27 matches found
CVE-2025-20795
In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10276761; Issue ID: MSV-5141...
CVE-2025-20795
In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10276761; Issue ID: MSV-5141...
Siemens SIMATIC S7-1500 Use After Free (CVE-2019-20795)
iproute2 before 5.1.0 has a use-after-free in getnetnsidfromname in ip/ipnetns.c. NOTE: security relevance may be limited to certain uses of setuid that, although not a default, are sometimes a configuration option offered to end users. Even when setuid is used, other factors such as C library...
CVE-2023-20795
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07864900; Issue ID: ALPS07864900...
Linux Distros Unpatched Vulnerability : CVE-2019-20795
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iproute2 before 5.1.0 has a use-after-free in getnetnsidfromname in ip/ipnetns.c. NOTE: security relevance may be limited to certain uses of setuid that, althou...
RHEL 7 : iproute (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - iproute: use-after-free in getnetnsidfromname in ip/ipnetns.c CVE-2019-20795 Note that Nessus has not tested for th...
Adobe Animate Multiple Vulnerabilities (APSB24-26) - Windows
Adobe Animate is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:animate"; ifdescription...
CVE-2024-20795 Animate has an arbitrary code execution vulnerability when parsing svg files
Animate versions 23.0.4, 24.0.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2024-20795 Animate has an arbitrary code execution vulnerability when parsing svg files
Animate versions 23.0.4, 24.0.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
BELL-CVE-2019-20795 CVE-2019-20795 does not affect BellSoft software
Bulletin has no description...
CVE-2023-20795
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07864900; Issue ID: ALPS07864900...
CVE-2023-20795
The CVE-2023-20795 entry describes a vulnerability in the ril module (MediaTek-based environments) where a missing bounds check enables an out-of-bounds write. This can lead to local privilege escalation with System execution privileges required, and exploitation does not require user interaction...
EulerOS Virtualization 3.0.6.6 : iproute (EulerOS-SA-2022-2507)
According to the versions of the iproute package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - iproute2 before 5.1.0 has a use-after-free in getnetnsidfromname in ip/ipnetns.c. NOTE: security relevance may be limited to...
CVE-2022-20795
creationtimestamp| type| source ---|---|--- 2022-04-21 22:27:05+00:00| seen| https://t.me/cibsecurity/41248...
EulerOS 2.0 SP5 : iproute (EulerOS-SA-2022-1327)
According to the versions of the iproute package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - iproute2 before 5.1.0 has a use-after-free in getnetnsidfromname in ip/ipnetns.c. NOTE: security relevance may be limited to certain uses of...
Huawei EulerOS: Security Advisory for iproute (EulerOS-SA-2022-1327)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 / SLES12 Security Update : iproute2 (SUSE-SU-2021:3452-1)
The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:3452-1 advisory. - iproute2 before 5.1.0 has a use-after-free in getnetnsidfromname in ip/ipnetns.c. NOTE: security relevance may be limited to...
SUSE-SU-2021:3452-1 Security update for iproute2
This update for iproute2 fixes the following issues: - CVE-2019-20795: Fixed a use-after-free vulnerability in getnetnsidfromname. bsc1171452...
CVE-2021-20795
CVE-2021-20795 : Cybozu Remote Service has a CSRF vulnerability in the management screen that could allow an attacker to hijack an administrator’s session and perform unintended operations. Affected products are Cybozu Remote Service 3.1.8 to 3.1.9. Remediation per the package advisories is to up...
USN-4357-1: IPRoute vulnerability | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that IPRoute incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. CVEs contained in this USN include: CVE-2019-20795. Affected Cloud...