ROOT-OS-DEBIAN-12-CVE-2018-20712 CVE-2018-20712 in rootio-binutils - Patched by Root

Root has patched CVE-2018-20712 in the rootio-binutils package for Root:Debian:12. Multiple fixed versions available...

CVE-2025-20712

creationtimestamp| type| source ---|---|--- 2025-10-14 13:44:50+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115372817715516192...

Linux Distros Unpatched Vulnerability : CVE-2018-20712

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer over-read exists in the function dexpression1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can...

CVE-2024-20712

creationtimestamp| type| source ---|---|--- 2024-01-11 15:54:40+00:00| seen| https://t.me/itsecnews/3964...

CVE-2024-20712

Affected product/versions: Adobe Substance 3D Stager, v2.1.3 and earlier. Vulnerability: out-of-bounds read in Substance 3D Stager. Impact: potential disclosure of sensitive memory and bypass of mitigations such as ASLR (CVE-2024-20712). Attack scenario: exploitation requires user interaction (vi...

CVE-2023-20712

CVE-2023-20712 affects MediaTek WLAN code (wlan module) and is due to a missing bounds check, enabling an out-of-bounds write that can yield local privilege escalation to System level. Exploit requires LOCAL access with HIGH privileges and no user interaction. Patch: ALPS07796914 (Issue ALPS07796...

CVE-2023-20712

In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07796914; Issue ID: ALPS07796914...

CVE-2023-26408 ZDI-CAN-20712: AnnotsString Object prototype pollution Restrictions Bypass Vulnerability

Adobe Acrobat Reader versions 23.001.20093 and earlier and 20.005.30441 and earlier are affected by an Improper Access Control vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must...

CVE-2023-26405 ZDI-CAN-20712: Object Prototype pollution which leads to API Restrictions Bypass

Adobe Acrobat Reader versions 23.001.20093 and earlier and 20.005.30441 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim mu...

Security Bulletin: Multiple vulnerabilities in GNU Binutils affect IBM Netezza Performance Server

Summary GNU Binutils is used by IBM Netezza Platform Server. IBM Netezza Platform Server has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2018-18607 DESCRIPTION: GNU Binutils is vulnerable to a denial of service, caused by a NULL pointer dereference in the elflinkinputbfd in...

CVE-2022-20712

creationtimestamp| type| source ---|---|--- 2022-02-10 20:17:18+00:00| seen| https://t.me/cibsecurity/37241...

CVE-2022-20712 Cisco Small Business RV Series Routers Vulnerabilities

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned softwa...

CVE-2022-20712

Cisco Small Business RV160/RV260/RV340/RV345 Series routers are affected by multiple CVEs disclosed in early 2022, with several high/critical flaws in the SSL VPN module and web UI. Key issues include CVE-2022-20699 (remote code execution via SSL VPN), CVE-2022-20700/20701/20702 (privilege escala...

CVE-2021-20712

CVE-2021-20712 affects NEC Aterm WG2600HS (firmware ≤1.5.1) and WX3000HP (≤1.1.2), where an IPv6 firewall defect enables access from WAN to devices on the LAN. The connected JVN entry additionally lists affected product families and other entries, but this CVE’s core detail is an improper access ...

CVE-2019-20712

CVE-2019-20712 is a reported buffer overflow in multiple NETGEAR routers, exploitable by an authenticated user. Affected devices include D6220 (≤1.0.0.52), D6400 (≤1.0.0.86), D7000v2 (≤1.0.0.53), D8500 (≤1.0.3.44), and various other models (see list: DGN2200v4, DGND2200Bv4, R6250, R6300v2, R6400,...

CVE-2019-20712

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.52, D6400 before 1.0.0.86, D7000v2 before 1.0.0.53, D8500 before 1.0.3.44, DGN2200v4 before 1.0.0.110, DGND2200Bv4 before 1.0.0.109, R6250 before 1.0.4.34, R6300v2 before 1.0.4.32,...

CVE-2018-20712

A heap-based buffer over-read exists in the function dexpression1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt...

[ASA-201906-3] binutils: multiple issues

Arch Linux Security Advisory ASA-201906-3 ========================================= Severity: High Date : 2019-06-04 CVE-ID : CVE-2018-19931 CVE-2018-19932 CVE-2018-20002 CVE-2018-20712 Package : binutils Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-832 Summary...

CVE-2018-20712

A heap-based buffer over-read exists in the function dexpression1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt...

CVE-2018-20712

CVE-2018-20712 : A heap-based buffer over-read in d_expression_1 (cp-demangle.c) of GNU libiberty, distributed with GNU Binutils 2.31.1, can cause segmentation faults and denial-of-service as shown by c++filt. Connected sources confirm the same flaw and tie it to GNU Binutils components used by b...