Latest CVE Feed
-
5.5
MEDIUMCVE-2020-0871
An information disclosure vulnerability exists when Windows Network Connections Service fails to properly handle objects in memory, aka 'Windows Network Connections Service Information Disclosure Vulnerability'.... Read more
- EPSS Score: %1.69
- Published: Mar. 12, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-36083
KDE KImageFormats 5.70.0 through 5.81.0 has a stack-based buffer overflow in XCFImageFormat::loadTileRLE.... Read more
Affected Products : kimageformats- EPSS Score: %0.23
- Published: Jul. 01, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-0859
An information vulnerability exists when Windows Modules Installer Service improperly discloses file information, aka 'Windows Modules Installer Service Information Disclosure Vulnerability'.... Read more
- EPSS Score: %0.98
- Published: Mar. 12, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-36008
Adobe Illustrator version 25.2.3 (and earlier) is affected by an Use-after-free vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to read arbitrary file system information in the context of ... Read more
- EPSS Score: %0.81
- Published: Aug. 20, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-3569
A stack corruption bug was found in libtpms in versions before 0.7.2 and before 0.8.0 while decrypting data using RSA. This flaw could result in a SIGBUS (bad memory access) and termination of swtpm. The highest threat from this vulnerability is to system... Read more
- EPSS Score: %0.13
- Published: Jun. 03, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-3505
A flaw was found in libtpms in versions before 0.8.0. The TPM 2 implementation returns 2048 bit keys with ~1984 bit strength due to a bug in the TCG specification. The bug is in the key creation algorithm in RsaAdjustPrimeCandidate(), which is called befo... Read more
- EPSS Score: %0.13
- Published: Apr. 19, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-3502
A flaw was found in avahi 0.8-5. A reachable assertion is present in avahi_s_host_name_resolver_start function allowing a local attacker to crash the avahi service by requesting hostname resolutions through the avahi socket or dbus methods for invalid hos... Read more
Affected Products : avahi- EPSS Score: %0.03
- Published: May. 07, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-0821
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1007.... Read more
- EPSS Score: %0.41
- Published: Apr. 15, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-34969
Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulne... Read more
- Published: May. 07, 2024
- Modified: Aug. 13, 2025
-
5.5
MEDIUMCVE-2020-0775
An information disclosure vulnerability exists when Windows Error Reporting improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Error Reporting Information Dis... Read more
- EPSS Score: %0.96
- Published: Mar. 12, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-0755
An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially c... Read more
- EPSS Score: %0.54
- Published: Feb. 11, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-3446
A flaw was found in libtpms in versions before 0.8.2. The commonly used integration of libtpms with OpenSSL contained a vulnerability related to the returned IV (initialization vector) when certain symmetric ciphers were used. Instead of returning the las... Read more
- EPSS Score: %0.04
- Published: Mar. 25, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-34325
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Jt981.dll library in affected applications lacks proper validation of user-supplied data when parsing JT files. This could result in ... Read more
- EPSS Score: %0.18
- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-34322
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The JPEG2K_Loader.dll library in affected applications lacks proper validation of user-supplied data when parsing J2K files. This could r... Read more
- EPSS Score: %0.20
- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-34303
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Tiff_Loader.dll library in affected applications lacks proper validation of user-supplied data when parsing TIFF files. This could re... Read more
- EPSS Score: %0.20
- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-34299
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Tiff_loader.dll library in affected applications lacks proper validation of user-supplied data when parsing TIFF files. This could re... Read more
- EPSS Score: %0.30
- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-0717
An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0716.... Read more
- EPSS Score: %0.98
- Published: Feb. 11, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-0714
An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Information Disclosure Vulnerability'.... Read more
- EPSS Score: %0.39
- Published: Feb. 11, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-0677
An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially c... Read more
- EPSS Score: %0.54
- Published: Feb. 11, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-33363
Memory leak in the infe_box_read function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.... Read more
Affected Products : gpac- EPSS Score: %0.08
- Published: Sep. 13, 2021
- Modified: Nov. 21, 2024