canonical

4,226 tracked vulnerabilities.

CVE-2020-7729 HIGH
grunt < 1.3.0 - Arbitrary Code Execution via Insecure YAML Deserialization
Sep 03, 2020
CVSS 7.1
EPSS 0.02
CVE-2020-24654 LOW
KDE Ark < 20.08.1 - Arbitrary File Write via Symlink in TAR Archive
Sep 02, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-15811 MEDIUM
Squid <4.13-5.0.4 - HTTP Request Splitting
Sep 02, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-15810 MEDIUM
Squid < 4.13 and 5.x < 5.0.4 - HTTP Request Smuggling via Relaxed Header Parsing
Sep 02, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-24584 HIGH
Django <2.2.16, <3.0.10, <3.1.1 - Info Disclosure
Sep 01, 2020
CVSS 7.5
EPSS 0.03
CVE-2020-24583 HIGH
Django <2.2.16, 3.0<10, 3.1<1 - Info Disclosure
Sep 01, 2020
CVSS 7.5
EPSS 0.03
CVE-2020-15704 MEDIUM
ppp < 2.4.7-1+ubuntu1.16.04.3 - Arbitrary File Read via MODPROBE_OPTIONS Environment Variable
Sep 01, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-14364 MEDIUM
QEMU < 5.2.0 - Out-of-bounds Read/Write in USB Emulator
Aug 31, 2020
CVSS 5.0
EPSS 0.13
CVE-2020-12829 LOW
QEMU < 5.0.1 - Denial of Service via Integer Overflow in SM501 Display Driver
Aug 31, 2020
CVSS 3.8
EPSS 0.00
CVE-2020-25031 HIGH
checkinstall 1.6.2 - Improper Link Resolution Before File Access
Aug 31, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-14415 LOW
QEMU < 5.0.0 - Divide By Zero in oss_write
Aug 27, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-24606 HIGH
Squid 3.0-4.12 and 5.x < 5.0.4 - Denial of Service via Crafted Cache Digest Response
Aug 24, 2020
CVSS 8.6
EPSS 0.06
CVE-2020-14367 MEDIUM
chrony < 3.5.1 - Denial of Service via PID File Symlink Attack
Aug 24, 2020
CVSS 6.0
EPSS 0.00
CVE-2020-14350 HIGH
PostgreSQL < 9.5.23 - Untrusted Search Path in Extension Installation Scripts
Aug 24, 2020
CVSS 7.3
EPSS 0.00
CVE-2020-8624 MEDIUM
BIND <9.16.5 - Privilege Escalation
Aug 21, 2020
CVSS 4.3
EPSS 0.02
CVE-2020-8623 HIGH
BIND 9.10.0-9.11.21, 9.12.0-9.16.5, 9.17.0-9.17.3 - Reachable Assertion via Crafted Query Packet
Aug 21, 2020
CVSS 7.5
EPSS 0.18
CVE-2020-8622 MEDIUM
BIND 9.0.0-9.11.21, 9.12.0-9.16.5, 9.17.0-9.17.3 - Reachable Assertion via Truncated TSIG Response
Aug 21, 2020
CVSS 6.5
EPSS 0.03
CVE-2020-8621 HIGH
BIND 9.14.0-9.16.5, 9.17.0-9.17.3 - DoS
Aug 21, 2020
CVSS 7.5
EPSS 0.05
CVE-2020-8620 HIGH
BIND 9.15.6-9.16.5 and 9.17.0-9.17.3 - Reachable Assertion via TCP Connection
Aug 21, 2020
CVSS 7.5
EPSS 0.08
CVE-2020-15862 HIGH
Net-SNMP < 5.8.1 - Authenticated Remote Code Execution via EXTEND MIB
Aug 20, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-15861 HIGH
Net-SNMP < 5.7.3 - Privilege Escalation via Symbolic Link Following
Aug 20, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-14356 HIGH
Linux Kernel < 5.7.10 - Null Pointer Dereference in cgroupv2 Subsystem
Aug 19, 2020
CVSS 7.8
EPSS 0.01
CVE-2020-24394 HIGH
Linux kernel <5.7.8 - Privilege Escalation
Aug 19, 2020
CVSS 7.1
EPSS 0.00
CVE-2020-1472 MEDIUM KEV
Netlogon Weak Cryptographic Authentication
Aug 17, 2020
CVSS 5.5
EPSS 0.94
CVE-2020-17538 MEDIUM
Artifex Software GhostScript <9.51 - Buffer Overflow
Aug 13, 2020
CVSS 5.5
EPSS 0.01
Products
ubuntu_linux 4,106 juju 20 lxd 19 apport 17 snapd 16 cloud-init 9 Juju 7 metal_as_a_service 5 accountsservice 4 authd 4 ubuntu_core 4 ubuntu_touch 4 landscape 3 maas 3 multipass 3 subiquity 3 Ubuntu 2 acpi-support 2 lxcfs 2 software-properties 2 ubuntu 2 ubuntu_desktop_provision 2 unity-firefox-extension 2 update-manager 2 Ubuntu 16.04 LTS 1 Ubuntu 18.04 LTS 1 Ubuntu 20.04 LTS 1 Ubuntu 22.04 LTS 1 Ubuntu 24.04 LTS 1 Ubuntu Linux 1
Quick Filters
Critical CVEs With Exploits In CISA KEV