Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intel microcode vulnerabilities and exploits
(subscribe to this query)
4.7
CVSSv3
CVE-2020-12114
A pivot_root race condition in fs/namespace.c in the Linux kernel 4.4.x prior to 4.4.221, 4.9.x prior to 4.9.221, 4.14.x prior to 4.14.178, 4.19.x prior to 4.19.119, and 5.x prior to 5.3 allows local users to cause a denial of service (panic) by corrupting a mountpoint reference ...
Linux Linux Kernel
6.7
CVSSv3
CVE-2020-12464
usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel prior to 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925.
Linux Linux Kernel
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Hci Storage Nodes -
Netapp Aff A700s -
Netapp Active Iq Unified Manager -
Netapp Hci Compute Node -
Netapp Solidfire \\& Hci Storage Node -
Netapp Solidfire Baseboard Management Controller -
Netapp Hci Baseboard Management Controller H300s
Netapp Hci Baseboard Management Controller H500s
Netapp Hci Baseboard Management Controller H700s
Netapp Hci Baseboard Management Controller H410s
Netapp Hci Baseboard Management Controller H410c
Netapp Hci Baseboard Management Controller H610c
Netapp Hci Baseboard Management Controller H610s
Netapp Hci Baseboard Management Controller H615c
1 Article
7.1
CVSSv3
CVE-2020-11668
In the Linux kernel prior to 5.6.1, drivers/media/usb/gspca/xirlink_cit.c (aka the Xirlink camera USB driver) mishandles invalid descriptors, aka CID-a246b4d54770.
Linux Linux Kernel
6.8
CVSSv3
CVE-2020-2732
A flaw exists in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that should be inaccessible to the L2 guest.
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
4.3
CVSSv3
CVE-2020-11609
An issue exists in the stv06xx subsystem in the Linux kernel prior to 5.6.1. drivers/media/usb/gspca/stv06xx/stv06xx.c and drivers/media/usb/gspca/stv06xx/stv06xx_pb0100.c mishandle invalid descriptors, as demonstrated by a NULL pointer dereference, aka CID-485b06aadb93.
Linux Linux Kernel
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
4.3
CVSSv3
CVE-2020-11608
An issue exists in the Linux kernel prior to 5.6.1. drivers/media/usb/gspca/ov519.c allows NULL pointer dereferences in ov511_mode_init_regs and ov518_mode_init_regs when there are zero endpoints, aka CID-998912346c0d.
Linux Linux Kernel
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
6
CVSSv3
CVE-2020-11565
An issue exists in the Linux kernel up to and including 5.6.2. mpol_parse_str in mm/mempolicy.c has a stack-based out-of-bounds write because an empty nodelist is mishandled during mount option parsing, aka CID-aa9f7d5172fa. NOTE: Someone in the security community disagrees that ...
Linux Linux Kernel
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
4.4
CVSSv3
CVE-2020-11494
An issue exists in slc_bump in drivers/net/can/slcan.c in the Linux kernel 3.16 up to and including 5.6.2. It allows malicious users to read uninitialized can_frame data, potentially containing sensitive information from kernel stack memory, if the configuration lacks CONFIG_INIT...
Linux Linux Kernel
Opensuse Leap 15.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
5.3
CVSSv3
CVE-2020-10942
In the Linux kernel prior to 5.5.8, get_raw_socket in drivers/vhost/net.c lacks validation of an sk_family field, which might allow malicious users to trigger kernel stack corruption via crafted system calls.
Linux Linux Kernel
Opensuse Leap 15.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
7.1
CVSSv3
CVE-2020-9383
An issue exists in the Linux kernel 3.16 up to and including 5.5.6. set_fdc in drivers/block/floppy.c leads to a wait_til_ready out-of-bounds read because the FDC index is not checked for errors before assigning it, aka CID-2e90ca68b0d2.
Linux Linux Kernel
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Opensuse Leap 15.1
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Data Availability Services -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Solidfire Baseboard Management Controller Firmware -
Netapp H410c Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »