- EPSS 2.34%
- Veröffentlicht 21.10.2020 15:15:18
- Zuletzt bearbeitet 21.11.2024 05:04:09
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols ...
CVE-2020-14765
- EPSS 3.01%
- Veröffentlicht 21.10.2020 15:15:17
- Zuletzt bearbeitet 21.11.2024 05:04:06
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with...
- EPSS 2.43%
- Veröffentlicht 21.10.2020 15:15:17
- Zuletzt bearbeitet 21.11.2024 05:04:06
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacke...
- EPSS 2.34%
- Veröffentlicht 21.10.2020 15:15:17
- Zuletzt bearbeitet 21.11.2024 05:04:07
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...
- EPSS 2.43%
- Veröffentlicht 21.10.2020 15:15:17
- Zuletzt bearbeitet 21.11.2024 05:04:07
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via mul...
- EPSS 2.62%
- Veröffentlicht 21.10.2020 15:15:17
- Zuletzt bearbeitet 21.11.2024 05:04:07
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via mu...
CVE-2020-14672
- EPSS 2.4%
- Veröffentlicht 21.10.2020 15:15:15
- Zuletzt bearbeitet 21.11.2024 05:03:51
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged...
CVE-2020-25648
- EPSS 3.85%
- Veröffentlicht 20.10.2020 22:15:43
- Zuletzt bearbeitet 21.11.2024 05:18:20
A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled with the NSS library. The highest threat from this ...
CVE-2020-24387
- EPSS 1.76%
- Veröffentlicht 19.10.2020 20:15:12
- Zuletzt bearbeitet 21.11.2024 05:14:43
An issue was discovered in the yh_create_session() function of yubihsm-shell through 2.0.2. The function does not explicitly check the returned session id from the device. An invalid session id would lead to out-of-bounds read and write operations in...
CVE-2020-24388
- EPSS 1.76%
- Veröffentlicht 19.10.2020 20:15:12
- Zuletzt bearbeitet 21.11.2024 05:14:43
An issue was discovered in the _send_secure_msg() function of yubihsm-shell through 2.0.2. The function does not validate the embedded length field of a message received from the device. This could lead to an oversized memcpy() call that will crash t...