Browse CVEs
11,270 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2020-13485 | The Knock Knock plugin before 1.2.8 for Craft CMS allows ... | Critical | 9.1 | Medium Risk | Patched | 25-May-20 |
| CVE-2020-11077 | In Puma (RubyGem) before 4.3.5 and 3.12.6, a client could... | Medium | 6.8 | Medium Risk | Patched | 22-May-20 |
| CVE-2018-21234 | Jodd before 5.0.4 performs Deserialization of Untrusted J... | Critical | 9.8 | Medium Risk | Patched | 21-May-20 |
| CVE-2020-13226 | WSO2 API Manager 3.0.0 does not properly restrict outboun... | Critical | 9.8 | Medium Risk | 20-May-20 | |
| CVE-2020-11078 | In httplib2 before version 0.18.0, an attacker controllin... | Medium | 6.8 | Medium Risk | Patched | 20-May-20 |
| CVE-2020-13167 | Netsweeper through 6.4.3 allows unauthenticated remote co... | Critical | 9.8 | Medium Risk | Patched | 19-May-20 |
| CVE-2020-8149 | Lack of output sanitization allowed an attack to execute ... | Critical | 9.8 | Medium Risk | Patched | 15-May-20 |
| CVE-2020-13092 | scikit-learn (aka sklearn) through 0.23.0 can unserialize... | Critical | 9.8 | Medium Risk | Patched | 15-May-20 |
| CVE-2020-12889 | MISP MISP-maltego 1.4.4 incorrectly shares a MISP connect... | Critical | 9.8 | Medium Risk | 15-May-20 | |
| CVE-2020-11973 | Apache Camel Netty enables Java deserialization by defaul... | Critical | 9.8 | Medium Risk | Patched | 14-May-20 |