|
210741
|
7.8 |
HIGH
Local
|
x.org
redhat
canonical
|
xorg-server
enterprise_linux
ubuntu_linux
|
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vul…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2020-14361
|
2024-11-21 14:03 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210742
|
7.8 |
HIGH
Local
|
x.org
redhat
canonical
|
xorg-server
enterprise_linux
ubuntu_linux
|
A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat …
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2020-14346
|
2024-11-21 14:03 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210743
|
6.6 |
MEDIUM
Physics
|
linux
redhat
|
linux_kernel
enterprise_linux
|
A flaw was found in the Linux kernel’s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console, calling an ioctl VT_RESIZE, which causes an out-of…
|
-
|
CVE-2020-14331
|
2024-11-21 14:03 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210744
|
7.8 |
HIGH
Local
|
x.org
canonical
|
x_server
ubuntu_linux
|
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerab…
|
-
|
CVE-2020-14345
|
2024-11-21 14:03 |
2020-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210745
|
7.8 |
HIGH
Local
|
x.org
fedoraproject
|
libx11
fedora
|
An integer overflow vulnerability leading to a double-free was found in libX11. This flaw allows a local privileged attacker to cause an application compiled with libX11 to crash, or in some cases, r…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2020-14363
|
2024-11-21 14:03 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210746
|
5.5 |
MEDIUM
Local
|
redhat
debian
|
ansible_engine
debian_linux
|
A flaw was found in the Ansible Engine when using module_args. Tasks executed with check mode (--check-mode) do not properly neutralize sensitive data exposed in the event data. This flaw allows unau…
|
-
|
CVE-2020-14332
|
2024-11-21 14:03 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210747
|
5.5 |
MEDIUM
Local
|
redhat
debian
|
ansible_engine
debian_linux
|
An Improper Output Neutralization for Logs flaw was found in Ansible when using the uri module, where sensitive data is exposed to content and json output. This flaw allows an attacker to access the …
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2020-14330
|
2024-11-21 14:03 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210748
|
7.5 |
HIGH
Network
|
redhat
|
jboss_enterprise_application_platform
jbossweb
|
A flaw was found in JBossWeb in versions before 7.5.31.Final-redhat-3. The fix for CVE-2020-13935 was incomplete in JBossWeb, leaving it vulnerable to a denial of service attack when sending multiple…
|
NVD-CWE-noinfo
|
CVE-2020-14384
|
2024-11-21 14:03 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210749
|
7.0 |
HIGH
Local
|
samba
fedoraproject
opensuse
|
cifs-utils
fedora
leap
|
It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special …
|
CWE-78
OS Command
|
CVE-2020-14342
|
2024-11-21 14:03 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210750
|
5.5 |
MEDIUM
Local
|
artifex
redhat
|
ghostscript
enterprise_linux
|
A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service.
|
CWE-416
Use After Free
|
CVE-2020-14373
|
2024-11-21 14:03 |
2020-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
