3 matches found
ALPINE-CVE-2020-14350
It was found that some PostgreSQL extensions did not use searchpath safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into executing a specially crafted script, during the installation or update of such extension. This affect...
GitLab Information Disclosure Vulnerability (CNVD-2019-42894)
GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Community and...
Apple iOS Security Bypass Vulnerability (CNVD-2020-04516)
Apple iOS is an operating system for mobile devices developed by Apple Inc. Telephony is one of the telephony components. A security vulnerability exists in the Telephony component in Apple iOS versions prior to 12.4. An attacker could use this vulnerability to allow the receiver to simultaneousl...