CWE-269

CVE-2020-14194

February 26, 2023 by

Zulip Server before 2.1.5 allows reverse tabnapping via a topic header link.

An elevation of privilege vulnerability exists in Visual Studio and Visual Studio Code when they load software dependencies, aka ‘Visual Studio and Visual Studio Code Elevation of Privilege Vulnerability’.

CVE-2020-14162

February 26, 2023 by

An issue was discovered in Pi-Hole through 5.0. The local www-data user has sudo privileges to execute the pihole core script as root without a password, which could allow an attacker to obtain root access via shell metacharacters to this script’s setdns command.

CVE-2020-1412

February 26, 2023 by

A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka ‘Microsoft Graphics Components Remote Code Execution Vulnerability’.

CVE-2020-14032

February 26, 2023 by

ASRock 4×4 BOX-R1000 before BIOS P1.40 allows privilege escalation via code execution in the SMM.

CVE-2020-13854

February 26, 2023 by

Artica Pandora FMS 7.44 allows privilege escalation.