Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
backports sle vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-24972
The Kleopatra component prior to 3.1.12 (and prior to 20.07.80) for GnuPG allows remote malicious users to execute arbitrary code because openpgp4fpr: URLs are supported without safe handling of command-line options. The Qt platformpluginpath command-line option can be used to lo...
Kleopatra Project Kleopatra
Fedoraproject Fedora 32
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
7.8
CVSSv3
CVE-2019-14524
An issue exists in Schism Tracker up to and including 20190722. There is a heap-based buffer overflow via a large number of song patterns in fmt_mtm_load_song in fmt/mtm.c, a different vulnerability than CVE-2019-14465.
Schismtracker Schism Tracker
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle-15
7.5
CVSSv3
CVE-2020-12672
GraphicsMagick up to and including 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c.
Graphicsmagick Graphicsmagick
Debian Debian Linux 8.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
7.5
CVSSv3
CVE-2020-6095
An exploitable denial of service vulnerability exists in the GstRTSPAuth functionality of GStreamer/gst-rtsp-server 1.14.5. A specially crafted RTSP setup request can cause a null pointer deference resulting in denial-of-service. An attacker can send a malicious packet to trigger...
Gstreamer Project Gst-rtsp-server 1.14.5
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
4.9
CVSSv3
CVE-2019-15624
Improper Input Validation in Nextcloud Server 15.0.7 allows group admins to create users with IDs of system folders.
Nextcloud Nextcloud Server
Opensuse Backports Sle-15
Suse Suse Linux Enterprise Server 12
5
CVSSv3
CVE-2020-8118
An authenticated server-side request forgery in Nextcloud server 16.0.1 allowed to detect local and remote services when adding a new subscription in the calendar application.
Nextcloud Nextcloud Server
Opensuse Backports Sle 15.0
Novell Suse Linux Enterprise Server 12.0
6.5
CVSSv3
CVE-2019-10206
ansible-playbook -k and ansible cli tools, all versions 2.8.x prior to 2.8.4, all 2.7.x prior to 2.7.13 and all 2.6.x prior to 2.6.19, prompt passwords by expanding them from templates as they could contain special characters. Passwords should be wrapped to prevent templates trig...
Redhat Ansible
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
5.3
CVSSv3
CVE-2020-8228
A missing rate limit in the Preferred Providers app 1.7.0 allowed an malicious user to set the password an uncontrolled amount of times.
Nextcloud Preferred Providers 1.7.0
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
Opensuse Leap 15.2
5.9
CVSSv3
CVE-2019-16779
In RubyGem excon prior to 0.71.0, there was a race condition around persistent connections, where a connection which is interrupted (such as by a timeout) would leave data on the socket. Subsequent requests would then read this data, returning content from the previous response. ...
Excon Project Excon
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
Debian Debian Linux 8.0
5.5
CVSSv3
CVE-2019-5460
Double Free in VLC versions <= 3.0.6 leads to a crash.
Videolan Vlc Media Player
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle-15
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »