CVE-2020-2583
- EPSS 4.04%
- Veröffentlicht 15.01.2020 17:15:19
- Zuletzt bearbeitet 21.11.2024 05:25:37
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows...
CVE-2020-2590
- EPSS 3.09%
- Veröffentlicht 15.01.2020 17:15:19
- Zuletzt bearbeitet 21.11.2024 05:25:39
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unau...
CVE-2020-2593
- EPSS 2.98%
- Veröffentlicht 15.01.2020 17:15:19
- Zuletzt bearbeitet 21.11.2024 05:25:40
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows un...
CVE-2020-0602
- EPSS 7.61%
- Veröffentlicht 14.01.2020 23:15:30
- Zuletzt bearbeitet 21.11.2024 04:53:50
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
CVE-2020-0603
- EPSS 19.83%
- Veröffentlicht 14.01.2020 23:15:30
- Zuletzt bearbeitet 21.11.2024 04:53:50
A remote code execution vulnerability exists in ASP.NET Core software when the software fails to handle objects in memory.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka 'ASP.N...
CVE-2020-6851
- EPSS 4.93%
- Veröffentlicht 13.01.2020 06:15:10
- Zuletzt bearbeitet 21.11.2024 05:36:17
OpenJPEG through 2.3.1 has a heap-based buffer overflow in opj_t1_clbl_decode_processor in openjp2/t1.c because of lack of opj_j2k_update_image_dimensions validation.
CVE-2019-17024
- EPSS 2.46%
- Veröffentlicht 08.01.2020 22:15:12
- Zuletzt bearbeitet 21.11.2024 04:31:34
Mozilla developers reported memory safety bugs present in Firefox 71 and Firefox ESR 68.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. T...
CVE-2019-19906
- EPSS 8.04%
- Veröffentlicht 19.12.2019 18:15:12
- Zuletzt bearbeitet 21.11.2024 04:35:37
cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by an off-by-one error in _sasl_add_string in common.c ...
CVE-2018-1311
- EPSS 9.5%
- Veröffentlicht 18.12.2019 20:15:15
- Zuletzt bearbeitet 04.11.2025 19:15:38
The Apache Xerces-C 3.0.0 to 3.2.3 XML parser contains a use-after-free error triggered during the scanning of external DTDs. This flaw has not been addressed in the maintained version of the library and has no current mitigation other than to disabl...
CVE-2019-16777
- EPSS 1.98%
- Veröffentlicht 13.12.2019 01:15:11
- Zuletzt bearbeitet 21.11.2024 04:31:10
Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package was installed globally and cre...