|
210691
|
5.5 |
MEDIUM
Local
|
redhat
debian
|
ansible_engine
debian_linux
|
An Improper Output Neutralization for Logs flaw was found in Ansible when using the uri module, where sensitive data is exposed to content and json output. This flaw allows an attacker to access the …
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2020-14330
|
2024-11-21 14:03 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210692
|
7.5 |
HIGH
Network
|
redhat
|
jboss_enterprise_application_platform
jbossweb
|
A flaw was found in JBossWeb in versions before 7.5.31.Final-redhat-3. The fix for CVE-2020-13935 was incomplete in JBossWeb, leaving it vulnerable to a denial of service attack when sending multiple…
|
NVD-CWE-noinfo
|
CVE-2020-14384
|
2024-11-21 14:03 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210693
|
7.0 |
HIGH
Local
|
samba
fedoraproject
opensuse
|
cifs-utils
fedora
leap
|
It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special …
|
CWE-78
OS Command
|
CVE-2020-14342
|
2024-11-21 14:03 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210694
|
5.5 |
MEDIUM
Local
|
artifex
redhat
|
ghostscript
enterprise_linux
|
A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service.
|
CWE-416
Use After Free
|
CVE-2020-14373
|
2024-11-21 14:03 |
2020-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210695
|
4.3 |
MEDIUM
Adjacent
|
nmfc
|
power_line_communications
|
All trailer Power Line Communications are affected. PLC bus traffic can be sniffed reliably via an active antenna up to 6 feet away. Further distances are also possible, subject to environmental cond…
|
-
|
CVE-2020-14514
|
2024-11-21 14:03 |
2020-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210696
|
5.0 |
MEDIUM
Local
|
qemu
redhat
fedoraproject
debian
opensuse
canonical
|
qemu
enterprise_linux
openstack
fedora
debian_linux
leap
ubuntu_linux
|
An out-of-bounds read/write access flaw was found in the USB emulator of the QEMU in versions before 5.2.0. This issue occurs while processing USB packets from a guest when USBDevice 'setup_len' exce…
|
CWE-125
CWE-787
Out-of-bounds Read
Out-of-bounds Write
|
CVE-2020-14364
|
2024-11-21 14:03 |
2020-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210697
|
8.0 |
HIGH
Network
|
redhat
opensuse
fedoraproject
|
librepo
leap
backports_sle
fedora
|
A flaw was found in librepo in versions before 1.12.1. A directory traversal vulnerability was found where it failed to sanitize paths in remote repository metadata. An attacker controlling a remote …
|
CWE-22
Path Traversal
|
CVE-2020-14352
|
2024-11-21 14:03 |
2020-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210698
|
3.3 |
LOW
Local
|
qemu
canonical
|
qemu
ubuntu_linux
|
oss_write in audio/ossaudio.c in QEMU before 5.0.0 mishandles a buffer position.
|
CWE-369
Divide By Zero
|
CVE-2020-14415
|
2024-11-21 14:03 |
2020-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210699
|
5.4 |
MEDIUM
Network
|
oracle
|
suitecommerce_advanced
|
Vulnerability in SuiteCommerce Advanced (SCA) Sites component of Oracle NetSuite service. Supported versions that are affected are prior to 2020.1.4. Difficult to exploit vulnerability allows low pri…
|
NVD-CWE-noinfo
|
CVE-2020-14729
|
2024-11-21 14:03 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210700
|
5.4 |
MEDIUM
Network
|
oracle
|
suitecommerce_advanced
|
Vulnerability in the SuiteCommerce Advanced (SCA) component of Oracle NetSuite service. Supported versions that are affected are Montblanc, Vinson, Elbrus, Kilimanjaro, Aconcagua, 2018.2, 2019.1, 201…
|
NVD-CWE-noinfo
|
CVE-2020-14728
|
2024-11-21 14:03 |
2020-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
