VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Debian
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2020-12-04
CVE-2020-29565
Open Redirect vulnerability in multiple products
An issue was discovered in OpenStack Horizon before 15.3.2, 16.x before 16.2.1, 17.x and 18.x before 18.3.3, 18.4.x, and 18.5.x.
network
low complexity
openstack
debian
CWE-601
6.1
6.1
2020-12-04
CVE-2020-28916
Infinite Loop vulnerability in multiple products
hw/net/e1000e_core.c in QEMU 5.0.0 has an infinite loop via an RX descriptor with a NULL buffer address.
local
low complexity
qemu
debian
CWE-835
5.5
5.5
2020-12-03
CVE-2020-27783
A XSS vulnerability was discovered in python-lxml's clean module.
network
low complexity
lxml
redhat
debian
fedoraproject
netapp
oracle
6.1
6.1
2020-12-03
CVE-2020-27762
Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in ImageMagick in coders/hdr.c.
local
low complexity
imagemagick
debian
CWE-190
5.5
5.5
2020-12-03
CVE-2020-27760
Divide By Zero vulnerability in multiple products
In `GammaImage()` of /MagickCore/enhance.c, depending on the `gamma` value, it's possible to trigger a divide-by-zero condition when a crafted input file is processed by ImageMagick.
local
low complexity
imagemagick
debian
CWE-369
5.5
5.5
2020-12-02
CVE-2020-25704
A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if using PERF_EVENT_IOC_SET_FILTER.
local
low complexity
linux
debian
starwindsoftware
5.5
5.5
2020-12-02
CVE-2020-25656
A flaw was found in the Linux kernel.
local
high complexity
linux
redhat
debian
starwindsoftware
4.1
4.1
2020-12-01
CVE-2020-15257
containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows.
local
low complexity
linuxfoundation
fedoraproject
debian
5.2
5.2
2020-11-30
CVE-2020-25624
Out-of-bounds Read vulnerability in multiple products
hw/usb/hcd-ohci.c in QEMU 5.0.0 has a stack-based buffer over-read via values obtained from the host controller driver.
local
high complexity
qemu
debian
CWE-125
5.0
5.0
2020-11-28
CVE-2020-27218
In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients are multiplexed onto a single connection, and if an attacker can send a request with a body that is received entirely but not consumed by the application, then a subsequent request on the same connection will see that body prepended to its body.
network
high complexity
eclipse
netapp
oracle
apache
debian
4.8
4.8
«
Previous
1
2
...
100
101
102
(current)
103
104
...
304
305
»
Next