Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5093 matches found

RedHat Linux
RedHat Linuxadded 2020/05/06 8:28 a.m.0 views

usrsctp: Buffer overflow in AUTH chunk input validation

A flaw was found in Mozilla Firefox and Thunderbird. When parsing and validating SCTP chunks in WebRTC a memory buffer overflow could occur leading to memory corruption and an exploitable crash. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

9.8CVSS7.5AI score0.05803EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2020/05/06 8:12 a.m.0 views

usrsctp: Buffer overflow in AUTH chunk input validation

A flaw was found in Mozilla Firefox and Thunderbird. When parsing and validating SCTP chunks in WebRTC a memory buffer overflow could occur leading to memory corruption and an exploitable crash. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

9.8CVSS7.5AI score0.05803EPSS
Exploits0References5
Cvelist
Cvelistadded 2020/05/06 12:0 a.m.24 views

CVE-2020-10704

A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests as an Active Directory Domain Controller LDAP server, an unauthorized user can cause a stack overflow leading to a denial of service. The highest threat from this vulnerabilit...

7.5CVSS7.3AI score0.03455EPSS
Exploits0References8
Debian CVE
Debian CVEadded 2020/05/06 12:0 a.m.37 views

CVE-2020-10704

A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests as an Active Directory Domain Controller LDAP server, an unauthorized user can cause a stack overflow leading to a denial of service. The highest threat from this vulnerabilit...

7.5CVSS7.6AI score0.03455EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2020/05/05 4:40 p.m.63 views

CVE-2020-6831

A flaw was found in Mozilla Firefox and Thunderbird. When parsing and validating SCTP chunks in WebRTC a memory buffer overflow could occur leading to memory corruption and an exploitable crash. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

7.5CVSS3.1AI score0.05803EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2020/05/05 4:40 p.m.31 views

CVE-2020-12387

A flaw was found in Mozilla Firefox and Thunderbird. When running shutdown code for Web Worker, a race condition occurs leading to a use-after-free memory flaw that could lead to an exploitable crash. The highest threat from this vulnerability is to data confidentiality and integrity as well as...

6.8CVSS4AI score0.01403EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2020/05/04 2:40 p.m.32 views

CVE-2019-15794

A flaw was found in the Linux kernel. In Overlayfs, vma-vmfile was replaced in the mmap handlers and, on errors, the original value is not restored. A local attacker with special user privilege or root can cause a kernel internal information leak. The highest threat from this vulnerability is to...

7.2CVSS3.3AI score0.01158EPSS
Exploits2References3
RedhatCVE
RedhatCVEadded 2020/04/30 2:10 p.m.26 views

CVE-2019-20788

A flaw was found in libvncserver in versions through 0.9.12. A large height or width value may cause an integer overflow or a heap-based buffer overflow. The highest threat from this vulnerability is to system availability...

9.8CVSS2.9AI score0.02436EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2020/04/30 1:40 p.m.29 views

CVE-2020-0030

A race condition leading to a use-after-free memory flaw was found in the Linux kernel. This could lead to a local escalation of privileges with no additional execution privileges required. For this particular vulnerability, no user interaction is needed. The highest threat from this vulnerabilit...

7CVSS3.2AI score0.00152EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2020/04/30 9:55 a.m.0 views

chromium-browser: Use after free in task scheduling

A flaw was found in the Chromium browser. The task scheduling component was found to have a use-after-free memory flaw. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

9.6CVSS7.3AI score0.01365EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2020/04/30 5:39 a.m.47 views

CVE-2020-10728

A flaw was found in automationbroker/apb container in versions up to and including 2.0.4-1. This container grants all users sudoer permissions allowing an unauthorized user with access to the running container the ability to escalate their own privileges. The highest threat from this vulnerabilit...

4.3CVSS4.1AI score0.00209EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2020/04/29 10:39 a.m.26 views

CVE-2020-1957

A flaw was found in Apache Shiro. When using Spring dynamic controllers, a specially crafted request may cause an authentication bypass. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

9.8CVSS4.1AI score0.26231EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2020/04/29 7:10 a.m.38 views

CVE-2020-11884

A flaw was found in the Linux kernel on s390 architecture. The issue occurs on multiprocessing systems when one s390 CPU is in Secondary Address Mode and another CPU does a kernel page table upgrade. An inter-processor interrupt IPI is then sent to each active CPU to update the control registers...

6.9CVSS0.1AI score0.00397EPSS
Exploits0References3
Kaspersky
Kasperskyadded 2020/04/29 12:0 a.m.20 views

KLA11760 DoS in VLC media player

Denial of service vulnerability was found in VLC Media Player. Malicious users can exploit this vulnerability to cause denial of service. Original advisories sb-vlc309 Related products VLC-media-player CVE list CVE-2019-19721 high Solution Update to the latest version Download VLC medial player...

7.8CVSS8.7AI score0.02021EPSS
Exploits1References3
RedHat Linux
RedHat Linuxadded 2020/04/28 4:10 p.m.2 views

jackson-databind: Serialization gadgets in ibatis-sqlmap

A flaw was found in jackson-databind 2.x. FasterXML jackson-databind 2.x mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

9.8CVSS7.1AI score0.18671EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2020/04/28 4:10 p.m.4 views

jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

A flaw was found in jackson-databind 2.x in versions prior to 2.9.10.4. FasterXML jackson-databind 2.x mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

8.8CVSS7.1AI score0.02959EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2020/04/28 4:10 p.m.3 views

jackson-databind: Serialization gadgets in anteros-core

A flaw was found in jackson-databind 2.x. FasterXML jackson-databind 2.x mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

9.8CVSS7.1AI score0.18345EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2020/04/28 4:10 p.m.3 views

jackson-databind: Serialization gadgets in shaded-hikari-config

A flaw was found in jackson-databind 2.x in versions prior to 2.9.10.4. FasterXML jackson-databind 2.x mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

9.8CVSS7.1AI score0.04575EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2020/04/28 1:39 p.m.24 views

CVE-2020-6462

A flaw was found in the Chromium browser. The task scheduling component was found to have a use-after-free memory flaw. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

6.8CVSS2.7AI score0.01365EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2020/04/28 10:39 a.m.18 views

CVE-2020-10704

A flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests as an Active Directory Domain Controller LDAP server, an unauthorized user can cause a stack overflow leading to a denial of service. The highest threat from this vulnerabilit...

5CVSS1.9AI score0.03455EPSS
Exploits0References4
Rows per page
Query Builder