Archlinux - Page 7 of Archlinux Most Viewed Vulnerabilities List

ArchLinux•added 2021/06/09 12:0 a.m.•132 views

[ASA-202106-25] python-urllib3: denial of service

Arch Linux Security Advisory ASA-202106-25 ========================================== Severity: Medium Date : 2021-06-09 CVE-ID : CVE-2021-33503 Package : python-urllib3 Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-2038 Summary ======= The package python-urllib3...

7.5CVSS2.2AI score0.03273EPSS

ArchLinux•added 2021/01/12 12:0 a.m.•132 views

[ASA-202101-24] atftp: denial of service

Arch Linux Security Advisory ASA-202101-24 ========================================== Severity: Medium Date : 2021-01-12 CVE-ID : CVE-2020-6097 Package : atftp Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-1395 Summary ======= The package atftp before version...

7.5CVSS7.2AI score0.02399EPSS

ArchLinux•added 2020/12/05 12:0 a.m.•132 views

[ASA-202012-2] cimg: arbitrary code execution

Arch Linux Security Advisory ASA-202012-2 ========================================= Severity: Medium Date : 2020-12-05 CVE-ID : CVE-2020-25693 Package : cimg Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1318 Summary ======= The package cimg before version...

8.1CVSS2.9AI score0.01467EPSS

Exploits1References4

ArchLinux•added 2021/08/03 12:0 a.m.•131 views

[ASA-202108-3] nodejs-lts-erbium: arbitrary code execution

Arch Linux Security Advisory ASA-202108-3 ========================================= Severity: High Date : 2021-08-03 CVE-ID : CVE-2021-22930 Package : nodejs-lts-erbium Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-2241 Summary ======= The package...

9.8CVSS2.2AI score0.37286EPSS

Exploits0References8

ArchLinux•added 2020/11/19 12:0 a.m.•131 views

[ASA-202011-21] swtpm: privilege escalation

Arch Linux Security Advisory ASA-202011-21 ========================================== Severity: Medium Date : 2020-11-19 CVE-ID : CVE-2020-28407 Package : swtpm Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-1282 Summary ======= The package swtpm before version...

7.1CVSS1.1AI score0.00279EPSS

Exploits0References9

ArchLinux•added 2021/07/20 12:0 a.m.•130 views

[ASA-202107-37] putty: content spoofing

Arch Linux Security Advisory ASA-202107-37 ========================================== Severity: Low Date : 2021-07-20 CVE-ID : CVE-2021-36367 Package : putty Type : content spoofing Remote : Yes Link : https://security.archlinux.org/AVG-2143 Summary ======= The package putty before version 0.76-1...

8.1CVSS0.6AI score0.01106EPSS

Exploits0References3

ArchLinux•added 2021/01/04 12:0 a.m.•130 views

[ASA-202101-2] roundcubemail: cross-site scripting

Arch Linux Security Advisory ASA-202101-2 ========================================= Severity: High Date : 2021-01-04 CVE-ID : CVE-2020-35730 Package : roundcubemail Type : cross-site scripting Remote : Yes Link : https://security.archlinux.org/AVG-1388 Summary ======= The package roundcubemail...

6.1CVSS0.6AI score0.32365EPSS

ArchLinux•added 2021/07/21 12:0 a.m.•129 views

[ASA-202107-52] virtualbox: multiple issues

Arch Linux Security Advisory ASA-202107-52 ========================================== Severity: High Date : 2021-07-21 CVE-ID : CVE-2021-2409 CVE-2021-2442 CVE-2021-2443 CVE-2021-2454 Package : virtualbox Type : multiple issues Remote : No Link : https://security.archlinux.org/AVG-2187 Summary...

8.2CVSS1.4AI score0.00731EPSS

ArchLinux•added 2021/01/20 12:0 a.m.•129 views

[ASA-202101-33] linux: directory traversal

Arch Linux Security Advisory ASA-202101-33 ========================================== Severity: Medium Date : 2021-01-20 CVE-ID : CVE-2020-28374 Package : linux Type : directory traversal Remote : No Link : https://security.archlinux.org/AVG-1442 Summary ======= The package linux before version...

8.1CVSS1.5AI score0.06563EPSS

ArchLinux•added 2021/01/12 12:0 a.m.•129 views

[ASA-202101-14] nodejs-lts-erbium: multiple issues

Arch Linux Security Advisory ASA-202101-14 ========================================== Severity: High Date : 2021-01-12 CVE-ID : CVE-2020-8265 CVE-2020-8287 Package : nodejs-lts-erbium Type : multiple issues Remote : No Link : https://security.archlinux.org/AVG-1402 Summary ======= The package...

