Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2130 matches found

Apple
Appleadded 2020/12/15 6:0 a.m.101 views

About the security content of iOS 14.2 and iPadOS 14.2 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.3CVSS0.9AI score0.22178EPSS
Exploits3Affected Software2
Apple
Appleadded 2020/12/15 5:56 a.m.72 views

About the security content of tvOS 14.2 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.3CVSS0.8AI score0.03207EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessusadded 2020/12/09 12:0 a.m.85 views

SUSE SLED15 / SLES15 Security Update : java-11-openjdk (SUSE-SU-2020:3359-1)

"This update for java-11-openjdk fixes the following issues : Update to upstream tag jdk-11.0.9-11 October 2020 CPU, bsc1177943 - New features + JDK-8250784: Shenandoah: A Low-Pause-Time Garbage Collector - Security fixes + JDK-8233624: Enhance JNI linkage + JDK-8236196: Improve string pooling +...

5.8CVSS6.6AI score0.03713EPSS
Exploits0References18
Tenable Nessus
Tenable Nessusadded 2020/12/09 12:0 a.m.80 views

SUSE SLES12 Security Update : java-11-openjdk (SUSE-SU-2020:3159-1)

"This update for java-11-openjdk fixes the following issues : Update to upstream tag jdk-11.0.9-11 October 2020 CPU, bsc1177943 - New features + JDK-8250784: Shenandoah: A Low-Pause-Time Garbage Collector - Security fixes + JDK-8233624: Enhance JNI linkage + JDK-8236196: Improve string pooling +...

5.8CVSS6.6AI score0.03713EPSS
Exploits0References18
OSV
OSVadded 2020/12/08 8:15 p.m.1 views

CVE-2020-10014

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to break out of its sandbox...

6.3CVSS6.8AI score
Exploits0References4
NVD
NVDadded 2020/12/08 8:15 p.m.19 views

CVE-2020-10014

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to break out of its sandbox...

6.3CVSS5.4AI score0.01077EPSS
Exploits0References4
NVD
NVDadded 2020/12/08 8:15 p.m.19 views

CVE-2020-10003

An issue existed within the path validation logic for symlinks. This issue was addressed with improved path sanitization. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A local attacker may be able to elevate their privileges...

7.8CVSS6.4AI score0.0039EPSS
Exploits0References5
CVE
CVEadded 2020/12/08 8:3 p.m.71 views

CVE-2020-10014

CVE-2020-10014 affects macOS components related to sandboxing controls, notably in libxpc/XPC, where a parsing/validation issue in directory paths could allow a sandbox escape. The fixed version is macOS Big Sur 11.0.1 (as per Apple HT211931), with related entries detailing memory/validation impr...

6.3CVSS5.8AI score0.01077EPSS
Exploits0References4Affected Software2
Cvelist
Cvelistadded 2020/12/08 8:2 p.m.21 views

CVE-2020-10003

An issue existed within the path validation logic for symlinks. This issue was addressed with improved path sanitization. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A local attacker may be able to elevate their privileges...

6.9AI score0.0039EPSS
Exploits0References5
CVE
CVEadded 2020/12/08 8:2 p.m.72 views

CVE-2020-10003

CVE-2020-10003 affects Apple platforms via a vulnerability in the path validation logic for symlinks, enabling a local privilege escalation. It is fixed in macOS Big Sur 11.0.1, iOS 14.2/iPadOS 14.2, tvOS 14.2, and watchOS 7.1 through improved path sanitization. Affected components are tied to Cr...

7.8CVSS6.4AI score0.0039EPSS
Exploits0References5Affected Software5
BDU FSTEC
BDU FSTECadded 2020/12/03 12:0 a.m.2 views

The vulnerability of the FilesystemHandler component in Linux operating systems allows attackers to influence the integrity and confidentiality of data.

The vulnerability of the FilesystemHandler component in Linux operating systems is related to deficiencies in path name validation for restricted-access directories. Exploiting this vulnerability could allow an attacker to influence the integrity and confidentiality of data...

