|
210021
|
7.5 |
HIGH
Network
|
glpi-project
|
glpi
|
In GLPI before version 9.5.0, the encryption algorithm used is insecure. The security of the data encrypted relies on the password used, if a user sets a weak/predictable password, an attacker could …
|
-
|
CVE-2020-11031
|
2024-11-21 13:56 |
2020-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210022
|
7.5 |
HIGH
Network
|
redhat
|
single_sign-on
openshift_application_runtimes
keycloak
|
A vulnerability was found in Keycloak before 11.0.1 where DoS attack is possible by sending twenty requests simultaneously to the specified keycloak server, all with a Content-Length header value tha…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2020-10758
|
2024-11-21 13:56 |
2020-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210023
|
5.5 |
MEDIUM
Local
|
linux
debian
|
linux_kernel
debian_linux
|
A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with a local account and the ability to read the /sys/class/zram-control/hot_add file can create ZRAM devic…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2020-10781
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210024
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as…
|
NVD-CWE-noinfo
|
CVE-2020-10768
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210025
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available o…
|
NVD-CWE-noinfo
|
CVE-2020-10767
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210026
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A logic bug flaw was found in Linux kernel before 5.8-rc1 in the implementation of SSBD. A bug in the logic handling allows an attacker with a local account to disable SSBD protection during a contex…
|
NVD-CWE-noinfo
|
CVE-2020-10766
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210027
|
6.0 |
MEDIUM
Local
|
redhat
|
enterprise_linux
|
A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practi…
|
-
|
CVE-2020-10759
|
2024-11-21 13:56 |
2020-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210028
|
4.4 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A stack information leak flaw was found in s390/s390x in the Linux kernel’s memory manager functionality, where it incorrectly writes to the /proc/sys/vm/cmm_timeout file. This flaw allows a local us…
|
NVD-CWE-Other
|
CVE-2020-10773
|
2024-11-21 13:56 |
2020-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210029
|
7.8 |
HIGH
Local
|
qualcomm
|
bitra_firmware
kamorta_firmware
qcs605_firmware
saipan_firmware
sdm710_firmware
sm8250_firmware
sxr2130_firmware
|
u'During the error occurrence in capture request, the buffer is freed and later accessed causing the camera APP to fail due to memory use-after-free' in Snapdragon Consumer IOT, Snapdragon Mobile in …
|
CWE-416
Use After Free
|
CVE-2020-11129
|
2024-11-21 13:56 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210030
|
7.5 |
HIGH
Network
|
qualcomm
|
apq8098_firmware
kamorta_firmware
msm8917_firmware
msm8953_firmware
nicobar_firmware
qcm2150_firmware
qcs605_firmware
qm215_firmware
rennell_firmware
sa6155p_firmware
sa…
|
u'Reachable assertion when wrong data size is returned by parser for ape clips' in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8098, Kamorta, MSM8917,…
|
CWE-617
Reachable Assertion
|
CVE-2020-11135
|
2024-11-21 13:56 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
