VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Debian
>
Debian Linux
> 12.0
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-12-19
CVE-2023-6864
Out-of-bounds Write vulnerability in multiple products
Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5.
network
low complexity
mozilla
debian
CWE-787
8.8
8.8
2023-12-19
CVE-2023-6865
`EncryptingOutputStream` was susceptible to exposing uninitialized data.
network
low complexity
mozilla
debian
6.5
6.5
2023-12-19
CVE-2023-6867
Improper Restriction of Rendered UI Layers or Frames vulnerability in multiple products
The timing of a button click causing a popup to disappear was approximately the same length as the anti-clickjacking delay on permission prompts.
network
low complexity
mozilla
debian
CWE-1021
6.1
6.1
2023-12-19
CVE-2023-6873
Out-of-bounds Write vulnerability in multiple products
Memory safety bugs present in Firefox 120.
network
low complexity
mozilla
debian
CWE-787
8.8
8.8
2023-12-18
CVE-2023-51384
In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied.
local
low complexity
openbsd
debian
5.5
5.5
2023-12-18
CVE-2023-51385
OS Command Injection vulnerability in multiple products
In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations.
network
low complexity
openbsd
debian
CWE-78
6.5
6.5
2023-12-13
CVE-2023-6377
Out-of-bounds Read vulnerability in multiple products
A flaw was found in xorg-server.
local
low complexity
redhat
debian
x-org
tigervnc
CWE-125
7.8
7.8
2023-12-13
CVE-2023-6478
Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in xorg-server.
network
low complexity
x-org
redhat
debian
tigervnc
CWE-190
7.5
7.5
2023-12-12
CVE-2023-42883
The issue was addressed with improved memory handling.
local
low complexity
apple
debian
5.5
5.5
2023-12-11
CVE-2023-6185
Improper Input Validation vulnerability in GStreamer integration of The Document Foundation LibreOffice allows an attacker to execute arbitrary GStreamer plugins. In affected versions the filename of the embedded video is not sufficiently escaped when passed to GStreamer enabling an attacker to run arbitrary gstreamer plugins depending on what plugins are installed on the target system.
network
low complexity
libreoffice
fedoraproject
debian
8.8
8.8
«
Previous
1
2
3
(current)
4
5
...
26
27
»
Next