CVE-2020-15861
- EPSS 0.46%
- Veröffentlicht 20.08.2020 01:17:13
- Zuletzt bearbeitet 03.12.2025 19:15:51
Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic link (symlink) following.
CVE-2020-15862
- EPSS 0.38%
- Veröffentlicht 20.08.2020 01:17:13
- Zuletzt bearbeitet 21.11.2024 05:06:19
Net-SNMP through 5.8 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides the ability to run arbitrary commands as root.
CVE-2020-14356
- EPSS 0.97%
- Veröffentlicht 19.08.2020 15:15:12
- Zuletzt bearbeitet 21.11.2024 05:03:05
A flaw null pointer dereference in the Linux kernel cgroupv2 subsystem in versions before 5.7.10 was found in the way when reboot the system. A local user could use this flaw to crash the system or escalate their privileges on the system.
CVE-2020-24394
- EPSS 0.36%
- Veröffentlicht 19.08.2020 13:15:10
- Zuletzt bearbeitet 21.11.2024 05:14:44
In the Linux kernel before 5.7.8, fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions on new filesystem objects when the filesystem lacks ACL support, aka CID-22cf8419f131. This occurs because the current umask is not considered.
- EPSS 99.51%
- Veröffentlicht 17.08.2020 19:15:15
- Zuletzt bearbeitet 23.02.2026 20:30:36
An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC). An attacker who successfully exploited the vulnerability...
CVE-2020-16304
- EPSS 1.93%
- Veröffentlicht 13.08.2020 03:15:14
- Zuletzt bearbeitet 14.03.2025 18:27:22
A buffer overflow vulnerability in image_render_color_thresh() in base/gxicolor.c of Artifex Software GhostScript v9.18 to v9.50 allows a remote attacker to escalate privileges via a crafted eps file. This is fixed in v9.51.
CVE-2020-16305
- EPSS 2.25%
- Veröffentlicht 13.08.2020 03:15:14
- Zuletzt bearbeitet 21.11.2024 05:07:08
A buffer overflow vulnerability in pcx_write_rle() in contrib/japanese/gdev10v.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.
CVE-2020-16306
- EPSS 1.78%
- Veröffentlicht 13.08.2020 03:15:14
- Zuletzt bearbeitet 21.11.2024 05:07:09
A null pointer dereference vulnerability in devices/gdevtsep.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted postscript file. This is fixed in v9.51.
CVE-2020-16307
- EPSS 1.78%
- Veröffentlicht 13.08.2020 03:15:14
- Zuletzt bearbeitet 21.11.2024 05:07:09
A null pointer dereference vulnerability in devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted postscript file. This is fixed in v9.51.
CVE-2020-16308
- EPSS 1.87%
- Veröffentlicht 13.08.2020 03:15:14
- Zuletzt bearbeitet 21.11.2024 05:07:09
A buffer overflow vulnerability in p_print_image() in devices/gdevcdj.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.