Vulnerabilities > Improper Check for Unusual or Exceptional Conditions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-11-10 | CVE-2020-16125 | Improper Check for Unusual or Exceptional Conditions vulnerability in Gnome Display Manager gdm3 versions before 3.36.2 or 3.38.2 would start gnome-initial-setup if gdm3 can't contact the accountservice service via dbus in a timely manner; on Ubuntu (and potentially derivatives) this could be be chained with an additional issue that could allow a local user to create a new privileged account. | 4.6 |
| 2020-11-02 | CVE-2020-28037 | Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products is_blog_installed in wp-includes/functions.php in WordPress before 5.5.2 improperly determines whether WordPress is already installed, which might allow an attacker to perform a new installation, leading to remote code execution (as well as a denial of service for the old installation). | 9.8 |
| 2020-10-15 | CVE-2020-6107 | Improper Check for Unusual or Exceptional Conditions vulnerability in F2Fs-Tools Project F2Fs-Tools 1.12.0/1.13.0 An exploitable information disclosure vulnerability exists in the dev_read functionality of F2fs-Tools F2fs.Fsck 1.13. | 4.3 |
| 2020-09-24 | CVE-2020-3480 | Improper Check for Unusual or Exceptional Conditions vulnerability in Cisco IOS XE Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload or stop forwarding traffic through the firewall. | 8.6 |
| 2020-09-24 | CVE-2020-3421 | Improper Check for Unusual or Exceptional Conditions vulnerability in Cisco IOS XE 16.9.3/17.2 Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload or stop forwarding traffic through the firewall. | 7.5 |
| 2020-09-24 | CVE-2020-15223 | Improper Check for Unusual or Exceptional Conditions vulnerability in ORY Fosite In ORY Fosite (the security first OAuth2 & OpenID Connect framework for Go) before version 0.34.0, the `TokenRevocationHandler` ignores errors coming from the storage. | 8.0 |
| 2020-09-17 | CVE-2020-0382 | Improper Check for Unusual or Exceptional Conditions vulnerability in Google Android 10.0/11.0 In RunInternal of dumpstate.cpp, there is a possible user consent bypass due to an uncaught exception. | 2.1 |
| 2020-09-16 | CVE-2020-14348 | Improper Check for Unusual or Exceptional Conditions vulnerability in Redhat AMQ Online It was found in AMQ Online before 1.5.2 that injecting an invalid field to a user's AddressSpace configuration of the user namespace puts AMQ Online in an inconsistent state, where the AMQ Online components do not operate properly, such as the failure of provisioning and the failure of creating addresses, though this does not impact upon already existing messaging clients or brokers. | 4.0 |
| 2020-09-11 | CVE-2020-1122 | Improper Check for Unusual or Exceptional Conditions vulnerability in Microsoft products <p>An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations. | 5.5 |
| 2020-09-03 | CVE-2020-5420 | Improper Check for Unusual or Exceptional Conditions vulnerability in Cloudfoundry Cf-Deployment Cloud Foundry Routing (Gorouter) versions prior to 0.206.0 allow a malicious developer with "cf push" access to cause denial-of-service to the CF cluster by pushing an app that returns specially crafted HTTP responses that crash the Gorouters. | 6.8 |