8.1CVSS8.5AI score0.16296EPSS

Exploits3References22

ArchLinux•added 2021/01/04 12:0 a.m.•129 views

[ASA-202101-1] rsync: man-in-the-middle

Arch Linux Security Advisory ASA-202101-1 ========================================= Severity: High Date : 2021-01-04 CVE-ID : CVE-2020-14387 Package : rsync Type : man-in-the-middle Remote : Yes Link : https://security.archlinux.org/AVG-1374 Summary ======= The package rsync before version 3.2.3-...

7.4CVSS1.4AI score0.01098EPSS

ArchLinux•added 2020/11/19 12:0 a.m.•129 views

[ASA-202011-19] libass: arbitrary code execution

Arch Linux Security Advisory ASA-202011-19 ========================================== Severity: Medium Date : 2020-11-19 CVE-ID : CVE-2020-26682 Package : libass Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1285 Summary ======= The package libass before...

8.8CVSS1.7AI score0.01789EPSS

ArchLinux•added 2021/01/12 12:0 a.m.•128 views

[ASA-202101-16] nodejs: multiple issues

Arch Linux Security Advisory ASA-202101-16 ========================================== Severity: High Date : 2021-01-12 CVE-ID : CVE-2020-8265 CVE-2020-8287 Package : nodejs Type : multiple issues Remote : No Link : https://security.archlinux.org/AVG-1400 Summary ======= The package nodejs before...

8.1CVSS8.4AI score0.16296EPSS

Exploits3References22

ArchLinux•added 2021/01/12 12:0 a.m.•128 views

[ASA-202101-20] vivaldi: multiple issues

Arch Linux Security Advisory ASA-202101-20 ========================================== Severity: High Date : 2021-01-12 CVE-ID : CVE-2020-15995 CVE-2020-16043 CVE-2021-21106 CVE-2021-21107 CVE-2021-21108 CVE-2021-21109 CVE-2021-21110 CVE-2021-21111 CVE-2021-21112 CVE-2021-21113 CVE-2021-21114...

9.6CVSS1.9AI score0.03095EPSS

Exploits0References29

ArchLinux•added 2021/01/12 12:0 a.m.•128 views

[ASA-202101-22] mediawiki: multiple issues

Arch Linux Security Advisory ASA-202101-22 ========================================== Severity: Medium Date : 2021-01-12 CVE-ID : CVE-2020-35474 CVE-2020-35475 CVE-2020-35477 CVE-2020-35478 CVE-2020-35479 CVE-2020-35480 Package : mediawiki Type : multiple issues Remote : Yes Link :...

7.5CVSS0.9AI score0.01573EPSS

Exploits4References21

ArchLinux•added 2014/09/26 12:0 a.m.•128 views

bash: Remote code execution

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the...

10CVSS4.7AI score0.99999EPSS

Exploits139References5

ArchLinux•added 2021/08/10 12:0 a.m.•127 views

[ASA-202108-13] c-ares: insufficient validation

Arch Linux Security Advisory ASA-202108-13 ========================================== Severity: Medium Date : 2021-08-10 CVE-ID : CVE-2021-3672 Package : c-ares Type : insufficient validation Remote : Yes Link : https://security.archlinux.org/AVG-2268 Summary ======= The package c-ares before...

6.8CVSS2AI score0.02617EPSS

ArchLinux•added 2021/08/10 12:0 a.m.•127 views

[ASA-202108-6] vivaldi: multiple issues

Arch Linux Security Advisory ASA-202108-6 ========================================= Severity: High Date : 2021-08-10 CVE-ID : CVE-2021-30590 CVE-2021-30591 CVE-2021-30592 CVE-2021-30593 CVE-2021-30594 CVE-2021-30596 CVE-2021-30597 Package : vivaldi Type : multiple issues Remote : Yes Link :...

8.8CVSS1.6AI score0.0282EPSS

Exploits7References18

ArchLinux•added 2021/07/21 12:0 a.m.•127 views

[ASA-202107-62] lib32-libcurl-compat: multiple issues

Arch Linux Security Advisory ASA-202107-62 ========================================== Severity: Medium Date : 2021-07-21 CVE-ID : CVE-2021-22924 CVE-2021-22925 Package : lib32-libcurl-compat Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-2197 Summary ======= The...

5.3CVSS0.1AI score0.0627EPSS

Exploits2References7

ArchLinux•added 2021/07/21 12:0 a.m.•127 views

[ASA-202107-47] chromium: multiple issues

Arch Linux Security Advisory ASA-202107-47 ========================================== Severity: High Date : 2021-07-21 CVE-ID : CVE-2021-30565 CVE-2021-30566 CVE-2021-30567 CVE-2021-30568 CVE-2021-30569 CVE-2021-30571 CVE-2021-30572 CVE-2021-30573 CVE-2021-30574 CVE-2021-30575 CVE-2021-30576...

9.6CVSS1.3AI score0.06282EPSS

Exploits26References40

ArchLinux•added 2021/07/20 12:0 a.m.•127 views

[ASA-202107-39] racket: sandbox escape

Arch Linux Security Advisory ASA-202107-39 ========================================== Severity: Medium Date : 2021-07-20 CVE-ID : CVE-2021-32773 Package : racket Type : sandbox escape Remote : Yes Link : https://security.archlinux.org/AVG-2175 Summary ======= The package racket before version 8.2...

7.5CVSS2.5AI score0.00869EPSS

ArchLinux•added 2021/07/20 12:0 a.m.•127 views

[ASA-202107-44] wireshark-cli: denial of service

Arch Linux Security Advisory ASA-202107-44 ========================================== Severity: Low Date : 2021-07-20 CVE-ID : CVE-2021-22235 Package : wireshark-cli Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-2160 Summary ======= The package wireshark-cli befo...

7.5CVSS1.8AI score0.03296EPSS

Exploits1References6

ArchLinux•added 2021/01/12 12:0 a.m.•127 views

[ASA-202101-10] gitlab: multiple issues

Arch Linux Security Advisory ASA-202101-10 ========================================== Severity: High Date : 2021-01-12 CVE-ID : CVE-2020-26414 CVE-2021-22166 CVE-2021-22167 CVE-2021-22168 CVE-2021-22171 Package : gitlab Type : multiple issues Remote : Yes Link :...

7.5CVSS1.3AI score0.0157EPSS

Exploits0References14

ArchLinux•added 2021/08/10 12:0 a.m.•126 views

[ASA-202108-12] loki: directory traversal

Arch Linux Security Advisory ASA-202108-12 ========================================== Severity: Medium Date : 2021-08-10 CVE-ID : CVE-2021-36156 Package : loki Type : directory traversal Remote : Yes Link : https://security.archlinux.org/AVG-2250 Summary ======= The package loki before version...

5.3CVSS1.2AI score0.01449EPSS

ArchLinux•added 2021/08/03 12:0 a.m.•126 views

[ASA-202108-4] chromium: multiple issues

Arch Linux Security Advisory ASA-202108-4 ========================================= Severity: High Date : 2021-08-03 CVE-ID : CVE-2021-30590 CVE-2021-30591 CVE-2021-30592 CVE-2021-30593 CVE-2021-30594 CVE-2021-30596 CVE-2021-30597 Package : chromium Type : multiple issues Remote : Yes Link :...

8.8CVSS1.5AI score0.0282EPSS

Exploits7References16

ArchLinux•added 2021/07/21 12:0 a.m.•126 views

[ASA-202107-46] opera: arbitrary code execution

Arch Linux Security Advisory ASA-202107-46 ========================================== Severity: High Date : 2021-07-21 CVE-ID : CVE-2021-30541 CVE-2021-30559 CVE-2021-30560 CVE-2021-30561 CVE-2021-30562 CVE-2021-30563 CVE-2021-30564 Package : opera Type : arbitrary code execution Remote : Yes Lin...

8.8CVSS1.7AI score0.21623EPSS

Exploits2References17

ArchLinux•added 2019/02/12 12:0 a.m.•126 views

[ASA-201902-13] lib32-curl: arbitrary code execution

Arch Linux Security Advisory ASA-201902-13 ========================================== Severity: High Date : 2019-02-12 CVE-ID : CVE-2018-16890 CVE-2019-3822 CVE-2019-3823 Package : lib32-curl Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-874 Summary ======...

9.8CVSS1.5AI score0.12771EPSS

Exploits2References10

ArchLinux•added 2021/08/10 12:0 a.m.•125 views

[ASA-202108-10] jupyterlab: cross-site scripting

Arch Linux Security Advisory ASA-202108-10 ========================================== Severity: High Date : 2021-08-10 CVE-ID : CVE-2021-32797 Package : jupyterlab Type : cross-site scripting Remote : Yes Link : https://security.archlinux.org/AVG-2266 Summary ======= The package jupyterlab before...

