CVE-2021-33620
- EPSS 79.58%
- Veröffentlicht 28.05.2021 12:15:07
- Zuletzt bearbeitet 21.11.2024 06:09:12
Squid before 4.15 and 5.x before 5.0.6 allows remote servers to cause a denial of service (affecting availability to all clients) via an HTTP response. The issue trigger is a header that can be expected to exist in HTTP traffic without any malicious ...
CVE-2021-20239
- EPSS 0.26%
- Veröffentlicht 28.05.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:46:11
A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw allows an attacker with a local account to leak information about kernel internal addresses. The highest threat from this vulnerability is to confidentialit...
CVE-2021-20240
- EPSS 2.35%
- Veröffentlicht 28.05.2021 11:15:08
- Zuletzt bearbeitet 12.02.2025 17:16:44
A flaw was found in gdk-pixbuf in versions before 2.42.0. An integer wraparound leading to an out of bounds write can occur when a crafted GIF image is loaded. An attacker may cause applications to crash or could potentially execute code on the victi...
CVE-2021-20292
- EPSS 0.87%
- Veröffentlicht 28.05.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:46:17
There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem. The issue results from the lack of validating the existence of an object prior to per...
CVE-2020-25710
- EPSS 2.67%
- Veröffentlicht 28.05.2021 11:15:07
- Zuletzt bearbeitet 21.11.2024 05:18:32
A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest threat from this vulnerability is to system availabil...
- EPSS 0.34%
- Veröffentlicht 28.05.2021 11:15:07
- Zuletzt bearbeitet 21.11.2024 05:27:26
A NULL pointer dereference flaw was found in the SCSI emulation support of QEMU in versions before 6.0.0. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. The highest threat from this v...
CVE-2021-20236
- EPSS 1.6%
- Veröffentlicht 28.05.2021 11:15:07
- Zuletzt bearbeitet 21.11.2024 05:46:11
A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vul...
CVE-2021-31808
- EPSS 5.49%
- Veröffentlicht 27.05.2021 14:15:07
- Zuletzt bearbeitet 21.11.2024 06:06:16
An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to an input-validation bug, it is vulnerable to a Denial of Service attack (against all clients using the proxy). A client sends an HTTP Range request to trigger this.
CVE-2021-30465
- EPSS 6.6%
- Veröffentlicht 27.05.2021 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:03:58
runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-e...
CVE-2021-31525
- EPSS 3.69%
- Veröffentlicht 27.05.2021 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:05:51
net/http in Go before 1.15.12 and 1.16.x before 1.16.4 allows remote attackers to cause a denial of service (panic) via a large header to ReadRequest or ReadResponse. Server, Transport, and Client can each be affected in some configurations.