Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
validator vulnerabilities and exploits
(subscribe to this query)
4.9
CVSSv2
CVE-2020-25641
A flaw was found in the Linux kernel's implementation of biovecs in versions prior to 5.9-rc7. A zero-length biovec request issued by the block subsystem could cause the kernel to enter an infinite loop, causing a denial of service. This flaw allows a local attacker with bas...
Linux Linux Kernel 5.9.0
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Opensuse Leap 15.1
Opensuse Leap 15.2
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 20.04
4.6
CVSSv2
CVE-2020-14390
A flaw was found in the Linux kernel in versions prior to 5.9-rc6. When changing screen size, an out-of-bounds memory write can occur leading to memory corruption or a denial of service. Due to the nature of the flaw, privilege escalation cannot be fully ruled out.
Linux Linux Kernel
Linux Linux Kernel 5.9.0
Debian Debian Linux 9.0
4.7
CVSSv2
CVE-2020-14385
A flaw was found in the Linux kernel prior to 5.9-rc4. A failure of the file system metadata validator in XFS can cause an inode with a valid, user-creatable extended attribute to be flagged as corrupt. This can lead to the filesystem being shutdown, or otherwise rendered inacces...
Linux Linux Kernel 5.9.0
Linux Linux Kernel
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 20.04
2.1
CVSSv2
CVE-2020-14314
A memory out-of-bounds read flaw was found in the Linux kernel prior to 5.9-rc2 with the ext3/ext4 file system, in the way it accesses a directory with broken indexing. This flaw allows a local user to crash the system if the directory exists. The highest threat from this vulnera...
Linux Linux Kernel 5.9.0
Linux Linux Kernel
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Starwindsoftware Starwind Virtual San V8
1.9
CVSSv2
CVE-2020-25284
The rbd block device driver in drivers/block/rbd.c in the Linux kernel up to and including 5.8.9 used incomplete permission checking for access to rbd devices, which could be leveraged by local malicious users to map or unmap rbd block devices, aka CID-f44d04e696fe.
Linux Linux Kernel
Debian Debian Linux 9.0
Opensuse Leap 15.1
4.4
CVSSv2
CVE-2020-25285
A race condition between hugetlb sysctl handlers in mm/hugetlb.c in the Linux kernel prior to 5.8.8 could be used by local malicious users to corrupt memory, cause a NULL pointer dereference, or possibly have unspecified other impact, aka CID-17743798d812.
Linux Linux Kernel
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
4.4
CVSSv2
CVE-2020-25212
A TOCTOU mismatch in the NFS client code in the Linux kernel prior to 5.8.3 could be used by local malicious users to corrupt memory or possibly have unspecified other impact because a size check is in fs/nfs/nfs4proc.c instead of fs/nfs/nfs4xdr.c, aka CID-b4487b935452.
Linux Linux Kernel
Debian Debian Linux 9.0
Opensuse Leap 15.1
Opensuse Leap 15.2
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
7.5
CVSSv2
CVE-2020-17479
jpv (aka Json Pattern Validator) prior to 2.2.2 does not properly validate input, as demonstrated by a corrupted array.
Json Pattern Validator Project Json Pattern Validator
6.4
CVSSv2
CVE-2020-16163
An issue exists in RIPE NCC RPKI Validator 3.x prior to 3.1-2020.07.06.14.28. RRDP fetches proceed even with a lack of validation of a TLS HTTPS endpoint. This allows remote malicious users to bypass intended access restrictions, or to trigger denial of service to traffic directe...
Ripe Rpki Validator 3
5.8
CVSSv2
CVE-2020-16164
An issue exists in RIPE NCC RPKI Validator 3.x up to and including 3.1-2020.07.06.14.28. It allows remote malicious users to bypass intended access restrictions or to cause a denial of service on dependent routing systems by strategically withholding RPKI Route Origin Authorisati...
Ripe Rpki Validator 3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »