The Regents of the University of California

3 exploits Active since Dec 2019
CVE-2019-19519 WRITEUP HIGH WRITEUP
OpenBSD 6.6 - Authentication Bypass via su -L Option
In OpenBSD 6.6, local users can use the su -L option to achieve any login class (often excluding root) because there is a logic error in the main function in su/su.c.
CVSS 7.8
CVE-2020-10188 WRITEUP CRITICAL WRITEUP
Juniper Junos - Remote Code Execution via Buffer Overflow in telnetd utility.c
utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem functions.
CVSS 9.8
CVE-2020-24863 WRITEUP MEDIUM WRITEUP
MidnightBSD < 1.2.7 and 1.3-2020-08-19 - Out-of-bounds Write via kern_getfsstat Size Value
A memory corruption vulnerability was found in the kernel function kern_getfsstat in MidnightBSD before 1.2.7 and 1.3 through 2020-08-19, and FreeBSD through 11.4, that allows an attacker to trigger an invalid free and crash the system via a crafted size value in conjunction with an invalid mode.
CVSS 5.5