Canonical

Ubuntu Linux

4106 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.9

CVE-2020-14928

Exploit
  • EPSS 6.35%
  • Veröffentlicht 17.07.2020 16:15:11
  • Zuletzt bearbeitet 21.11.2024 05:04:27

evolution-data-server (eds) through 3.36.3 has a STARTTLS buffering issue that affects SMTP and POP3. When a server sends a "begin TLS" response, eds reads additional data and evaluates it in a TLS context, aka "response injection."

7.2

CVE-2020-15780

  • EPSS 0.67%
  • Veröffentlicht 15.07.2020 22:15:14
  • Zuletzt bearbeitet 21.11.2024 05:06:09

An issue was discovered in drivers/acpi/acpi_configfs.c in the Linux kernel before 5.7.7. Injection of malicious ACPI tables via configfs could be used by attackers to bypass lockdown and secure boot restrictions, aka CID-75b0cea7bf30.

6.9

CVE-2019-20908

  • EPSS 0.02%
  • Veröffentlicht 15.07.2020 22:15:13
  • Zuletzt bearbeitet 21.11.2024 04:39:39

An issue was discovered in drivers/firmware/efi/efi.c in the Linux kernel before 5.4. Incorrect access permissions for the efivar_ssdt ACPI variable could be used by attackers to bypass lockdown or secure boot restrictions, aka CID-1957a85b0032.

4.9

CVE-2020-14702

  • EPSS 0.42%
  • Veröffentlicht 15.07.2020 18:15:34
  • Zuletzt bearbeitet 21.11.2024 05:03:55

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via m...

7.2

CVE-2020-14697

  • EPSS 0.68%
  • Veröffentlicht 15.07.2020 18:15:33
  • Zuletzt bearbeitet 21.11.2024 05:03:54

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via m...

7.2

CVE-2020-14678

  • EPSS 0.64%
  • Veröffentlicht 15.07.2020 18:15:32
  • Zuletzt bearbeitet 21.11.2024 05:03:52

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via m...

6.5

CVE-2020-14680

  • EPSS 0.33%
  • Veröffentlicht 15.07.2020 18:15:32
  • Zuletzt bearbeitet 21.11.2024 05:03:52

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple prot...

7.2

CVE-2020-14663

  • EPSS 0.58%
  • Veröffentlicht 15.07.2020 18:15:31
  • Zuletzt bearbeitet 21.11.2024 05:03:49

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via m...

5.5

CVE-2020-14651

  • EPSS 0.38%
  • Veröffentlicht 15.07.2020 18:15:30
  • Zuletzt bearbeitet 21.11.2024 05:03:47

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multip...

4.9

CVE-2020-14654

  • EPSS 0.42%
  • Veröffentlicht 15.07.2020 18:15:30
  • Zuletzt bearbeitet 21.11.2024 05:03:48

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...