|
200881
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability exists in the /proc/pid/syscall functionality of Linux Kernel 5.1 Stable and 5.4.66. More specifically, this issue has been introduced in v5.1-rc4 (commit 631b…
|
CWE-681
Incorrect Conversion between Numeric Types
|
CVE-2020-28588
|
2024-11-21 14:22 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200882
|
7.0 |
HIGH
Local
|
ibm
|
tivoli_storage_manager
|
The 'id' parameter of IBM Tivoli Storage Manager Version 5 Release 2 (Command Line Administrative Interface, dsmadmc.exe) is vulnerable to an exploitable stack buffer overflow. Note: the vulnerabilit…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-28198
|
2024-11-21 14:22 |
2021-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200883
|
9.8 |
CRITICAL
Network
|
exim
|
exim
|
Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline …
|
NVD-CWE-Other
|
CVE-2020-28026
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200884
|
7.5 |
HIGH
Network
|
exim
|
exim
|
Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkim_finish_bodyhash does not validate the relationship between sig->bodyhash.len and b->bh.len; thus, a crafted DKIM-Signature header might le…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-28025
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200885
|
9.8 |
CRITICAL
Network
|
exim
|
exim
|
Exim 4 before 4.94.2 allows Buffer Underwrite that may result in unauthenticated remote attackers executing arbitrary commands, because smtp_ungetc was only intended to push back characters, but can …
|
CWE-787
Out-of-bounds Write
|
CVE-2020-28024
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200886
|
7.5 |
HIGH
Network
|
exim
|
exim
|
Exim 4 before 4.94.2 allows Out-of-bounds Read. smtp_setup_msg may disclose sensitive information from process memory to an unauthenticated SMTP client.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-28023
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200887
|
9.8 |
CRITICAL
Network
|
exim
|
exim
|
Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory Buffer. This occurs when processing name=value pairs within MAIL FROM and RCPT TO commands.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-28022
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200888
|
8.8 |
HIGH
Network
|
exim
|
exim
|
Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. An authenticated remote SMTP client can insert newline characters into a spool file (which indirectly leads to remote code executi…
|
NVD-CWE-Other
|
CVE-2020-28021
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200889
|
9.8 |
CRITICAL
Network
|
exim
|
exim
|
Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2020-28020
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200890
|
7.5 |
HIGH
Network
|
exim
|
exim
|
Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a clien…
|
CWE-665
Improper Initialization
|
CVE-2020-28019
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
