A Most Personal Threat: Implantable Medical Devices

A Most Personal Threat: Implantable Medical Devices
Enterprise VulnerabilitiesFrom DHS/US-CERT's National Vulnerability Database CVE-2020-16192PUBLISHED: 2020-08-05

LimeSurvey 4.3.2 allows reflected XSS because application/controllers/LSBaseController.php lacks code to validate parameters.

CVE-2020-17364PUBLISHED: 2020-08-05

USVN (aka User-friendly SVN) before 1.0.9 allows XSS via SVN logs.

CVE-2020-4481PUBLISHED: 2020-08-05

IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 181848.

CVE-2020-5608PUBLISHED: 2020-08-05

CAMS for HIS CENTUM CS 3000 (includes CENTUM CS 3000 Small) R3.08.10 to R3.09.50, CENTUM VP (includes CENTUM VP Small, Basic) R4.01.00 to R6.07.00, B/M9000CS R5.04.01 to R5.05.01, and B/M9000 VP R6.01.01 to R8.03.01 allows a remote unauthenticated attacker to bypass authentication and send altered c...

CVE-2020-5609PUBLISHED: 2020-08-05

Directory traversal vulnerability in CAMS for HIS CENTUM CS 3000 (includes CENTUM CS 3000 Small) R3.08.10 to R3.09.50, CENTUM VP (includes CENTUM VP Small, Basic) R4.01.00 to R6.07.00, B/M9000CS R5.04.01 to R5.05.01, and B/M9000 VP R6.01.01 to R8.03.01 allows a remote unauthenticated attacker to cre...




Support the originator by clicking the read the rest link below.