CVE-2019-14907
- EPSS 3.15%
- Veröffentlicht 21.01.2020 18:15:12
- Zuletzt bearbeitet 14.01.2025 19:29:55
All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with "log level = 3" (or above) then the string obtained from the client, after a failed character conversion, is printed. Such st...
CVE-2019-19344
- EPSS 3.07%
- Veröffentlicht 21.01.2020 18:15:12
- Zuletzt bearbeitet 14.01.2025 19:29:55
There is a use-after-free issue in all samba 4.9.x versions before 4.9.18, all samba 4.10.x versions before 4.10.12 and all samba 4.11.x versions before 4.11.5, essentially due to a call to realloc() while other local variables still point at the ori...
CVE-2019-20386
- EPSS 0.43%
- Veröffentlicht 21.01.2020 06:15:11
- Zuletzt bearbeitet 09.06.2025 16:15:30
An issue was discovered in button_open in login/logind-button.c in systemd before 243. When executing the udevadm trigger command, a memory leak may occur.
CVE-2019-14615
- EPSS 1.45%
- Veröffentlicht 17.01.2020 18:15:12
- Zuletzt bearbeitet 21.11.2024 04:27:02
Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.
CVE-2019-17361
- EPSS 15.11%
- Veröffentlicht 17.01.2020 02:15:11
- Zuletzt bearbeitet 21.11.2024 04:32:10
In SaltStack Salt through 2019.2.0, the salt-api NET API with the ssh client enabled is vulnerable to command injection. This allows an unauthenticated attacker with network access to the API endpoint to execute arbitrary code on the salt-api host.
CVE-2019-15961
- EPSS 3.14%
- Veröffentlicht 15.01.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:29:49
A vulnerability in the email parsing module Clam AntiVirus (ClamAV) Software versions 0.102.0, 0.101.4 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to...
CVE-2020-2686
- EPSS 2.06%
- Veröffentlicht 15.01.2020 17:15:26
- Zuletzt bearbeitet 21.11.2024 05:25:59
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple prot...
CVE-2020-2694
- EPSS 1.5%
- Veröffentlicht 15.01.2020 17:15:26
- Zuletzt bearbeitet 21.11.2024 05:26:01
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.18 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via mu...
CVE-2020-2679
- EPSS 1.88%
- Veröffentlicht 15.01.2020 17:15:25
- Zuletzt bearbeitet 21.11.2024 05:25:58
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...
CVE-2020-2654
- EPSS 3.82%
- Veröffentlicht 15.01.2020 17:15:24
- Zuletzt bearbeitet 21.11.2024 05:25:54
Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access v...