CVE-2020-11296
Summary: Arithmetic overflow can happen while processing NOA IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon...
CONFIRM
CVE-2020-11194
Summary: Possible out of bound access in TA while processing a command from NS side due to improper length check...
CVE-2020-11287
Summary: Allowing RTT frames to be linked with non randomized MAC address by comparing the sequence numbers can lead to...
CVE-2020-11177
Summary: User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting...
CVE-2021-23839
Summary: OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 with a server that is configured to support...
CVE-2021-22553
Summary: Any git operation is passed through Jetty and a session is created. No expiry is set for the session...
CVE-2020-27216
Summary: In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thru 10.0.0.beta2, and 11.0.0.alpha1 thru 11.0.0.beta2O, on Unix like systems, the...
CVE-2020-27216
Summary: In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thru 10.0.0.beta2, and 11.0.0.alpha1 thru 11.0.0.beta2O, on Unix like systems, the...
CVE-2020-27216
Summary: In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thru 10.0.0.beta2, and 11.0.0.alpha1 thru 11.0.0.beta2O, on Unix like systems, the...
CVE-2020-8639
Summary: An unrestricted file upload vulnerability in keywordsImport.php in TestLink 1.9.20 allows remote attackers to execute arbitrary code by uploading...
CVE-2011-5325
Summary: Directory traversal vulnerability in the BusyBox implementation of tar before 1.22.0 v5 allows remote attackers to point to files...
CVE-2016-2147
Summary: Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to cause a denial of...
CVE-2016-4970
Summary: handler/ssl/OpenSslEngine.java in Netty 4.0.x before 4.0.37.Final and 4.1.x before 4.1.1.Final allows remote attackers to cause a denial of service...
CVE-2020-7919
Summary: Go before 1.12.16 and 1.13.x before 1.13.7 (and the crypto/cryptobyte package before 0.0.0-20200124225646-8b5121be2f68 for Go) allows attacks on clients...
CVE-2021-22299
Summary: There is a local privilege escalation vulnerability in some Huawei products. A local, authenticated attacker could craft specific commands...
CVE-2020-1967
Summary: Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due...
CVE-2020-27222
Summary: In Eclipse Californium version 2.3.0 to 2.6.0, the certificate based (x509 and RPK) DTLS handshakes accidentally fails, because the...
CVE-2020-12525
Summary: M&M Software fdtCONTAINER Component in versions below 3.5.20304.x and between 3.6 and 3.6.20304.x is vulnerable to deserialization of untrusted...
CVE-2020-17516
Summary: Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using 'dc'...
CVE-2020-35459
Summary: An issue was discovered in ClusterLabs crmsh through 4.2.1. Local attackers able to call "crm history" (when "crm" is...
CVE-2020-11179
Summary: Arbitrary read and write to kernel addresses by temporarily overwriting ring buffer pointer and creating a race condition. in...
CVE-2020-4766
Summary: IBM MQ Internet Pass-Thru 2.1 and 9.2 could allow a remote user to cause a denial of service by...
CVE-2018-2725
Summary: Vulnerability in the Oracle Financial Services Hedge Management and IFRS Valuations component of Oracle Financial Services Applications (subcomponent: User...
CVE-2020-13379
Summary: The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any...
