Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
backports vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2019-3692
The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local malicious users to escalate from user inn to root via symlink attacks. This issue affects: SUSE Linux Enterprise Server 11 inn version 2.4.2-170.21.3.1 and prior versions. openSUSE F...
Suse Inn
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
7
CVSSv3
CVE-2019-3698
UNIX Symbolic Link (Symlink) Following vulnerability in the cronjob shipped with nagios of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 11; openSUSE Factory allows local malicious users to cause cause DoS or potentially escalate privileges by winning a race. This...
Nagios Nagios
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
6.5
CVSSv3
CVE-2019-20013
An issue exists in GNU LibreDWG prior to 0.93. Crafted input will lead to an attempted excessive memory allocation in decode_3dsolid in dwg.spec.
Gnu Libredwg
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
5.5
CVSSv3
CVE-2019-18899
The apt-cacher-ng package of openSUSE Leap 15.1 runs operations in user owned directory /run/apt-cacher-ng with root privileges. This can allow local malicious users to influence the outcome of these operations. This issue affects: openSUSE Leap 15.1 apt-cacher-ng versions before...
Apt-cacher-ng Project Apt-cacher-ng
Opensuse Backports Sle-15
5.3
CVSSv3
CVE-2019-15623
Exposure of Private Information in Nextcloud Server 16.0.1 causes the server to send it's domain and user IDs to the Nextcloud Lookup Server without any further data when the Lookup server is disabled.
Nextcloud Nextcloud Server
Opensuse Backports Sle 15.0
Suse Package Hub -
8.8
CVSSv3
CVE-2019-20011
An issue exists in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decode_R13_R2000 in decode.c.
Gnu Libredwg 0.9.2
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
6.5
CVSSv3
CVE-2019-20012
An issue exists in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_HATCH_private in dwg.spec.
Gnu Libredwg 0.9.2
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
6.5
CVSSv3
CVE-2019-20015
An issue exists in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_LWPOLYLINE_private in dwg.spec.
Gnu Libredwg 0.9.2
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
8.8
CVSSv3
CVE-2019-20010
An issue exists in GNU LibreDWG 0.92. There is a use-after-free in resolve_objectref_vector in decode.c.
Gnu Libredwg 0.9.2
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
8.1
CVSSv3
CVE-2020-6612
GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in copy_compressed_bytes in decode_r2007.c.
Gnu Libredwg 0.9.3.2564
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »