VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Debian
>
Debian Linux
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2020-12-04
CVE-2020-28916
Infinite Loop vulnerability in multiple products
hw/net/e1000e_core.c in QEMU 5.0.0 has an infinite loop via an RX descriptor with a NULL buffer address.
local
low complexity
qemu
debian
CWE-835
5.5
5.5
2020-12-03
CVE-2020-27783
Cross-site Scripting vulnerability in multiple products
A XSS vulnerability was discovered in python-lxml's clean module.
network
low complexity
lxml
redhat
debian
fedoraproject
netapp
oracle
CWE-79
6.1
6.1
2020-12-03
CVE-2020-27762
Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in ImageMagick in coders/hdr.c.
local
low complexity
imagemagick
debian
CWE-190
5.5
5.5
2020-12-03
CVE-2020-27760
Divide By Zero vulnerability in multiple products
In `GammaImage()` of /MagickCore/enhance.c, depending on the `gamma` value, it's possible to trigger a divide-by-zero condition when a crafted input file is processed by ImageMagick.
local
low complexity
imagemagick
debian
CWE-369
5.5
5.5
2020-12-03
CVE-2020-14351
Use After Free vulnerability in multiple products
A flaw was found in the Linux kernel.
local
low complexity
linux
redhat
debian
CWE-416
4.6
4.6
2020-12-02
CVE-2020-25704
Memory Leak vulnerability in multiple products
A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if using PERF_EVENT_IOC_SET_FILTER.
local
low complexity
linux
debian
starwindsoftware
CWE-401
5.5
5.5
2020-12-02
CVE-2020-25656
Use After Free vulnerability in multiple products
A flaw was found in the Linux kernel.
local
high complexity
linux
redhat
debian
starwindsoftware
CWE-416
4.1
4.1
2020-12-01
CVE-2020-15257
Incorrect Resource Transfer Between Spheres vulnerability in multiple products
containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows.
local
low complexity
linuxfoundation
fedoraproject
debian
CWE-669
5.2
5.2
2020-11-30
CVE-2020-25624
Out-of-bounds Read vulnerability in multiple products
hw/usb/hcd-ohci.c in QEMU 5.0.0 has a stack-based buffer over-read via values obtained from the host controller driver.
local
qemu
debian
CWE-125
4.4
4.4
2020-11-28
CVE-2020-27218
In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients are multiplexed onto a single connection, and if an attacker can send a request with a body that is received entirely but not consumed by the application, then a subsequent request on the same connection will see that body prepended to its body.
network
high complexity
eclipse
netapp
oracle
apache
debian
4.8
4.8
«
Previous
1
2
...
109
110
111
(current)
112
113
...
418
419
»
Next