9.6CVSS1.9AI score0.02638EPSS

Exploits1References4

ArchLinux•added 2021/06/09 12:0 a.m.•125 views

[ASA-202106-27] isync: arbitrary code execution

Arch Linux Security Advisory ASA-202106-27 ========================================== Severity: Medium Date : 2021-06-09 CVE-ID : CVE-2021-3578 Package : isync Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-2042 Summary ======= The package isync before...

7.8CVSS1.9AI score0.01006EPSS

ArchLinux•added 2018/04/04 12:0 a.m.•125 views

[ASA-201804-4] apache: multiple issues

Arch Linux Security Advisory ASA-201804-4 ========================================= Severity: Medium Date : 2018-04-04 CVE-ID : CVE-2017-15710 CVE-2017-15715 CVE-2018-1283 CVE-2018-1301 CVE-2018-1302 CVE-2018-1303 CVE-2018-1312 Package : apache Type : multiple issues Remote : Yes Link :...

9.8CVSS1AI score0.86006EPSS

Exploits0References9

ArchLinux•added 2021/01/29 12:0 a.m.•124 views

[ASA-202101-45] libgcrypt: arbitrary code execution

Arch Linux Security Advisory ASA-202101-45 ========================================== Severity: Critical Date : 2021-01-29 CVE-ID : CVE-2021-3345 Package : libgcrypt Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1505 Summary ======= The package libgcrypt...

7.8CVSS2.1AI score0.01064EPSS

ArchLinux•added 2021/08/10 12:0 a.m.•123 views

[ASA-202108-9] lynx: information disclosure

Arch Linux Security Advisory ASA-202108-9 ========================================= Severity: High Date : 2021-08-10 CVE-ID : CVE-2021-38165 Package : lynx Type : information disclosure Remote : Yes Link : https://security.archlinux.org/AVG-2261 Summary ======= The package lynx before version...

5.3CVSS1.5AI score0.04455EPSS

ArchLinux•added 2021/08/10 12:0 a.m.•123 views

[ASA-202108-8] fossil: certificate verification bypass

Arch Linux Security Advisory ASA-202108-8 ========================================= Severity: High Date : 2021-08-10 CVE-ID : CVE-2021-36377 Package : fossil Type : certificate verification bypass Remote : Yes Link : https://security.archlinux.org/AVG-2146 Summary ======= The package fossil befor...

7.5CVSS0.6AI score0.00574EPSS

ArchLinux•added 2021/06/09 12:0 a.m.•123 views

[ASA-202106-26] python-websockets: private key recovery

Arch Linux Security Advisory ASA-202106-26 ========================================== Severity: Medium Date : 2021-06-09 CVE-ID : CVE-2021-33880 Package : python-websockets Type : private key recovery Remote : Yes Link : https://security.archlinux.org/AVG-2040 Summary ======= The package...

5.9CVSS1.4AI score0.02265EPSS

Exploits0References3

ArchLinux•added 2021/01/12 12:0 a.m.•123 views

[ASA-202101-23] wavpack: arbitrary code execution

Arch Linux Security Advisory ASA-202101-23 ========================================== Severity: Medium Date : 2021-01-12 CVE-ID : CVE-2020-35738 Package : wavpack Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1387 Summary ======= The package wavpack before...

6.1CVSS1.1AI score0.01196EPSS

Exploits1References7

ArchLinux•added 2021/07/20 12:0 a.m.•122 views

[ASA-202107-43] ant: denial of service

Arch Linux Security Advisory ASA-202107-43 ========================================== Severity: Low Date : 2021-07-20 CVE-ID : CVE-2021-36373 CVE-2021-36374 Package : ant Type : denial of service Remote : No Link : https://security.archlinux.org/AVG-2151 Summary ======= The package ant before...

5.5CVSS1.4AI score0.0262EPSS

ArchLinux•added 2021/06/09 12:0 a.m.•122 views

[ASA-202106-29] kube-apiserver: insufficient validation

Arch Linux Security Advisory ASA-202106-29 ========================================== Severity: Low Date : 2021-06-09 CVE-ID : CVE-2021-25737 Package : kube-apiserver Type : insufficient validation Remote : Yes Link : https://security.archlinux.org/AVG-1970 Summary ======= The package...

4.9CVSS0.3AI score0.01289EPSS

ArchLinux•added 2021/07/20 12:0 a.m.•121 views

[ASA-202107-45] telegram-desktop: content spoofing

Arch Linux Security Advisory ASA-202107-45 ========================================== Severity: Low Date : 2021-07-20 CVE-ID : CVE-2021-36769 Package : telegram-desktop Type : content spoofing Remote : Yes Link : https://security.archlinux.org/AVG-2170 Summary ======= The package telegram-desktop...