8.5CVSS6.7AI score0.00512EPSS
Exploits1References10Affected Software1
OSV
OSVadded 2020/12/01 4:15 p.m.1 views

CVE-2020-28971

An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to execute privileged commands on the device via a cookie, because of insufficient validation of URI paths...

9.8CVSS7.4AI score0.03785EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2020/11/30 12:0 a.m.60 views

openSUSE Security Update : java-1_8_0-openjdk (openSUSE-2020-2083)

This update for java-180-openjdk fixes the following issues : - Fix regression '8250861: Crash in MinINode::IdealPhaseGVN, bool', introduced in October 2020 CPU. - Update to version jdk8u272 icedtea 3.17.0 July 2020 CPU, bsc1174157, and October 2020 CPU, bsc1177943 - New features + JDK-8245468: A...

8.3CVSS6.9AI score0.04315EPSS
Exploits0References18
OPENSUSE Linux
OPENSUSE Linuxadded 2020/11/26 12:0 a.m.60 views

Security update for java-1_8_0-openjdk (moderate)

openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2020:2048-1 Rating: moderate References: 1174157 1177943 Cross-References: CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621...

8.3CVSS7.1AI score0.04315EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2020/11/23 12:0 a.m.103 views

openSUSE Security Update : java-11-openjdk (openSUSE-2020-1984)

"This update for java-11-openjdk fixes the following issues : - Update to upstream tag jdk-11.0.9-11 October 2020 CPU, bsc1177943 - New features + JDK-8250784: Shenandoah: A Low-Pause-Time Garbage Collector - Security fixes + JDK-8233624: Enhance JNI linkage + JDK-8236196: Improve string pooling ...

5.8CVSS6.6AI score0.03713EPSS
Exploits0References9
OSV
OSVadded 2020/11/17 12:19 p.m.9 views

SUSE-SU-2020:3359-1 Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: - Update to upstream tag jdk-11.0.9-11 October 2020 CPU, bsc1177943 New features + JDK-8250784: Shenandoah: A Low-Pause-Time Garbage Collector Security fixes + JDK-8233624: Enhance JNI linkage + JDK-8236196: Improve string pooling +...

5.8CVSS5.7AI score0.03713EPSS
Exploits0References10
OSV
OSVadded 2020/11/12 3:4 p.m.12 views

SUSE-SU-2020:3310-1 Security update for java-1_7_0-openjdk

This update for java-170-openjdk fixes the following issues: - Update to 2.6.24 - OpenJDK 7u281 October 2020 CPU, bsc1177943 Security fixes + JDK-8233624: Enhance JNI linkage + JDK-8236862, CVE-2020-14779: Enhance support of Proxy class + JDK-8237990, CVE-2020-14781: Enhanced LDAP contexts +...

5.8CVSS5.3AI score0.03713EPSS
Exploits0References10
Oracle linux
Oracle linuxadded 2020/11/12 12:0 a.m.55 views

librepo security update

1.8.1-8 - Validate paths read from repomd.xml RhBug: 1866500...

8.5CVSS1.2AI score0.02526EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2020/11/11 12:0 a.m.15 views

RHEL 7 : librepo (RHSA-2020:5012)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5012 advisory. The librepo library provides a C and Python API to download repository metadata. Security Fixes: librepo: missing path validation in repomd.xml may...

8.5CVSS6.5AI score0.02526EPSS
Exploits0References5
OSV
OSVadded 2020/11/05 9:33 a.m.8 views

SUSE-SU-2020:3159-1 Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: - Update to upstream tag jdk-11.0.9-11 October 2020 CPU, bsc1177943 New features + JDK-8250784: Shenandoah: A Low-Pause-Time Garbage Collector Security fixes + JDK-8233624: Enhance JNI linkage + JDK-8236196: Improve string pooling +...

5.8CVSS5.7AI score0.03713EPSS
Exploits0References10
Rows per page
Query Builder