Latest CVE Feed
-
5.5
MEDIUMCVE-2020-15570
The parse_report() function in whoopsie.c in Whoopsie through 0.2.69 mishandles memory allocation failures, which allows an attacker to cause a denial of service via a malformed crash file.... Read more
Affected Products : whoopsie- EPSS Score: %0.31
- Published: Jul. 06, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-1497
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerabil... Read more
- EPSS Score: %25.76
- Published: Aug. 17, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-14314
A memory out-of-bounds read flaw was found in the Linux kernel before 5.9-rc2 with the ext3/ext4 file system, in the way it accesses a directory with broken indexing. This flaw allows a local user to crash the system if the directory exists. The highest t... Read more
- EPSS Score: %0.01
- Published: Sep. 15, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-1367
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1389, CVE-2020-1419, CVE-2020-1426.... Read more
- EPSS Score: %0.65
- Published: Jul. 14, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-1330
An information disclosure vulnerability exists when Windows Mobile Device Management (MDM) Diagnostics improperly handles junctions, aka 'Windows Mobile Device Management Diagnostics Information Disclosure Vulnerability'.... Read more
- EPSS Score: %0.95
- Published: Jul. 14, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-13289
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. In certain cases an invalid username could be accepted when 2FA is activated.... Read more
Affected Products : gitlab- EPSS Score: %0.16
- Published: Sep. 14, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12656
gss_mech_free in net/sunrpc/auth_gss/gss_mech_switch.c in the rpcsec_gss_krb5 implementation in the Linux kernel through 5.6.10 lacks certain domain_release calls, leading to a memory leak. Note: This was disputed with the assertion that the issue does no... Read more
- EPSS Score: %0.12
- Published: May. 05, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-1263
An information disclosure vulnerability exists in the way Windows Error Reporting (WER) handles objects in memory, aka 'Windows Error Reporting Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1261.... Read more
- EPSS Score: %0.48
- Published: Jun. 09, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-11758
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read in ImfOptimizedPixelReading.h.... Read more
Affected Products : ubuntu_linux fedora debian_linux leap openexr itunes mac_os_x iphone_os tvos watchos +2 more products- EPSS Score: %0.39
- Published: Apr. 14, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-11669
An issue was discovered in the Linux kernel before 5.2 on the powerpc platform. arch/powerpc/kernel/idle_book3s.S does not have save/restore functionality for PNV_POWERSAVE_AMR, PNV_POWERSAVE_UAMOR, and PNV_POWERSAVE_AMOR, aka CID-53a712bae5dd.... Read more
- EPSS Score: %0.03
- Published: Apr. 10, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-11097
In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is fixed in version 2.1.2.... Read more
- EPSS Score: %0.17
- Published: Jun. 22, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-11087
In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_AuthenticateMessage. This has been fixed in 2.1.0.... Read more
- EPSS Score: %0.19
- Published: May. 29, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-10811
An issue was discovered in HDF5 through 1.12.0. A heap-based buffer over-read exists in the function H5O__layout_decode() located in H5Olayout.c. It allows an attacker to cause Denial of Service.... Read more
Affected Products : hdf5- EPSS Score: %0.45
- Published: Mar. 22, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-1016
An information disclosure vulnerability exists when the Windows Push Notification Service improperly handles objects in memory, aka 'Windows Push Notification Service Information Disclosure Vulnerability'.... Read more
- EPSS Score: %0.56
- Published: Apr. 15, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-0946
An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0937, CVE-2020-0939, CVE-2020-0945, CVE-2020-0947.... Read more
- EPSS Score: %27.35
- Published: Apr. 15, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-0921
Microsoft Graphics Component Denial of Service Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +9 more products- EPSS Score: %1.08
- Published: Sep. 11, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-0875
<p>An information disclosure vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system (low-integrity to medium-integrity).</p... Read more
Affected Products : windows_10 windows_8.1 windows_rt_8.1 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_1507 windows_10_1803 +5 more products- EPSS Score: %22.38
- Published: Sep. 11, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-0548
Cleanup errors in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.... Read more
- EPSS Score: %0.20
- Published: Jan. 28, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-9074
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an out-of-bounds read leading to a SEGV in bfd_getl32 in libbfd.c, when called from pex64_get_runtime_function in pei-x86_64.c.... Read more
- EPSS Score: %0.12
- Published: Feb. 24, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-8504
A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A local user may be able to read kernel memory.... Read more
- EPSS Score: %0.11
- Published: Dec. 18, 2019
- Modified: Nov. 21, 2024