Vulnerabilities > Debian > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-03 | CVE-2015-7542 | Cleartext Transmission of Sensitive Information vulnerability in multiple products A vulnerability exists in libgwenhywfar through 4.12.0 due to the usage of outdated bundled CA certificates. | 5.0 |
| 2019-12-03 | CVE-2013-7325 | Insecure Temporary File Creation vulnerability in Debian devscripts 'uscan' An issue exists in uscan in devscripts before 2.13.19, which could let a remote malicious user execute arbitrary code via a crafted tarball. | 6.5 |
| 2019-12-03 | CVE-2019-19531 | Use After Free vulnerability in multiple products In the Linux kernel before 5.2.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/yurex.c driver, aka CID-fc05481b2fca. | 6.8 |
| 2019-12-03 | CVE-2019-19530 | Use After Free vulnerability in multiple products In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/class/cdc-acm.c driver, aka CID-c52873e5a1ef. | 4.6 |
| 2019-12-03 | CVE-2019-19527 | Use After Free vulnerability in multiple products In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e. | 6.8 |
| 2019-12-03 | CVE-2019-19525 | Use After Free vulnerability in multiple products In the Linux kernel before 5.3.6, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/net/ieee802154/atusb.c driver, aka CID-7fd25e6fc035. | 4.6 |
| 2019-12-03 | CVE-2019-19524 | Use After Free vulnerability in multiple products In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9. | 4.6 |
| 2019-12-03 | CVE-2019-19523 | Use After Free vulnerability in multiple products In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver, aka CID-44efc269db79. | 4.6 |
| 2019-12-03 | CVE-2013-4235 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees | 4.7 |
| 2019-12-03 | CVE-2013-2106 | Insufficiently Protected Credentials vulnerability in multiple products webauth before 4.6.1 has authentication credential disclosure | 5.0 |