Vulnerabilities > Information Exposure Through Discrepancy
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-31 | CVE-2020-25065 | Information Exposure Through Discrepancy vulnerability in Google Android An issue was discovered on LG mobile devices with Android OS 4.4, 5.0, 5.1, 6.0, 7.0, 7.1, 8.0, 8.1, 9.0, and 10 software. | 7.5 |
| 2020-08-26 | CVE-2020-24008 | Information Exposure Through Discrepancy vulnerability in Umanni Human Resources 1.0 Umanni RH 1.0 has a user enumeration vulnerability. | 5.3 |
| 2020-08-10 | CVE-2020-17478 | Information Exposure Through Discrepancy vulnerability in P5-Crypt-Perl Project P5-Crypt-Perl ECDSA/EC/Point.pm in Crypt::Perl before 0.33 does not properly consider timing attacks against the EC point multiplication algorithm. | 7.5 |
| 2020-07-29 | CVE-2020-9690 | Information Exposure Through Discrepancy vulnerability in Magento Magento versions 2.3.5-p1 and earlier, and 2.3.5-p1 and earlier have an observable timing discrepancy vulnerability. | 4.2 |
| 2020-07-23 | CVE-2020-11625 | Information Exposure Through Discrepancy vulnerability in Avertx Hd438 Firmware and Hd838 Firmware An issue was discovered in AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 and Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438. | 5.3 |
| 2020-07-22 | CVE-2020-6531 | Information Exposure Through Discrepancy vulnerability in multiple products Side-channel information leakage in scroll to text in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 4.3 |
| 2020-07-13 | CVE-2019-19338 | Information Exposure Through Discrepancy vulnerability in multiple products A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. | 5.5 |
| 2020-07-09 | CVE-2020-12402 | Information Exposure Through Discrepancy vulnerability in multiple products During RSA key generation, bignum implementations used a variation of the Binary Extended Euclidean Algorithm which entailed significantly input-dependent flow. | 4.4 |
| 2020-07-09 | CVE-2020-12399 | Information Exposure Through Discrepancy vulnerability in multiple products NSS has shown timing differences when performing DSA signatures, which was exploitable and could eventually leak private keys. | 4.4 |
| 2020-07-07 | CVE-2020-15392 | Information Exposure Through Discrepancy vulnerability in Venki Supravizio BPM 10.1.2 A user enumeration vulnerability flaw was found in Venki Supravizio BPM 10.1.2. | 5.3 |