Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2021-01-05	CVE-2020-36158	Classic Buffer Overflow vulnerability in multiple products mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332. local low complexity linux fedoraproject debian netapp CWE-120	6.7
2021-01-04	CVE-2019-25013	Out-of-bounds Read vulnerability in multiple products The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read. network high complexity gnu fedoraproject netapp broadcom debian CWE-125	5.9
2021-01-04	CVE-2020-24386	An issue was discovered in Dovecot before 2.3.13. network high complexity dovecot debian fedoraproject	6.8
2021-01-04	CVE-2020-35496	NULL Pointer Dereference vulnerability in multiple products There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference. local low complexity gnu fedoraproject netapp broadcom CWE-476	5.5
2021-01-04	CVE-2020-35495	NULL Pointer Dereference vulnerability in multiple products There's a flaw in binutils /bfd/pef.c. local low complexity gnu fedoraproject netapp broadcom CWE-476	5.5
2021-01-04	CVE-2020-35494	Use of Uninitialized Resource vulnerability in multiple products There's a flaw in binutils /opcodes/tic4x-dis.c. local low complexity gnu fedoraproject netapp broadcom CWE-908	6.1
2021-01-04	CVE-2020-35493	Improper Input Validation vulnerability in multiple products A flaw exists in binutils in bfd/pef.c. local low complexity gnu fedoraproject netapp broadcom CWE-20	5.5
2020-12-31	CVE-2020-35884	HTTP Request Smuggling vulnerability in multiple products An issue was discovered in the tiny_http crate through 2020-06-16 for Rust. network low complexity tiny-http-project fedoraproject CWE-444	6.5
2020-12-28	CVE-2020-35730	Cross-site Scripting vulnerability in multiple products An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16, and 1.4.x before 1.4.10. network low complexity roundcube fedoraproject debian CWE-79	6.1
2020-12-28	CVE-2020-35738	Integer Overflow or Wraparound vulnerability in multiple products WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in pack_utils.c because of an integer overflow in a malloc argument. local low complexity wavpack debian fedoraproject CWE-190	6.1