Canonical: >> Ubuntu Linux >> 20.04 Security Vulnerabilities
is_closing_session() allows users to create arbitrary tcp dbus connections
CVSS Score
7.1
EPSS Score
0.0
Published
2024-06-04
Apport can be tricked into connecting to arbitrary sockets as the root user
CVSS Score
7.8
EPSS Score
0.001
Published
2024-06-03
There is a race condition in the 'replaced executable' detection that, with the correct local configuration, allow an attacker to execute arbitrary code as root.
CVSS Score
7.8
EPSS Score
0.031
Published
2024-06-03
MileSight DeviceHub - CWE-20 Improper Input Validation may allow Denial of Service
CVSS Score
7.5
EPSS Score
0.001
Published
2024-06-02
MileSight DeviceHub - CWE-320: Key Management Errors may allow Authentication Bypass and Man-In-The-Middle Traffic
CVSS Score
9.1
EPSS Score
0.0
Published
2024-06-02
MileSight DeviceHub - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS Score
6.1
EPSS Score
0.002
Published
2024-06-02
MileSight DeviceHub -
CWE-305 Missing Authentication for Critical Function
CVSS Score
10.0
EPSS Score
0.002
Published
2024-06-02
MileSight DeviceHub -
CWE-330 Use of Insufficiently Random Values may allow Authentication Bypass
CVSS Score
9.8
EPSS Score
0.001
Published
2024-06-02
MileSight DeviceHub -
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') may allow Unauthenticated RCE
CVSS Score
9.8
EPSS Score
0.006
Published
2024-06-02
io_uring UAF, Unix SCM garbage collection
CVSS Score
5.3
EPSS Score
0.011
Published
2024-01-08