Lucene search

Communications Performance Intelligence Center Security Vulnerabilities

cve

CVE-2021-3156

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash...

7.8CVSS

8.2AI Score

0.97EPSS

2021-01-26 09:15 PM

3938

In Wild

826

cve

CVE-2020-12723

regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk...

7.5CVSS

8AI Score

0.002EPSS

2020-06-05 03:15 PM

369

cve

CVE-2020-10878

Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction...

8.6CVSS

8.7AI Score

0.003EPSS

2020-06-05 02:15 PM

305

cve

CVE-2020-10543

Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer...

8.2CVSS

8.6AI Score

0.003EPSS

2020-06-05 02:15 PM

284

cve

CVE-2020-10188

utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem...

9.8CVSS

9.8AI Score

0.833EPSS

2020-03-06 03:15 PM

512