Vulnerabilities > GNU > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-09-18 CVE-2023-4806 Use After Free vulnerability in multiple products
A flaw was found in glibc.
network
high complexity
gnu redhat fedoraproject CWE-416
5.9
5.9
2023-09-14 CVE-2023-25585 Use of Uninitialized Resource vulnerability in GNU Binutils 2.40
A flaw was found in Binutils.
local
low complexity
gnu CWE-908
5.5
5.5
2023-09-14 CVE-2023-25586 Use of Uninitialized Resource vulnerability in GNU Binutils 2.40
A flaw was found in Binutils.
local
low complexity
gnu CWE-908
5.5
5.5
2023-09-14 CVE-2023-25588 Use of Uninitialized Resource vulnerability in GNU Binutils 2.40
A flaw was found in Binutils.
local
low complexity
gnu CWE-908
5.5
5.5
2023-09-13 CVE-2023-4039 Unspecified vulnerability in GNU GCC
**DISPUTED**A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in dynamically-sized local variables in your application without this being detected.
network
high complexity
gnu
4.8
4.8
2023-09-12 CVE-2023-4813 Use After Free vulnerability in multiple products
A flaw was found in glibc.
network
high complexity
gnu redhat fedoraproject netapp CWE-416
5.9
5.9
2023-08-22 CVE-2020-19188 Out-of-bounds Write vulnerability in multiple products
Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
network
low complexity
gnu netapp CWE-787
6.5
6.5
2023-08-22 CVE-2020-19189 Out-of-bounds Write vulnerability in multiple products
Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
network
low complexity
gnu netapp debian CWE-787
6.5
6.5
2023-08-22 CVE-2020-19190 Out-of-bounds Write vulnerability in multiple products
Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
network
low complexity
gnu netapp CWE-787
6.5
6.5
2023-08-22 CVE-2020-19724 Memory Leak vulnerability in GNU Binutils
A memory consumption issue in get_data function in binutils/nm.c in GNU nm before 2.34 allows attackers to cause a denial of service via crafted command.
local
low complexity
gnu CWE-401
5.5
5.5