CVE-2020-3370

MEDIUM Year: 2020
CVSS v3 Score
4.0
Medium
CVSS v2 Score
5.0
Medium
Weakness Type
CWE-20
View all →

Vulnerability Description

A vulnerability in URL filtering of Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to bypass URL filtering on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a crafted, malicious HTTP request to an affected device. A successful exploit could allow the attacker to redirect users to malicious sites.

Related Vulnerabilities

CVE-2015-7416

MEDIUM
CVSS:4.0(Medium)

AFP Workbench Viewer in IBM i Access 7.1 on Windows allows remote attackers to cause a denial of service (viewer crash) via a crafted workbench file.

CWE-202015

CVE-2016-3764

MEDIUM
CVSS:4.0(Medium)

media/libmediaplayerservice/MetadataRetrieverClient.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows attackers to obtain sensiti...

CWE-202016

CVE-2016-8579

MEDIUM
CVSS:4.0(Medium)

docker2aci <= 0.12.3 has an infinite loop when handling local images with cyclic dependency chain.

CWE-202016

CVE-2021-25504

MEDIUM
CVSS:4.0(Medium)

Intent redirection vulnerability in Group Sharing prior to 10.8.03.2 allows attacker to access contact information.

CWE-202021

CVE-2024-22338

MEDIUM
CVSS:4.0(Medium)

IBM Security Verify Access OIDC Provider 22.09 through 23.03 could disclose sensitive information to a local user due to hazardous input validation. IBM X-Force ID: 279978.

CWE-202024

CVE-2024-30916

MEDIUM
CVSS:4.0(Medium)

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service (DoS) and obtain sensitive information via a crafted max_samples parameter in Dura...

CWE-202024