Latest CVE Feed
-
5.5
MEDIUMCVE-2020-12767
exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.... Read more
- EPSS Score: %0.16
- Published: May. 09, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12769
An issue was discovered in the Linux kernel before 5.4.17. drivers/spi/spi-dw.c allows attackers to cause a panic via concurrent calls to dw_spi_irq and dw_spi_transfer_one, aka CID-19b61392c5a8.... Read more
Affected Products : linux_kernel ubuntu_linux debian_linux leap active_iq_unified_manager h410c_firmware a700s_firmware cloud_backup hci_management_node solidfire +26 more products- EPSS Score: %0.06
- Published: May. 09, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12680
Avira Free Antivirus through 15.0.2005.1866 allows local users to discover user credentials. The functions of the executable file Avira.PWM.NativeMessaging.exe are aimed at collecting credentials stored in Chrome, Firefox, Opera, and Edge. The executable ... Read more
Affected Products : free_antivirus- EPSS Score: %0.03
- Published: May. 08, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12656
gss_mech_free in net/sunrpc/auth_gss/gss_mech_switch.c in the rpcsec_gss_krb5 implementation in the Linux kernel through 5.6.10 lacks certain domain_release calls, leading to a memory leak. Note: This was disputed with the assertion that the issue does no... Read more
- EPSS Score: %0.12
- Published: May. 05, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12518
On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks.... Read more
- EPSS Score: %0.19
- Published: Dec. 17, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12485
The frame touch module does not make validity judgments on parameter lengths when processing specific parameters,which caused out of the boundary when memory access.The vulnerability eventually leads to a local DOS on the device.... Read more
Affected Products : frame_touch_module- EPSS Score: %0.04
- Published: Nov. 10, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12458
An information-disclosure flaw was found in Grafana through 6.7.3. The database directory /var/lib/grafana and database file /var/lib/grafana/grafana.db are world readable. This can result in exposure of sensitive information (e.g., cleartext or encrypted... Read more
- EPSS Score: %0.07
- Published: Apr. 29, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-1361
An information disclosure vulnerability exists in the way that the WalletService handles memory.To exploit the vulnerability, an attacker would first need code execution on a victim system, aka 'Windows WalletService Information Disclosure Vulnerability'.... Read more
- EPSS Score: %1.04
- Published: Jul. 14, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12475
TP-Link Omada Controller Software 3.2.6 allows Directory Traversal for reading arbitrary files via com.tp_link.eap.web.portal.PortalController.getAdvertiseFile in /opt/tplink/EAPController/lib/eap-web-3.2.6.jar.... Read more
- EPSS Score: %0.05
- Published: May. 04, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12365
Untrusted pointer dereference in some Intel(R) Graphics Drivers before versions 15.33.51.5146, 15.45.32.5145, 15.36.39.5144 and 15.40.46.5143 may allow an authenticated user to potentially denial of service via local access.... Read more
Affected Products : graphics_drivers- EPSS Score: %0.05
- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12372
Unchecked return value in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access.... Read more
Affected Products : graphics_drivers- EPSS Score: %0.05
- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12364
Null pointer reference in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before version Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access.... Read more
- EPSS Score: %0.11
- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12295
Improper input validation in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access.... Read more
Affected Products : jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3_firmware jhl7540_thunderbolt_3_firmware jhl8010r_usb_retimer_firmware dsl5320_thunderbolt_2_firmware dsl5520_thunderbolt_2_firmware +16 more products- EPSS Score: %0.05
- Published: Jun. 09, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12292
Improper conditions check in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access.... Read more
Affected Products : jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3_firmware jhl7540_thunderbolt_3_firmware jhl8010r_usb_retimer_firmware dsl5320_thunderbolt_2_firmware dsl5520_thunderbolt_2_firmware +16 more products- EPSS Score: %0.05
- Published: Jun. 09, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12291
Uncontrolled resource consumption in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access.... Read more
Affected Products : jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3_firmware jhl7540_thunderbolt_3_firmware jhl8010r_usb_retimer_firmware dsl5320_thunderbolt_2_firmware dsl5520_thunderbolt_2_firmware +16 more products- EPSS Score: %0.05
- Published: Jun. 09, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12289
Out-of-bounds write in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access.... Read more
Affected Products : jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3_firmware jhl7540_thunderbolt_3_firmware jhl8010r_usb_retimer_firmware dsl5320_thunderbolt_2_firmware dsl5520_thunderbolt_2_firmware +16 more products- EPSS Score: %0.05
- Published: Jun. 09, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12038
Products that use EDS Subsystem: Version 28.0.1 and prior (FactoryTalk Linx software (Previously called RSLinx Enterprise): Versions 6.00, 6.10, and 6.11, RSLinx Classic: Version 4.11.00 and prior, RSNetWorx software: Version 28.00.00 and prior, Studio 50... Read more
- EPSS Score: %0.01
- Published: May. 19, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-11937
In whoopsie, parse_report() from whoopsie.c allows a local attacker to cause a denial of service via a crafted file. The DoS is caused by resource exhaustion due to a memory leak. Fixed in 0.2.52.5ubuntu0.5, 0.2.62ubuntu0.5 and 0.2.69ubuntu0.1.... Read more
- EPSS Score: %0.10
- Published: Aug. 06, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-11924
An issue was discovered in WiZ Colors A60 1.14.0. Wi-Fi credentials are stored in cleartext in flash memory, which presents an information-disclosure risk for a discarded or resold device.... Read more
- EPSS Score: %0.03
- Published: Apr. 02, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-11863
libEMF (aka ECMA-234 Metafile Library) through 1.0.11 allows denial of service (issue 1 of 2).... Read more
- EPSS Score: %0.49
- Published: May. 11, 2020
- Modified: Nov. 21, 2024