Debian: >> Debian Linux Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in SmokePing 2.6.9 in the start and end time fields.
CVSS Score
6.1
EPSS Score
0.006
Published
2019-11-01
Mutt before 1.5.20 patch 7 allows an attacker to cause a denial of service via a series of requests to mutt temporary files.
CVSS Score
5.5
EPSS Score
0.001
Published
2019-11-01
HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack components, fail to validate server-side SSL certificates.
CVSS Score
5.9
EPSS Score
0.004
Published
2019-11-01
GLPI 0.83.7 has Local File Inclusion in common.tabs.php.
CVSS Score
7.5
EPSS Score
0.281
Published
2019-11-01
MiniDLNA has heap-based buffer overflow
CVSS Score
9.8
EPSS Score
0.082
Published
2019-11-01
evince is missing a check on number of pages which can lead to a segmentation fault
CVSS Score
5.5
EPSS Score
0.005
Published
2019-11-01
MiniUPnPd has information disclosure use of snprintf()
CVSS Score
7.5
EPSS Score
0.005
Published
2019-11-01
An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.6.6. A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of service. An attacker can initiate or accept TLS connections using crafted certificates to trigger this vulnerability.
CVSS Score
5.9
EPSS Score
0.054
Published
2019-10-31
Chicken before 4.8.0 does not properly handle NUL bytes in certain strings, which allows an attacker to conduct "poisoned NUL byte attack."
CVSS Score
6.5
EPSS Score
0.004
Published
2019-10-31
A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.0rc1 before 1.2.14 allows remote authenticated users to inject arbitrary web script or HTML via a complex value.
CVSS Score
5.4
EPSS Score
0.003
Published
2019-10-31