| Page(s) : 1 ... 100 101 102 103 104 105 106 107 108 109 [110] 111 112 113 114 115 116 117 118 119 120 ... | Result(s) : 9842 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.3 | 2020-12-03 | CVE-2020-27764 | cve | In /MagickCore/statistic.c, there are several areas in ApplyEvaluateOperator() where a size_t cast should have been a ssize_t cast, which causes out-of-range values under some c... |
| 3.3 | 2020-12-03 | CVE-2020-27763 | cve | A flaw was found in ImageMagick in MagickCore/resize.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of m... |
| 3.3 | 2020-12-03 | CVE-2020-27761 | cve | WritePALMImage() in /coders/palm.c used size_t casts in several areas of a calculation which could lead to values outside the range of representable type `unsigned long` undefin... |
| 3.3 | 2020-12-03 | CVE-2020-27759 | cve | In IntensityCompare() of /MagickCore/quantize.c, a double value was being casted to int and returned, which in some cases caused a value outside the range of type `int` to be re... |
| 3.2 | 2020-12-02 | CVE-2020-25723 | cve | A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A m... |
| 3.3 | 2020-12-01 | CVE-2020-11990 | cve | We have resolved a security issue in the camera plugin that could have affected certain Cordova (Android) applications. An attacker who could install (or lead the victim to inst... |
| 3.3 | 2020-11-30 | CVE-2020-11867 | cve | Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on t... |
| 3.5 | 2020-11-30 | CVE-2020-6317 | cve | In certain situations, an attacker with regular user credentials and local access to an ASE cockpit installation can access sensitive information which appears in the installati... |
| 3.6 | 2020-11-28 | CVE-2020-29374 | cve | An issue was discovered in the Linux kernel before 5.7.3, related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation, when used for a copy-on-write pa... |
| 3.3 | 2020-11-28 | CVE-2020-29371 | cve | An issue was discovered in romfs_dev_read in fs/romfs/storage.c in the Linux kernel before 5.8.4. Uninitialized memory leaks to userspace, aka CID-bcf85fcedfdd. |
| 3.7 | 2020-11-27 | CVE-2020-27746 | cve | Slurm before 19.05.8 and 20.x before 20.02.6 exposes Sensitive Information to an Unauthorized Actor because xauth for X11 magic cookies is affected by a race condition in a read... |
| 3.7 | 2020-11-26 | CVE-2020-29042 | cve | An issue was discovered in BigBlueButton through 2.2.29. A brute-force attack may occur because an unlimited number of codes can be entered for a meeting that is protected by an... |
| 3.5 | 2020-11-23 | CVE-2020-25688 | cve | A flaw was found in rhacm versions before 2.0.5 and before 2.1.0. Two internal service APIs were incorrectly provisioned using a test certificate from the source repository. Thi... |
| 3.7 | 2020-11-23 | CVE-2020-26229 | cve | TYPO3 is an open source PHP based web content management system. In TYPO3 from version 10.4.0, and before version 10.4.10, RSS widgets are susceptible to XML external entity pro... |
| 3.5 | 2020-11-19 | CVE-2020-6879 | cve | Some ZTE devices have input verification vulnerabilities. The devices support configuring a static prefix through the web management page. The restriction of the front-end code ... |
| 3.2 | 2020-11-17 | CVE-2020-13353 | cve | When importing repos via URL, one time use git credentials were persisted beyond the expected time window in Gitaly 1.79.0 or above. |
| 2.4 | 2020-11-16 | CVE-2019-19557 | cve | A misconfiguration in the debug interface in Mercedes-Benz HERMES 1 allows an attacker with direct physical access to device hardware to obtain cellular modem information. |
| 2.4 | 2020-11-16 | CVE-2019-19561 | cve | A misconfiguration in the debug interface in Mercedes-Benz HERMES 1.5 allows an attacker with direct physical access to device hardware to obtain cellular modem information. |
| 2.4 | 2020-11-16 | CVE-2019-19563 | cve | A misconfiguration in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with direct physical access to device hardware to obtain cellular modem information. |
| 3.3 | 2020-11-16 | CVE-2020-24366 | cve | Sensitive information could be disclosed in the JetBrains YouTrack application before 2020.2.0 for Android via application backups. |
| Page(s) : 1 ... 100 101 102 103 104 105 106 107 108 109 [110] 111 112 113 114 115 116 117 118 119 120 ... | Result(s) : 9842 |
