Vulnerabilities > Debian > Low

DATE CVE VULNERABILITY TITLE RISK
2021-05-27 CVE-2020-10729 Use of Insufficiently Random Values vulnerability in multiple products
A flaw was found in the use of insufficiently random values in Ansible.
local
low complexity
redhat debian CWE-330
2.1
2021-05-13 CVE-2020-27830 NULL Pointer Dereference vulnerability in multiple products
A vulnerability was found in Linux Kernel where in the spk_ttyio_receive_buf2() function, it would dereference spk_ttyio_synth without checking whether it is NULL or not, and may lead to a NULL-ptr deref crash.
local
low complexity
linux debian CWE-476
2.1
2021-05-11 CVE-2020-26147 An issue was discovered in the Linux kernel 5.8.9.
high complexity
linux debian arista siemens
3.2
2021-05-11 CVE-2020-24588 Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated.
3.5
2021-05-11 CVE-2020-24587 Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key.
1.8
2021-05-11 CVE-2020-24586 The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. 2.9
2021-04-26 CVE-2021-29473 Out-of-bounds Read vulnerability in multiple products
Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata.
local
high complexity
exiv2 fedoraproject debian CWE-125
2.5
2021-04-07 CVE-2020-36310 Infinite Loop vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.8.
local
low complexity
linux debian CWE-835
2.1
2021-04-07 CVE-2020-36311 An issue was discovered in the Linux kernel before 5.9.
local
low complexity
linux debian
2.1
2021-04-06 CVE-2021-28688 Improper Initialization vulnerability in multiple products
The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values.
local
low complexity
linux debian CWE-665
2.1