Логотип exploitDog
source:"msrc"
Консоль
Логотип exploitDog

exploitDog

source:"msrc"

Количество 18 763

Количество 18 763

msrc логотип

CVE-2020-19692

почти 3 года назад

Buffer Overflow vulnerabilty found in Nginx NJS v.0feca92 allows a remote attacker to execute arbitrary code via the njs_module_read in the njs_module.c file.

CVSS3: 9.8
EPSS: Низкий
msrc логотип

CVE-2020-18780

5 месяцев назад

A Use After Free vulnerability in function new_Token in asm/preproc.c in nasm 2.14.02 allows attackers to cause a denial of service via crafted nasm command.

EPSS: Низкий
msrc логотип

CVE-2020-18770

9 месяцев назад

CVSS3: 5.5
EPSS: Низкий
msrc логотип

CVE-2020-18032

больше 4 лет назад

CVSS3: 7.8
EPSS: Низкий
msrc логотип

CVE-2020-17541

больше 4 лет назад

Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component. A remote attacker can send a malformed jpeg file to the service and cause arbitrary code execution or denial of service of the target service.

CVSS3: 8.8
EPSS: Низкий
msrc логотип

CVE-2020-1752

больше 5 лет назад

CVSS3: 7
EPSS: Низкий
msrc логотип

CVE-2020-17527

4 месяца назад

Apache Tomcat: Request header mix-up between HTTP/2 streams

CVSS3: 7.5
EPSS: Низкий
msrc логотип

CVE-2020-17525

почти 5 лет назад

Remote unauthenticated denial-of-service in Subversion mod_authz_svn

CVSS3: 7.5
EPSS: Средний
msrc логотип

CVE-2020-1751

больше 5 лет назад

CVSS3: 7
EPSS: Низкий
msrc логотип

CVE-2020-17507

больше 4 лет назад

CVSS3: 5.3
EPSS: Низкий
msrc логотип

CVE-2020-1747

больше 2 лет назад

CVSS3: 9.8
EPSS: Низкий
msrc логотип

CVE-2020-17380

около 5 лет назад

A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support. It could occur while doing a multi block SDMA transfer via the sdhci_sdma_transfer_multi_blocks() routine in hw/sd/sdhci.c. A guest user or process could use this flaw to crash the QEMU process on the host resulting in a denial of service condition or potentially execute arbitrary code with privileges of the QEMU process on the host.

CVSS3: 6.3
EPSS: Низкий
msrc логотип

CVE-2020-1720

больше 5 лет назад

A flaw was found in PostgreSQL's "ALTER ... DEPENDS ON EXTENSION" where sub-commands did not perform authorization checks. An authenticated attacker could use this flaw in certain configurations to perform drop objects such as function triggers et al. leading to database corruption. This issue affects PostgreSQL versions before 12.2 before 11.7 before 10.12 and before 9.6.17.

CVSS3: 6.5
EPSS: Низкий
msrc логотип

CVE-2020-17163

почти 5 лет назад

Visual Studio Code Python Extension Remote Code Execution Vulnerability

CVSS3: 7.8
EPSS: Низкий
msrc логотип

CVE-2020-17162

около 5 лет назад

Microsoft Windows Security Feature Bypass Vulnerability

CVSS3: 8.8
EPSS: Средний
msrc логотип

CVE-2020-17160

около 5 лет назад

RETRACTED

EPSS: Низкий
msrc логотип

CVE-2020-17159

около 5 лет назад

Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability

CVSS3: 7.8
EPSS: Низкий
msrc логотип

CVE-2020-17158

около 5 лет назад

Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability

CVSS3: 8.8
EPSS: Средний
msrc логотип

CVE-2020-17156

около 5 лет назад

Visual Studio Remote Code Execution Vulnerability

CVSS3: 7.8
EPSS: Средний
msrc логотип

CVE-2020-17153

около 5 лет назад

Microsoft Edge for Android Spoofing Vulnerability

EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
msrc логотип
CVE-2020-19692

Buffer Overflow vulnerabilty found in Nginx NJS v.0feca92 allows a remote attacker to execute arbitrary code via the njs_module_read in the njs_module.c file.

CVSS3: 9.8
1%
Низкий
почти 3 года назад
msrc логотип
CVE-2020-18780

A Use After Free vulnerability in function new_Token in asm/preproc.c in nasm 2.14.02 allows attackers to cause a denial of service via crafted nasm command.

0%
Низкий
5 месяцев назад
msrc логотип
CVSS3: 5.5
0%
Низкий
9 месяцев назад
msrc логотип
CVSS3: 7.8
0%
Низкий
больше 4 лет назад
msrc логотип
CVE-2020-17541

Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component. A remote attacker can send a malformed jpeg file to the service and cause arbitrary code execution or denial of service of the target service.

CVSS3: 8.8
0%
Низкий
больше 4 лет назад
msrc логотип
CVSS3: 7
0%
Низкий
больше 5 лет назад
msrc логотип
CVE-2020-17527

Apache Tomcat: Request header mix-up between HTTP/2 streams

CVSS3: 7.5
6%
Низкий
4 месяца назад
msrc логотип
CVE-2020-17525

Remote unauthenticated denial-of-service in Subversion mod_authz_svn

CVSS3: 7.5
12%
Средний
почти 5 лет назад
msrc логотип
CVSS3: 7
0%
Низкий
больше 5 лет назад
msrc логотип
CVSS3: 5.3
3%
Низкий
больше 4 лет назад
msrc логотип
CVSS3: 9.8
3%
Низкий
больше 2 лет назад
msrc логотип
CVE-2020-17380

A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support. It could occur while doing a multi block SDMA transfer via the sdhci_sdma_transfer_multi_blocks() routine in hw/sd/sdhci.c. A guest user or process could use this flaw to crash the QEMU process on the host resulting in a denial of service condition or potentially execute arbitrary code with privileges of the QEMU process on the host.

CVSS3: 6.3
0%
Низкий
около 5 лет назад
msrc логотип
CVE-2020-1720

A flaw was found in PostgreSQL's "ALTER ... DEPENDS ON EXTENSION" where sub-commands did not perform authorization checks. An authenticated attacker could use this flaw in certain configurations to perform drop objects such as function triggers et al. leading to database corruption. This issue affects PostgreSQL versions before 12.2 before 11.7 before 10.12 and before 9.6.17.

CVSS3: 6.5
0%
Низкий
больше 5 лет назад
msrc логотип
CVE-2020-17163

Visual Studio Code Python Extension Remote Code Execution Vulnerability

CVSS3: 7.8
1%
Низкий
почти 5 лет назад
msrc логотип
CVE-2020-17162

Microsoft Windows Security Feature Bypass Vulnerability

CVSS3: 8.8
11%
Средний
около 5 лет назад
msrc логотип
около 5 лет назад
msrc логотип
CVE-2020-17159

Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability

CVSS3: 7.8
9%
Низкий
около 5 лет назад
msrc логотип
CVE-2020-17158

Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability

CVSS3: 8.8
12%
Средний
около 5 лет назад
msrc логотип
CVE-2020-17156

Visual Studio Remote Code Execution Vulnerability

CVSS3: 7.8
15%
Средний
около 5 лет назад
msrc логотип
CVE-2020-17153

Microsoft Edge for Android Spoofing Vulnerability

1%
Низкий
около 5 лет назад

Уязвимостей на страницу