Lucene search
+L

31 matches found

nessus
nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2021-1660:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1660:01 advisory. QEMU: Regression of CVE-2020-10756 fix in virt:rhel/qemu-kvm CVE-2021-20295 Tenable has extracted the preceding description block directly from the...

6.5CVSS7.2AI score0.0051EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.10 views

EUVD-2021-7720

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.0051EPSS
Exploits0References6
circl
circl
added 2025/09/02 10:39 a.m.9 views

CVE-2025-20295

creationtimestamp| type| source ---|---|--- 2025-09-02 10:39:43+00:00| seen| https://bsky.app/profile/fraustief.bsky.social/post/3lxtwhkrlld2u 2025-09-02 10:39:44+00:00| seen| https://bsky.app/profile/fraustief.bsky.social/post/3lxtwhkroj32u 2025-09-02 10:39:46+00:00| seen|...

6CVSS5.1AI score0.00179EPSS
Exploits0References4
cnvd
cnvd
added 2025/08/18 12:0 a.m.2 views

Kenwood DMX958XR Command Injection Vulnerability (CNVD-2025-20295)

The Kenwood DMX958XR is an in-car infotainment system from Kenwood. The Kenwood DMX958XR suffers from a command injection vulnerability that can be exploited by an attacker to execute code in a root context...

6.8CVSS8.1AI score0.0094EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 11:35 p.m.5 views

CVE-2022-20295

In ContentService, there is a possible way to check if an account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

5.5CVSS6.2AI score0.00089EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 3:17 p.m.8 views

CVE-2020-20295

An issue was found in CMSWing project version 1.3.8. Because the updateAction function does not check the detail parameter, malicious parameters can execute arbitrary SQL commands...

9.8CVSS8AI score0.01355EPSS
Exploits1
redhatcve
redhatcve
added 2025/02/05 1:16 a.m.4 views

CVE-2024-20295

A vulnerability in the CLI of the Cisco Integrated Management Controller IMC could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit this vulnerability, the attacker must have read-only or high...

8.8CVSS7AI score0.01172EPSS
Exploits0References1
circl
circl
added 2024/04/18 11:8 a.m.11 views

CVE-2024-20295

creationtimestamp| type| source ---|---|--- 2024-04-18 11:08:28+00:00| published-proof-of-concept| https://t.me/truesecator/5651 2026-07-06 11:00:07+00:00| seen| https://t.me/ZerodayAlert/219 2026-07-07 00:00:19+00:00| seen| https://t.me/ZerodayAlert/219 2026-07-12 00:00:17+00:00| seen|...

8.8CVSS7AI score0.01172EPSS
Exploits0References2
nessus
nessus
added 2023/11/06 12:0 a.m.25 views

Rocky Linux 8 : virt:rhel and virt-devel:rhel (RLSA-2021:1064)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:1064 advisory. - It was discovered that the update for the virt:rhel module in the RHSA-2020:4676 https://access.redhat.com/errata/RHSA-2020:4676 erratum released as part of Re...

6.5CVSS7AI score0.0051EPSS
Exploits0References3
cbl_mariner
cbl_mariner
added 2023/01/12 8:55 p.m.25 views

CVE-2021-20295 affecting package qemu-kvm 4.2.0-38

CVE-2021-20295 affecting package qemu-kvm 4.2.0-38. A patched version of the package is available...

6.5CVSS7.5AI score0.00279EPSS
Exploits0
nvd
nvd
added 2022/09/29 4:15 a.m.7 views

CVE-2019-20295

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during the year 2019. Notes: none...

Exploits0
circl
circl
added 2022/08/12 6:33 p.m.5 views

CVE-2022-20295

creationtimestamp| type| source ---|---|--- 2022-08-12 18:33:24+00:00| seen| https://t.me/cibsecurity/48026...

