Vulnerabilities > Debian

DATE	CVE	VULNERABILITY TITLE	RISK
2020-11-06	CVE-2020-17490	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions. local low complexity saltstack debian CWE-732	5.5
2020-11-06	CVE-2020-16846	OS Command Injection vulnerability in multiple products An issue was discovered in SaltStack Salt through 3002. network low complexity saltstack debian fedoraproject CWE-78 critical	9.8
2020-11-06	CVE-2020-28242	Uncontrolled Recursion vulnerability in multiple products An issue was discovered in Asterisk Open Source 13.x before 13.37.1, 16.x before 16.14.1, 17.x before 17.8.1, and 18.x before 18.0.1 and Certified Asterisk before 16.8-cert5. network low complexity asterisk sangoma fedoraproject debian CWE-674	6.5
2020-11-06	CVE-2020-28241	Out-of-bounds Read vulnerability in multiple products libmaxminddb before 1.4.3 has a heap-based buffer over-read in dump_entry_data_list in maxminddb.c. network low complexity maxmind debian fedoraproject CWE-125	6.5
2020-11-05	CVE-2020-17510	Improper Authentication vulnerability in multiple products Apache Shiro before 1.7.0, when using Apache Shiro with Spring, a specially crafted HTTP request may cause an authentication bypass. network low complexity apache debian CWE-287 critical	9.8
2020-11-04	CVE-2020-28049	Race Condition vulnerability in multiple products An issue was discovered in SDDM before 0.19.0. local high complexity sddm-project opensuse debian fedoraproject CWE-362	6.3
2020-11-04	CVE-2020-8037	Allocation of Resources Without Limits or Throttling vulnerability in multiple products The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory. network low complexity tcpdump debian fedoraproject apple CWE-770	7.5
2020-11-03	CVE-2020-6557	Inappropriate implementation in networking in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page. network low complexity google debian fedoraproject opensuse	6.5
2020-11-03	CVE-2020-16011	Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in UI in Google Chrome on Windows prior to 86.0.4240.183 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. network google opensuse debian CWE-787	6.8
2020-11-03	CVE-2020-16009	Type Confusion vulnerability in multiple products Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google microsoft cefsharp opensuse fedoraproject debian CWE-843	8.8

Vulnerabilities > Debian {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Debian"}]}

Vulnerabilities > Debian