Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
leap vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2020-1747
A vulnerability exists in the PyYAML library in versions prior to 5.3.1, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or with the FullLoader loader. Applications that use the library to process untrusted i...
Pyyaml Pyyaml
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Opensuse Leap 15.1
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 22.1.0
2 Github repositories
10
CVSSv2
CVE-2020-8432
In Das U-Boot up to and including 2020.01, a double free has been found in the cmd/gpt.c do_rename_gpt_parts() function. Double freeing may result in a write-what-where condition, allowing an malicious user to execute arbitrary code. NOTE: this vulnerablity was introduced when at...
Denx U-boot
Opensuse Leap 15.2
10
CVSSv2
CVE-2019-5021
Versions of the Official Alpine Linux Docker images (since v3.3) contain a NULL password for the `root` user. This vulnerability appears to be the result of a regression introduced in December of 2015. Due to the nature of this issue, systems deployed using affected versions of t...
Gliderlabs Docker-alpine
Opensuse Leap 15.0
Opensuse Leap 15.1
F5 Big-ip Controller 1.2.1
3 Github repositories
10
CVSSv2
CVE-2019-11627
gpg-key2ps in signing-party 1.1.x and 2.x prior to 2.10-1 contains an unsafe shell call enabling shell injection via a User ID.
Signing-party Project Signing-party
Debian Debian Linux 8.0
Opensuse Leap 42.3
Opensuse Leap 15.0
10
CVSSv2
CVE-2016-9961
game-music-emu prior to 0.6.1 mishandles unspecified integer values.
Game-music-emu Project Game-music-emu
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Opensuse Project Leap 42.1
Opensuse Leap 42.2
Novell Suse Linux Enterprise Software Development Kit 12.0
Novell Suse Linux Enterprise Desktop 12.0
Novell Suse Linux Enterprise Server 12.0
10
CVSSv2
CVE-2016-4007
Multiple unspecified vulnerabilities in the obs-service-extract_file package prior to 0.3-5.1 in openSUSE Leap 42.1 and prior to 0.3-3.1 in openSUSE 13.2 allow malicious users to execute arbitrary commands via a service definition, related to executing unzip with "illegal op...
Opensuse Leap 42.1
Opensuse Opensuse 13.2
10
CVSSv2
CVE-2016-2315
revision.c in git prior to 2.7.4 uses an incorrect integer data type, which allows remote malicious users to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.
Suse Openstack Cloud 5
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Server 12
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Debuginfo 11
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Suse Suse Linux Enterprise Server 12
Git-scm Git 2.7.3
1 Article
10
CVSSv2
CVE-2016-2324
Integer overflow in Git prior to 2.7.4 allows remote malicious users to execute arbitrary code via a (1) long filename or (2) many nested trees, which triggers a heap-based buffer overflow.
Suse Openstack Cloud 5
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Software Development Kit 12.0
Suse Linux Enterprise Server 12.0
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Debuginfo 11
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Suse Suse Linux Enterprise Server 12
Git-scm Git
1 Article
10
CVSSv2
CVE-2016-1931
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 44.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to uninitialized memory encounter...
Mozilla Firefox
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
10
CVSSv2
CVE-2016-1944
The Buffer11::NativeBuffer11::map function in ANGLE, as used in Mozilla Firefox prior to 44.0, might allow remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
Mozilla Firefox 43.0.4
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »