Latest CVE Feed
-
5.5
MEDIUMCVE-2021-0072
Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable information disclosure via local access.... Read more
- EPSS Score: %0.06
- Published: Feb. 09, 2022
- Modified: May. 05, 2025
-
5.5
MEDIUMCVE-2020-9968
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 14.0 and iPadOS 14.0, macOS Catalina 10.15.7, tvOS 14.0, watchOS 7.0. A malicious application may be able to access restricted files.... Read more
- EPSS Score: %0.20
- Published: Oct. 16, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-9934
An issue existed in the handling of environment variables. This issue was addressed with improved validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6. A local user may be able to view sensitive user information.... Read more
- Actively Exploited
- EPSS Score: %1.53
- Published: Oct. 16, 2020
- Modified: Feb. 28, 2025
-
5.5
MEDIUMCVE-2020-9608
Adobe Acrobat and Reader versions 2020.006.20042 and earlier, 2017.011.30166 and earlier, 2017.011.30166 and earlier, and 2015.006.30518 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.... Read more
- EPSS Score: %1.91
- Published: Jun. 25, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-9489
A carefully crafted or corrupt file may trigger a System.exit in Tika's OneNote Parser. Crafted or corrupted files can also cause out of memory errors and/or infinite loops in Tika's ICNSParser, MP3Parser, MP4Parser, SAS7BDATParser, OneNoteParser and Imag... Read more
Affected Products : primavera_unifier webcenter_portal flexcube_private_banking communications_messaging_server tika- EPSS Score: %0.41
- Published: Apr. 27, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-38026
Windows DHCP Client Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +11 more products- EPSS Score: %0.20
- Published: Oct. 11, 2022
- Modified: Jan. 02, 2025
-
5.5
MEDIUMCVE-2022-38025
Windows Distributed File System (DFS) Information Disclosure Vulnerability... Read more
- EPSS Score: %0.40
- Published: Oct. 11, 2022
- Modified: Jan. 02, 2025
-
5.5
MEDIUMCVE-2020-3914
A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. An application may be able to read restricted memory.... Read more
- EPSS Score: %0.30
- Published: Apr. 01, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-27946
An information disclosure issue was addressed with improved state management. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. Processing a mal... Read more
- EPSS Score: %0.32
- Published: Apr. 02, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-27898
A denial of service issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.0.1. An attacker may be able to bypass Managed Frame Protection.... Read more
Affected Products : macos- EPSS Score: %0.16
- Published: Dec. 08, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-27819
An issue was discovered in libxls before and including 1.6.1 when reading Microsoft Excel files. A NULL pointer dereference vulnerability exists when parsing XLS cells in libxls/xls2csv.c:199. It could allow a remote attacker to cause a denial of service ... Read more
Affected Products : libxls- EPSS Score: %0.27
- Published: Feb. 23, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-26164
In kdeconnect-kde (aka KDE Connect) before 20.08.2, an attacker on the local network could send crafted packets that trigger use of large amounts of CPU, memory, or network connection slots, aka a Denial of Service attack.... Read more
- EPSS Score: %0.08
- Published: Oct. 07, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-24890
libraw 20.0 has a null pointer dereference vulnerability in parse_tiff_ifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way... Read more
Affected Products : libraw- EPSS Score: %0.43
- Published: Sep. 16, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-19609
Artifex MuPDF before 1.18.0 has a heap based buffer over-write in tiff_expand_colormap() function when parsing TIFF files allowing attackers to cause a denial of service.... Read more
- EPSS Score: %0.45
- Published: Jul. 21, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-17036
Windows Function Discovery SSDP Provider Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +11 more products- EPSS Score: %0.32
- Published: Nov. 11, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-17030
Windows MSCTF Server Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1809 windows_10_20h2 windows_10_1803 windows_10_1909 windows_server_20h2 windows_server_1903 windows_server_1909 +1 more products- EPSS Score: %0.45
- Published: Nov. 11, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-17029
Windows Canonical Display Driver Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +10 more products- EPSS Score: %0.45
- Published: Nov. 11, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-16919
<p>An information disclosure vulnerability exists when the Windows Enterprise App Management Service improperly handles certain file operations. An attacker who successfully exploited this vulnerability could read arbitrary files.</p> <p>An attacker with ... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_1507 windows_10_1803 windows_10_1909 windows_server_1903 windows_server_1909 +1 more products- EPSS Score: %0.46
- Published: Oct. 16, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-37386
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader 11.2.2.53575. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a ma... Read more
- EPSS Score: %0.86
- Published: Mar. 29, 2023
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-16879
<p>An information disclosure vulnerability exists when a Windows Projected Filesystem improperly handles file redirections. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user's system</p> <p>T... Read more
- EPSS Score: %1.04
- Published: Sep. 11, 2020
- Modified: Nov. 21, 2024