Latest CVE Feed
-
5.5
MEDIUMCVE-2006-3720
Unspecified vulnerability in Enterprise Config Management for Oracle Enterprise Manager 10.1.0.3 has unknown impact and attack vectors, aka Oracle Vuln# EM02.... Read more
Affected Products : enterprise_manager- Published: Jul. 21, 2006
- Modified: Apr. 03, 2025
-
5.5
MEDIUMCVE-2020-12771
An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md/bcache/btree.c has a deadlock if a coalescing operation fails.... Read more
Affected Products : linux_kernel ubuntu_linux debian_linux leap active_iq_unified_manager h410c_firmware a700s_firmware cloud_backup hci_management_node solidfire +27 more products- Published: May. 09, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12767
exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.... Read more
- Published: May. 09, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12769
An issue was discovered in the Linux kernel before 5.4.17. drivers/spi/spi-dw.c allows attackers to cause a panic via concurrent calls to dw_spi_irq and dw_spi_transfer_one, aka CID-19b61392c5a8.... Read more
Affected Products : linux_kernel ubuntu_linux debian_linux leap active_iq_unified_manager h410c_firmware a700s_firmware cloud_backup hci_management_node solidfire +26 more products- Published: May. 09, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12680
Avira Free Antivirus through 15.0.2005.1866 allows local users to discover user credentials. The functions of the executable file Avira.PWM.NativeMessaging.exe are aimed at collecting credentials stored in Chrome, Firefox, Opera, and Edge. The executable ... Read more
Affected Products : free_antivirus- Published: May. 08, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12656
gss_mech_free in net/sunrpc/auth_gss/gss_mech_switch.c in the rpcsec_gss_krb5 implementation in the Linux kernel through 5.6.10 lacks certain domain_release calls, leading to a memory leak. Note: This was disputed with the assertion that the issue does no... Read more
- Published: May. 05, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12518
On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks.... Read more
- Published: Dec. 17, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12485
The frame touch module does not make validity judgments on parameter lengths when processing specific parameters,which caused out of the boundary when memory access.The vulnerability eventually leads to a local DOS on the device.... Read more
Affected Products : frame_touch_module- Published: Nov. 10, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12458
An information-disclosure flaw was found in Grafana through 6.7.3. The database directory /var/lib/grafana and database file /var/lib/grafana/grafana.db are world readable. This can result in exposure of sensitive information (e.g., cleartext or encrypted... Read more
- Published: Apr. 29, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-1361
An information disclosure vulnerability exists in the way that the WalletService handles memory.To exploit the vulnerability, an attacker would first need code execution on a victim system, aka 'Windows WalletService Information Disclosure Vulnerability'.... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_server windows windows_11_23h2- Published: Jul. 14, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12475
TP-Link Omada Controller Software 3.2.6 allows Directory Traversal for reading arbitrary files via com.tp_link.eap.web.portal.PortalController.getAdvertiseFile in /opt/tplink/EAPController/lib/eap-web-3.2.6.jar.... Read more
- Published: May. 04, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12365
Untrusted pointer dereference in some Intel(R) Graphics Drivers before versions 15.33.51.5146, 15.45.32.5145, 15.36.39.5144 and 15.40.46.5143 may allow an authenticated user to potentially denial of service via local access.... Read more
Affected Products : graphics_drivers- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12372
Unchecked return value in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access.... Read more
Affected Products : graphics_drivers- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12364
Null pointer reference in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before version Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access.... Read more
- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12295
Improper input validation in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access.... Read more
Affected Products : jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3_firmware jhl7540_thunderbolt_3_firmware jhl8010r_usb_retimer_firmware dsl5320_thunderbolt_2_firmware dsl5520_thunderbolt_2_firmware +16 more products- Published: Jun. 09, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12292
Improper conditions check in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access.... Read more
Affected Products : jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3_firmware jhl7540_thunderbolt_3_firmware jhl8010r_usb_retimer_firmware dsl5320_thunderbolt_2_firmware dsl5520_thunderbolt_2_firmware +16 more products- Published: Jun. 09, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12291
Uncontrolled resource consumption in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access.... Read more
Affected Products : jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3_firmware jhl7540_thunderbolt_3_firmware jhl8010r_usb_retimer_firmware dsl5320_thunderbolt_2_firmware dsl5520_thunderbolt_2_firmware +16 more products- Published: Jun. 09, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12289
Out-of-bounds write in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access.... Read more
Affected Products : jhl6240_thunderbolt_3_firmware jhl6340_thunderbolt_3_firmware jhl6540_thunderbolt_3_firmware jhl7040_thunderbolt_3_retimer_firmware jhl7340_thunderbolt_3_firmware jhl7440_thunderbolt_3_firmware jhl7540_thunderbolt_3_firmware jhl8010r_usb_retimer_firmware dsl5320_thunderbolt_2_firmware dsl5520_thunderbolt_2_firmware +16 more products- Published: Jun. 09, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-12038
Products that use EDS Subsystem: Version 28.0.1 and prior (FactoryTalk Linx software (Previously called RSLinx Enterprise): Versions 6.00, 6.10, and 6.11, RSLinx Classic: Version 4.11.00 and prior, RSNetWorx software: Version 28.00.00 and prior, Studio 50... Read more
- Published: May. 19, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-11937
In whoopsie, parse_report() from whoopsie.c allows a local attacker to cause a denial of service via a crafted file. The DoS is caused by resource exhaustion due to a memory leak. Fixed in 0.2.52.5ubuntu0.5, 0.2.62ubuntu0.5 and 0.2.69ubuntu0.1.... Read more
- Published: Aug. 06, 2020
- Modified: Nov. 21, 2024