019-20478
1503278.58.5PyYAML load_all deserialization$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-20477

Interested in the pricing of exploits?

See the underground prices here!