Vulnerabilities > Debian

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-29	CVE-2020-11884	Race Condition vulnerability in multiple products In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated by code in enable_sacf_uaccess in arch/s390/lib/uaccess.c that fails to protect against a concurrent page table upgrade, aka CID-3f777e19d171. local high complexity linux canonical debian fedoraproject netapp CWE-362	7.0
2020-04-28	CVE-2020-10663	Improper Input Validation vulnerability in multiple products The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. network low complexity json-project fedoraproject opensuse debian apple CWE-20	7.5
2020-04-28	CVE-2020-12243	Uncontrolled Recursion vulnerability in multiple products In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash). network low complexity openldap debian opensuse canonical netapp broadcom apple oracle CWE-674	5.0
2020-04-28	CVE-2020-1774	When user downloads PGP or S/MIME keys/certificates, exported file has same name for private and public keys. network low complexity otrs debian	4.9
2020-04-28	CVE-2020-12284	Out-of-bounds Write vulnerability in multiple products cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEG_MARKER_SOS handling because of a missing length check. network low complexity ffmpeg canonical debian CWE-787 critical	10.0
2020-04-27	CVE-2020-9481	Resource Exhaustion vulnerability in multiple products Apache ATS 6.0.0 to 6.2.3, 7.0.0 to 7.1.9, and 8.0.0 to 8.0.6 is vulnerable to a HTTP/2 slow read attack. network low complexity apache debian CWE-400	5.0
2020-04-27	CVE-2020-7067	Out-of-bounds Read vulnerability in multiple products In PHP versions 7.2.x below 7.2.30, 7.3.x below 7.3.17 and 7.4.x below 7.4.5, if PHP is compiled with EBCDIC support (uncommon), urldecode() function can be made to access locations past the allocated memory, due to erroneously using signed numbers as array indexes. network low complexity php tenable oracle debian CWE-125	5.0
2020-04-27	CVE-2020-12279	Use of Incorrectly-Resolved Name or Reference vulnerability in multiple products An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. network low complexity libgit2 debian CWE-706 critical	9.8
2020-04-27	CVE-2020-12278	Use of Incorrectly-Resolved Name or Reference vulnerability in multiple products An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. network low complexity libgit2 debian CWE-706 critical	9.8
2020-04-27	CVE-2020-9488	Improper Certificate Validation vulnerability in multiple products Improper validation of certificate with host mismatch in Apache Log4j SMTP appender. network high complexity apache oracle debian qos CWE-295	3.7

Vulnerabilities > Debian {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Debian"}]}

Vulnerabilities > Debian