Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
CVE-2020-14386 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2020-14386
A flaw was found in the Linux kernel prior to 5.9-rc4. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity.
Linux Linux Kernel 5.9.0
Linux Linux Kernel
Debian Debian Linux 9.0
Fedoraproject Fedora 33
Opensuse Leap 15.1
3 Github repositories
5.5
CVSSv3
CVE-2020-12655
An issue exists in xfs_agf_verify in fs/xfs/libxfs/xfs_alloc.c in the Linux kernel up to and including 5.6.10. Attackers may trigger a sync of excessive duration via an XFS v5 image with crafted metadata, aka CID-d0c7feaf8767.
Linux Linux Kernel
6.5
CVSSv3
CVE-2020-24490
Improper buffer restrictions in BlueZ may allow an unauthenticated user to potentially enable denial of service via adjacent access. This affects all Linux kernel versions that support BlueZ.
Bluez Bluez -
1 Github repository
7.8
CVSSv3
CVE-2020-0423
In binder_release_work of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
Google Android -
Debian Debian Linux 9.0
8.8
CVSSv3
CVE-2020-12351
Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
Linux Linux Kernel 5.9.0
Linux Linux Kernel
Linux Linux Kernel 5.9.1
1 Github repository
6.5
CVSSv3
CVE-2020-12352
Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.
Linux Linux Kernel
5.5
CVSSv3
CVE-2020-10766
A logic bug flaw was found in Linux kernel prior to 5.8-rc1 in the implementation of SSBD. A bug in the logic handling allows an attacker with a local account to disable SSBD protection during a context switch when additional speculative execution mitigations are in place. This i...
Linux Linux Kernel
5.5
CVSSv3
CVE-2020-10767
A flaw was found in the Linux kernel prior to 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available or when the Enhanced Indirect Branch Restricted Speculation (IBRS) is available....
Linux Linux Kernel
5.5
CVSSv3
CVE-2020-10768
A flaw was found in the Linux Kernel prior to 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being 'force disabled' when it is not and opens the system to Spectr...
Linux Linux Kernel
6
CVSSv3
CVE-2020-25211
In the Linux kernel up to and including 5.8.7, local attackers able to inject conntrack netlink configuration could overflow a local buffer, causing crashes or triggering use of incorrect protocol numbers in ctnetlink_parse_tuple_filter in net/netfilter/nf_conntrack_netlink.c, ak...
Linux Linux Kernel
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started