Shodan
Vulnerabilities
Vulnerable Software
Canonical:  >> Ubuntu Linux  >> 20.04  Security Vulnerabilities
CVE-2024-36388
MileSight DeviceHub - CWE-305 Missing Authentication for Critical Function
CVSS Score
10.0
EPSS Score
0.001
Published
2024-06-02
CVE-2024-36389
MileSight DeviceHub - CWE-330 Use of Insufficiently Random Values may allow Authentication Bypass
CVSS Score
9.8
EPSS Score
0.0
Published
2024-06-02
CVE-2024-27776
MileSight DeviceHub - CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') may allow Unauthenticated RCE
CVSS Score
9.8
EPSS Score
0.003
Published
2024-06-02
CVE-2022-2602
io_uring UAF, Unix SCM garbage collection
CVSS Score
5.3
EPSS Score
0.009
Published
2024-01-08
CVE-2022-3328
Race condition in snap-confine's must_mkdir_and_open_with_perms()
CVSS Score
7.8
EPSS Score
0.001
Published
2024-01-08
CVE-2022-2585
It was discovered that when exec'ing from a non-leader thread, armed POSIX CPU timers would be left on a list but freed, leading to a use-after-free.
CVSS Score
5.3
EPSS Score
0.003
Published
2024-01-08
CVE-2022-2586
Known exploited
It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted.
CVSS Score
5.3
EPSS Score
0.014
Published
2024-01-08
CVE-2022-2588
It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.
CVSS Score
5.3
EPSS Score
0.71
Published
2024-01-08
CVE-2023-5536
A feature in LXD (LP#1829071), affects the default configuration of Ubuntu Server which allows privileged users in the lxd group to escalate their privilege to root without requiring a sudo password.
CVSS Score
5.0
EPSS Score
0.0
Published
2023-12-12
CVE-2023-45866
Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role HID Device to initiate and establish an encrypted connection, and accept HID keyboard reports, potentially permitting injection of HID messages when no user interaction has occurred in the Central role to authorize such access. An example affected package is bluez 5.64-0ubuntu1 in Ubuntu 22.04LTS. NOTE: in some cases, a CVE-2020-0556 mitigation would have already addressed this Bluetooth HID Hosts issue.
CVSS Score
6.3
EPSS Score
0.239
Published
2023-12-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved