Vulnerabilities > Cesnet > High

DATE CVE VULNERABILITY TITLE RISK
2020-01-22 CVE-2019-20397 Double Free vulnerability in Cesnet Libyang
A double-free is present in libyang before v1.0-r1 in the function yyparse() when an organization field is not terminated.
network
low complexity
cesnet CWE-415
8.8
8.8
2020-01-22 CVE-2019-20394 Double Free vulnerability in Cesnet Libyang
A double-free is present in libyang before v1.0-r3 in the function yyparse() when a type statement in used in a notification statement.
network
low complexity
cesnet CWE-415
8.8
8.8
2020-01-22 CVE-2019-20393 Double Free vulnerability in Cesnet Libyang
A double-free is present in libyang before v1.0-r1 in the function yyparse() when an empty description is used.
network
low complexity
cesnet CWE-415
8.8
8.8
2019-08-23 CVE-2019-15537 SQL Injection vulnerability in Cesnet Proxystatistics
The proxystatistics module before 3.1.0 for SimpleSAMLphp allows SQL Injection in lib/Auth/Process/DatabaseCommand.php.
network
low complexity
cesnet CWE-89
7.5
7.5