5.5CVSS5.5AI score0.00089EPSS
Exploits0References1
cve
cve
added 2022/08/11 3:20 p.m.57 views

CVE-2022-20295

CVE-2022-20295 affects Android 13 via a missing permission check in ContentService, enabling information disclosure by checking whether an account exists on the device. Impact is local, with no user interaction required beyond local access; exploits are described as requiring user privileges but ...

5.5CVSS5.5AI score0.00089EPSS
Exploits0References1Affected Software1
mscve
mscve
added 2022/04/09 7:0 a.m.4 views

It was discovered that the update for the virt:rhel module in the RHSA-2020:4676 (https://access.redhat.com/errata/RHSA-2020:4676) erratum released as part of Red Hat Enterprise Linux 8.3 failed to include the fix for the qemu-kvm component issue CVE-2020-10756 which was previously corrected in virt:rhel/qemu-kvm via erratum RHSA-2020:4059 (https://access.redhat.com/errata/RHSA-2020:4059). CVE-2021-20295 was assigned to that Red Hat specific security regression. For more details about the original security issue CVE-2020-10756 refer to bug 1835986 or the CVE page: https://access.redhat.com/security/cve/CVE-2020-10756.

...

6.5CVSS7.6AI score0.0051EPSS
Exploits0
nvd
nvd
added 2022/04/01 11:15 p.m.31 views

CVE-2021-20295

It was discovered that the update for the virt:rhel module in the RHSA-2020:4676 https://access.redhat.com/errata/RHSA-2020:4676 erratum released as part of Red Hat Enterprise Linux 8.3 failed to include the fix for the qemu-kvm component issue CVE-2020-10756, which was previously corrected in...

6.5CVSS0.00279EPSS
Exploits0References3
osv
osv
added 2022/04/01 11:15 p.m.3 views

CVE-2021-20295

It was discovered that the update for the virt:rhel module in the RHSA-2020:4676 https://access.redhat.com/errata/RHSA-2020:4676 erratum released as part of Red Hat Enterprise Linux 8.3 failed to include the fix for the qemu-kvm component issue CVE-2020-10756, which was previously corrected in...

6.5CVSS6.8AI score0.0051EPSS
Exploits0References3
prion
prion
added 2022/04/01 11:15 p.m.40 views

Security feature bypass

It was discovered that the update for the virt:rhel module in the RHSA-2020:4676 https://access.redhat.com/errata/RHSA-2020:4676 erratum released as part of Red Hat Enterprise Linux 8.3 failed to include the fix for the qemu-kvm component issue CVE-2020-10756, which was previously corrected in...

2.1CVSS6.6AI score0.0051EPSS
Exploits0References3Affected Software1
debiancve
debiancve
added 2022/04/01 10:17 p.m.50 views

CVE-2021-20295

It was discovered that the update for the virt:rhel module in the RHSA-2020:4676 https://access.redhat.com/errata/RHSA-2020:4676 erratum released as part of Red Hat Enterprise Linux 8.3 failed to include the fix for the qemu-kvm component issue CVE-2020-10756, which was previously corrected in...

6.5CVSS7.6AI score0.00279EPSS
Exploits0
cve
cve
added 2022/04/01 10:17 p.m.142 views

CVE-2021-20295

CVE-2021-20295 is a Red Hat–specific regression assigned to the absence of the previously delivered fix for CVE-2020-10756 in virt:rhel/qemu-kvm when updating RHSA-2020:4676 for RHEL 8.3. The issue arose because the update failed to include the fix that had been applied earlier via RHSA-2020:4059...

6.5CVSS6.8AI score0.00279EPSS
Exploits0References3Affected Software1
nessus
nessus
added 2022/02/09 12:0 a.m.36 views

AlmaLinux 8 : virt:rhel and virt-devel:rhel (ALSA-2021:1064)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2021:1064 advisory. QEMU: Regression of CVE-2020-10756 fix in virt:rhel/qemu-kvm in AlmaLinux CVE-2021-20295 Tenable has extracted the preceding description block directly from the...

6.5CVSS7AI score0.0051EPSS
Exploits0References2
Rows per page
Query Builder