Lucene search
K

9185 matches found

Tenable Nessus
Tenable Nessus
added 2020/04/15 12:0 a.m.32 views

EulerOS 2.0 SP3 : openssh (EulerOS-SA-2020-1419)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target...

6.8CVSS7.3AI score0.58204EPSS
Exploits10References4
RedHat Linux
RedHat Linux
added 2020/04/14 1:4 p.m.70 views

Important: Red Hat Security Advisory: Red Hat AMQ Broker 7.4.3 release and security update

Red Hat AMQ Broker 7.4.3 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.1CVSS7AI score0.87806EPSS
Exploits5References17
OSV
OSV
added 2020/04/13 6:15 p.m.2 views

DEBIAN-CVE-2020-6447

Inappropriate implementation in developer tools in Google Chrome prior to 81.0.4044.92 allowed a remote attacker who had convinced the user to use devtools to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8AI score0.01833EPSS
Exploits1References1
Prion
Prion
added 2020/04/13 6:15 p.m.16 views

Design/Logic Flaw

Inappropriate implementation in cache in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS4.7AI score0.01905EPSS
Exploits1References8Affected Software5
UbuntuCve
UbuntuCve
added 2020/04/13 6:15 p.m.16 views

CVE-2020-6440

Inappropriate implementation in extensions in Google Chrome prior to 81.0.4044.92 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information via a crafted Chrome Extension...

4.3CVSS6.8AI score0.01153EPSS
Exploits0References1
CVE
CVE
added 2020/04/13 5:31 p.m.419 views

CVE-2020-6447

CVE-2020-6447 describes an inappropriate implementation in the developer tools of Chromium/Google Chrome prior to 81.0.4044.92, which could allow a remote attacker who convinces a user to use DevTools to potentially exploit heap corruption via a crafted HTML page. Public sources (Arch Linux secur...

8.8CVSS8.3AI score0.01833EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2020/04/13 5:30 p.m.17 views

CVE-2020-6442

Inappropriate implementation in cache in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.9AI score0.01905EPSS
Exploits1References8
CVE
CVE
added 2020/04/13 5:30 p.m.297 views

CVE-2020-6440

CVE-2020-6440 concerns an insecure extension handling in Chromium/Google Chrome prior to 81.0.4044.92, caused by an inappropriate implementation in extensions. An attacker could exploit this by convincing a user to install a malicious extension, potentially leading to disclosure of sensitive info...

4.3CVSS4.9AI score0.01153EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2020/04/13 5:30 p.m.20 views

CVE-2020-6440

Inappropriate implementation in extensions in Google Chrome prior to 81.0.4044.92 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information via a crafted Chrome Extension...

5.1AI score0.01153EPSS
Exploits0References8
Veracode
Veracode
added 2020/04/10 1:8 a.m.28 views

Privilege Escalation

kernel is vulnerable to privilege escalation. The vulnerability exists through a signedness issue found in the Linux kernel's CIFS Common Internet File System implementation. A malicious CIFS server could send a specially-crafted response to a directory read request that would result in a denial ...

8.8CVSS8.6AI score0.01086EPSS
Exploits1References9Affected Software2
Veracode
Veracode
added 2020/04/10 1:5 a.m.28 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists through inconsistency in the methods for allocating and freeing NFSv4 ACL data; CVE-2010-4250 fix caused a regression; a flaw in nextpidmap and inetdiagbcaudit; flaws in the CAN implementation; a race condition in the memory...

4.9CVSS2.7AI score0.00763EPSS
Exploits0References9Affected Software2
Veracode
Veracode
added 2020/04/10 1:4 a.m.28 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists through a heap overflow flaw in the EFI GUID Partition Table GPT implementation could allow a local attacker to cause a denial of service by mounting a disk containing specially-crafted partition tables...

6.1CVSS2.5AI score0.00546EPSS
Exploits0References12Affected Software2
Veracode
Veracode
added 2020/04/10 1:3 a.m.44 views

Denial Of Service (DoS)

The kernel is vulnerable to denial of service DoS. Due to flaws in the AGPGART driver implementation when handling certain IOCTL commands, it allows a local user to cause a denial of service or escalate their privileges...

6.9CVSS3.6AI score0.00384EPSS
Exploits1References13Affected Software2
Veracode
Veracode
added 2020/04/10 1:2 a.m.30 views

Denial Of Service (DoS)

Kernel is vulnerable to denial of service DoS. A missing validation check was found in the bcmrelease and rawrelease functions in the Linux kernel's Controller Area Network CAN implementation. This could allow a local, unprivileged user to cause a denial of service...

4.9CVSS4.1AI score0.00405EPSS
Exploits2References15Affected Software2
Veracode
Veracode
added 2020/04/10 12:58 a.m.25 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as a flaw was found in the Linux kernel's Transparent Huge Pages THP implementation. A local, unprivileged user could abuse this flaw to allow the user stack when it is using huge pages to grow and cause a denial of service...

4.9CVSS2.8AI score0.00387EPSS
Exploits0References12Affected Software1
Veracode
Veracode
added 2020/04/10 12:57 a.m.35 views

Denial Of Service (DoS)

kernel is vulnerabel to denial of service. Missing boundary checks in the block layer implementation could allow a local, unprivileged user to cause a denial of service...

4.7CVSS3.9AI score0.00393EPSS
Exploits1References24Affected Software2
Veracode
Veracode
added 2020/04/10 12:57 a.m.32 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service. Missing boundary checks in the block layer implementation could allow a local, unprivileged user to cause a denial of service...

4.7CVSS4AI score0.00393EPSS
Exploits1References29Affected Software2
Veracode
Veracode
added 2020/04/10 12:55 a.m.37 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A NULL pointer dereference flaw was found in the Generic Receive Offload GRO functionality in the Linux kernel's networking implementation. If both GRO and promiscuous mode were enabled on an interface in a virtual LAN VLAN, it could result in a denial o...

5.7CVSS2.7AI score0.01089EPSS
Exploits1References14Affected Software2
Veracode
Veracode
added 2020/04/10 12:52 a.m.43 views

Arbitrary Code Execution

firefox is vulnerable to arbitrary code execution. An attacker is able to exploit the vulnerability within the OS font implementation to execute arbitrary code using malformed OpenType fonts by verifying the font file prior to use...

9.3CVSS3.4AI score0.04812EPSS
Exploits0References28Affected Software3
Veracode
Veracode
added 2020/04/10 12:50 a.m.30 views

Information Disclosure

kernel is vulnerable to information disclosure. Information leak in the USB implementation. Certain USB errors could result in an uninitialized kernel buffer being sent to user-space. An attacker with physical access to a target system could use this flaw to cause an information leak...

4.7CVSS2.4AI score0.00361EPSS
Exploits1References24Affected Software2
Rows per page
Query Builder