Количество 18 769
Количество 18 769
CVE-2020-13645
In GNOME glib-networking through 2.64.2 the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server identity. This is in contrast to its intended documented behavior to fail the certificate verification. Applications that fail to provide the server identity including Balsa before 2.5.11 and 2.6.x before 2.6.1 accept a TLS certificate if the certificate is valid for any host.
CVE-2020-1363
Windows Picker Platform Elevation of Privilege Vulnerability
CVE-2020-13632
CVE-2020-13631
CVE-2020-13630
CVE-2020-1362
Windows WalletService Elevation of Privilege Vulnerability
CVE-2020-1361
Windows WalletService Information Disclosure Vulnerability
CVE-2020-1360
Windows Profile Service Elevation of Privilege Vulnerability
CVE-2020-1359
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
CVE-2020-1358
Windows Resource Policy Information Disclosure Vulnerability
CVE-2020-1357
Windows System Events Broker Elevation of Privilege Vulnerability
CVE-2020-1356
Windows iSCSI Target Service Elevation of Privilege Vulnerability
CVE-2020-1355
Windows Font Driver Host Remote Code Execution Vulnerability
CVE-2020-1354
Windows UPnP Device Host Elevation of Privilege Vulnerability
CVE-2020-1353
Windows Runtime Elevation of Privilege Vulnerability
CVE-2020-1352
Windows USO Core Worker Elevation of Privilege Vulnerability
CVE-2020-1351
Microsoft Graphics Component Information Disclosure Vulnerability
CVE-2020-1350
Windows DNS Server Remote Code Execution Vulnerability
CVE-2020-1349
Microsoft Outlook Remote Code Execution Vulnerability
CVE-2020-1348
Windows GDI Information Disclosure Vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-13645 In GNOME glib-networking through 2.64.2 the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server identity. This is in contrast to its intended documented behavior to fail the certificate verification. Applications that fail to provide the server identity including Balsa before 2.5.11 and 2.6.x before 2.6.1 accept a TLS certificate if the certificate is valid for any host. | CVSS3: 6.5 | 1% Низкий | больше 5 лет назад |
| CVE-2020-1363 Windows Picker Platform Elevation of Privilege Vulnerability | CVSS3: 7.8 | 0% Низкий | больше 5 лет назад |
| CVSS3: 5.5 | 0% Низкий | больше 1 года назад | |
| CVSS3: 5.5 | 0% Низкий | больше 1 года назад | |
| CVSS3: 7 | 0% Низкий | больше 1 года назад | |
| CVE-2020-1362 Windows WalletService Elevation of Privilege Vulnerability | CVSS3: 7.8 | 13% Средний | больше 5 лет назад |
| CVE-2020-1361 Windows WalletService Information Disclosure Vulnerability | CVSS3: 5.5 | 1% Низкий | больше 5 лет назад |
| CVE-2020-1360 Windows Profile Service Elevation of Privilege Vulnerability | CVSS3: 7.8 | 0% Низкий | больше 5 лет назад |
| CVE-2020-1359 Windows CNG Key Isolation Service Elevation of Privilege Vulnerability | CVSS3: 7.8 | 0% Низкий | больше 5 лет назад |
| CVE-2020-1358 Windows Resource Policy Information Disclosure Vulnerability | CVSS3: 5.5 | 1% Низкий | больше 5 лет назад |
| CVE-2020-1357 Windows System Events Broker Elevation of Privilege Vulnerability | CVSS3: 7.8 | 0% Низкий | больше 5 лет назад |
| CVE-2020-1356 Windows iSCSI Target Service Elevation of Privilege Vulnerability | CVSS3: 7.8 | 0% Низкий | больше 5 лет назад |
| CVE-2020-1355 Windows Font Driver Host Remote Code Execution Vulnerability | CVSS3: 7.8 | 1% Низкий | больше 5 лет назад |
| CVE-2020-1354 Windows UPnP Device Host Elevation of Privilege Vulnerability | CVSS3: 7.8 | 1% Низкий | больше 5 лет назад |
| CVE-2020-1353 Windows Runtime Elevation of Privilege Vulnerability | CVSS3: 7.8 | 0% Низкий | больше 5 лет назад |
| CVE-2020-1352 Windows USO Core Worker Elevation of Privilege Vulnerability | CVSS3: 7.8 | 0% Низкий | больше 5 лет назад |
| CVE-2020-1351 Microsoft Graphics Component Information Disclosure Vulnerability | CVSS3: 5.5 | 0% Низкий | больше 5 лет назад |
| CVE-2020-1350 Windows DNS Server Remote Code Execution Vulnerability | CVSS3: 10 | 94% Критический | больше 5 лет назад |
| CVE-2020-1349 Microsoft Outlook Remote Code Execution Vulnerability | 26% Средний | больше 5 лет назад | |
| CVE-2020-1348 Windows GDI Information Disclosure Vulnerability | CVSS3: 5.5 | 24% Средний | больше 5 лет назад |
Уязвимостей на страницу