1. Home
  2. Common Vulnerabilities and Exposures
  3. Unauthenticated CSV Injection in NetSkope

Unauthenticated CSV Injection in NetSkope

Overview :
CSV injection in netskope Admin UI (Version 75.0)
Affected Product(s) :
  • Netskope 75.0
Vulnerability Details :
CVE ID : CVE-2020-28845
A CSV injection vulnerability in the Admin portal for Netskope 75.0 allows an unauthenticated user to inject malicious payload in admin’s portal thus leads to compromise admin’s system.

Solution :

This Vulnerability has been fixed now in the latest version of NetSkope

Common Vulnerabilityies and Exposures

Contact us to get started

TightVNC 1.3.10 vncviewer rfbproto.c InitialiseRFBConnection heap-based overflow

A vulnerability was found in TightVNC 1.3.10. It has been declared as critical. This vulnerability affects the function InitialiseRFBConnection of the file rfbproto.c of the component vncviewer. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Learn more

PJSIP up to 2.11.1 RTP/RTCP out-of-bounds read

A vulnerability was found in PJSIP up to 2.11.1. It has been rated as critical. This issue affects an unknown code of the component RTP/RTCP. Applying the patch 22af44e68a0c7d190ac1e25075e1382f77e9397a is able to eliminate this problem. The bugfix is ready for download at github.com.

Learn more

PJSIP up to 2.11.1 SIP Message out-of-bounds read

A vulnerability classified as critical has been found in PJSIP up to 2.11.1. Affected is an unknown code block of the component SIP Message. Applying the patch 077b465c33f0aec05a49cd2ca456f9a1b112e896 is able to eliminate this problem. The bugfix is ready for download at github.com.

Learn more