Opensuse

Leap

1897 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2020-2583

  • EPSS 0.42%
  • Published 15.01.2020 17:15:19
  • Last modified 21.11.2024 05:25:37

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows...

4.3

CVE-2020-2590

  • EPSS 0.42%
  • Published 15.01.2020 17:15:19
  • Last modified 21.11.2024 05:25:39

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unau...

5.8

CVE-2020-2593

  • EPSS 0.59%
  • Published 15.01.2020 17:15:19
  • Last modified 21.11.2024 05:25:40

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows un...

5.9

CVE-2020-2574

  • EPSS 0.25%
  • Published 15.01.2020 17:15:18
  • Last modified 21.11.2024 05:25:35

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with ne...

5.5

CVE-2019-19727

  • EPSS 0.05%
  • Published 13.01.2020 19:15:12
  • Last modified 21.11.2024 04:35:15

SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 has weak slurmdbd.conf permissions.

7.5

CVE-2019-19728

  • EPSS 0.44%
  • Published 13.01.2020 19:15:12
  • Last modified 21.11.2024 04:35:16

SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 executes srun --uid with incorrect privileges.

8.8

CVE-2020-6377

Exploit
  • EPSS 2.9%
  • Published 10.01.2020 22:15:12
  • Last modified 21.11.2024 05:35:36

Use after free in audio in Google Chrome prior to 79.0.3945.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

5.3

CVE-2020-1765

  • EPSS 0.87%
  • Published 10.01.2020 15:15:11
  • Last modified 21.11.2024 05:11:20

An improper control of parameters allows the spoofing of the from fields of the following screens: AgentTicketCompose, AgentTicketForward, AgentTicketBounce and AgentTicketEmailOutbound. This issue affects: ((OTRS)) Community Edition 5.0.x version 5....

5.3

CVE-2019-20372

Exploit
  • EPSS 67.67%
  • Published 09.01.2020 21:15:12
  • Last modified 21.11.2024 04:38:19

NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

8.8

CVE-2019-17012

  • EPSS 2.15%
  • Published 08.01.2020 22:15:12
  • Last modified 21.11.2024 04:31:32

Mozilla developers reported memory safety bugs present in Firefox 70 and Firefox ESR 68.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. T...