5.3CVSS0.6AI score0.01047EPSS

Exploits0References3

ArchLinux•added 2021/01/29 12:0 a.m.•121 views

[ASA-202101-42] libvirt: arbitrary code execution

Arch Linux Security Advisory ASA-202101-42 ========================================== Severity: Critical Date : 2021-01-29 CVE-ID : CVE-2020-25637 Package : libvirt Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1240 Summary ======= The package libvirt befor...

7.2CVSS0.9AI score0.00522EPSS

Exploits0References7

ArchLinux•added 2021/01/12 12:0 a.m.•121 views

[ASA-202101-21] coturn: insufficient validation

Arch Linux Security Advisory ASA-202101-21 ========================================== Severity: High Date : 2021-01-12 CVE-ID : CVE-2020-26262 Package : coturn Type : insufficient validation Remote : Yes Link : https://security.archlinux.org/AVG-1430 Summary ======= The package coturn before...

7.2CVSS1.2AI score0.01282EPSS

Exploits3References11

ArchLinux•added 2015/01/23 12:0 a.m.•121 views

php: remote code execution

CVE-2014-9427 information leak, remote code execution A one-byte file containing only the '' character, not followed by any newline, causes php-cgi to do an out of bound read, potentially disclosing sensitive information present in memory or even triggering code execution if adjacent memory...

7.5CVSS3.6AI score0.53166EPSS

Exploits12References6

ArchLinux•added 2021/06/09 12:0 a.m.•121 views

[ASA-202106-30] wireshark-cli: denial of service

Arch Linux Security Advisory ASA-202106-30 ========================================== Severity: Low Date : 2021-06-09 CVE-ID : CVE-2021-22222 Package : wireshark-cli Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-2037 Summary ======= The package wireshark-cli befo...

7.5CVSS3AI score0.01789EPSS

ArchLinux•added 2021/06/09 12:0 a.m.•120 views

[ASA-202106-22] thunderbird: arbitrary code execution

Arch Linux Security Advisory ASA-202106-22 ========================================== Severity: High Date : 2021-06-09 CVE-ID : CVE-2021-29967 Package : thunderbird Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-2035 Summary ======= The package thunderbird...

8.8CVSS1.4AI score0.01368EPSS

ArchLinux•added 2021/06/09 12:0 a.m.•120 views

[ASA-202106-28] nettle: denial of service

Arch Linux Security Advisory ASA-202106-28 ========================================== Severity: Medium Date : 2021-06-09 CVE-ID : CVE-2021-3580 Package : nettle Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-2052 Summary ======= The package nettle before version...

7.5CVSS1.9AI score0.02686EPSS

ArchLinux•added 2021/06/09 12:0 a.m.•119 views

[ASA-202106-24] polkit: privilege escalation

Arch Linux Security Advisory ASA-202106-24 ========================================== Severity: Medium Date : 2021-06-09 CVE-ID : CVE-2021-3560 Package : polkit Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-2028 Summary ======= The package polkit before version...

7.8CVSS1.4AI score0.22193EPSS

Exploits37References6

ArchLinux•added 2021/07/21 12:0 a.m.•118 views

[ASA-202107-58] nvidia-utils: multiple issues

Arch Linux Security Advisory ASA-202107-58 ========================================== Severity: Medium Date : 2021-07-21 CVE-ID : CVE-2021-1093 CVE-2021-1094 CVE-2021-1095 Package : nvidia-utils Type : multiple issues Remote : No Link : https://security.archlinux.org/AVG-2193 Summary ======= The...

6.2CVSS1.6AI score0.00414EPSS

ArchLinux•added 2021/01/29 12:0 a.m.•117 views

[ASA-202101-43] mutt: denial of service

Arch Linux Security Advisory ASA-202101-43 ========================================== Severity: Low Date : 2021-01-29 CVE-ID : CVE-2021-3181 Package : mutt Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-1476 Summary ======= The package mutt before version 2.0.5-1 ...

6.5CVSS1.9AI score0.02796EPSS

ArchLinux•added 2021/01/04 12:0 a.m.•117 views

[ASA-202101-3] poppler: arbitrary code execution

Arch Linux Security Advisory ASA-202101-3 ========================================= Severity: High Date : 2021-01-04 CVE-ID : CVE-2020-35702 Package : poppler Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1382 Summary ======= The package poppler before...

7.8CVSS2.6AI score0.00861EPSS