Opensuse

Leap

1898 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2020-2604

  • EPSS 1.7%
  • Veröffentlicht 15.01.2020 17:15:20
  • Zuletzt bearbeitet 21.11.2024 05:25:42

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows...

4.3

CVE-2020-2583

  • EPSS 0.52%
  • Veröffentlicht 15.01.2020 17:15:19
  • Zuletzt bearbeitet 21.11.2024 05:25:37

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows...

4.3

CVE-2020-2590

  • EPSS 0.45%
  • Veröffentlicht 15.01.2020 17:15:19
  • Zuletzt bearbeitet 21.11.2024 05:25:39

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unau...

5.8

CVE-2020-2593

  • EPSS 0.64%
  • Veröffentlicht 15.01.2020 17:15:19
  • Zuletzt bearbeitet 21.11.2024 05:25:40

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows un...

5.9

CVE-2020-2574

  • EPSS 0.16%
  • Veröffentlicht 15.01.2020 17:15:18
  • Zuletzt bearbeitet 21.11.2024 05:25:35

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with ne...

5.5

CVE-2019-19727

  • EPSS 0.05%
  • Veröffentlicht 13.01.2020 19:15:12
  • Zuletzt bearbeitet 21.11.2024 04:35:15

SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 has weak slurmdbd.conf permissions.

7.5

CVE-2019-19728

  • EPSS 0.41%
  • Veröffentlicht 13.01.2020 19:15:12
  • Zuletzt bearbeitet 21.11.2024 04:35:16

SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 executes srun --uid with incorrect privileges.

8.8

CVE-2020-6377

Exploit
  • EPSS 2.9%
  • Veröffentlicht 10.01.2020 22:15:12
  • Zuletzt bearbeitet 21.11.2024 05:35:36

Use after free in audio in Google Chrome prior to 79.0.3945.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

5.3

CVE-2020-1765

  • EPSS 0.63%
  • Veröffentlicht 10.01.2020 15:15:11
  • Zuletzt bearbeitet 21.11.2024 05:11:20

An improper control of parameters allows the spoofing of the from fields of the following screens: AgentTicketCompose, AgentTicketForward, AgentTicketBounce and AgentTicketEmailOutbound. This issue affects: ((OTRS)) Community Edition 5.0.x version 5....

5.3

CVE-2019-20372

Exploit
  • EPSS 69.32%
  • Veröffentlicht 09.01.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:38:19

NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.