canonical
4,248 tracked vulnerabilities.
CVE-2020-11501
HIGH
GnuTLS <3.6.13 - Cryptographic Error
Apr 03, 2020
CVSS 7.4
EPSS 0.03
CVE-2020-11494
MEDIUM
Linux Kernel 3.16-5.6.2 - Information Disclosure via Uninitialized can_frame Data in slc_bump
Apr 02, 2020
CVSS 4.4
EPSS 0.01
CVE-2020-8835
HIGH
Linux kernel <5.6.1, <5.5.14, <5.4.29 - Memory Corruption
Apr 02, 2020
CVSS 7.8
EPSS 0.06
CVE-2020-11100
HIGH
HAProxy 1.8-2.x - Out-of-Bounds Write in HPACK Decoder via Crafted HTTP/2 Request
Apr 02, 2020
CVSS 8.8
EPSS 0.61
CVE-2020-1927
MEDIUM
Apache HTTP Server 2.4.0-2.4.41 - URL Redirection to Untrusted Site via Encoded Newlines
Apr 02, 2020
CVSS 6.1
EPSS 0.57
CVE-2020-1934
MEDIUM
Apache HTTP Server 2.4.0-2.4.41 - Use of Uninitialized Resource in mod_proxy_ftp
Apr 01, 2020
CVSS 5.3
EPSS 0.52
CVE-2020-7065
HIGH
PHP 7.3.0-7.3.15 - Stack-based Buffer Overflow in mb_strtolower() with UTF-32LE Encoding
Apr 01, 2020
CVSS 7.4
EPSS 0.05
CVE-2020-7064
MEDIUM
PHP 7.2.0-7.2.28 - Out-of-bounds Read in EXIF Data Parsing
Apr 01, 2020
CVSS 6.5
EPSS 0.04
CVE-2020-6814
CRITICAL
Firefox < 74.0 and Firefox ESR < 68.6.0 - Out-of-bounds Write
Mar 25, 2020
CVSS 9.8
EPSS 0.02
CVE-2020-6812
MEDIUM
Firefox < 74.0 and Firefox ESR < 68.6.0 - Exposure of Sensitive Information via AirPods Device Name Enumeration
Mar 25, 2020
CVSS 5.3
EPSS 0.02
CVE-2020-6811
HIGH
Firefox < 74.0 and Firefox ESR < 68.6.0 - Command Injection via Devtools Copy as cURL
Mar 25, 2020
CVSS 8.8
EPSS 0.03
CVE-2020-6807
HIGH
Firefox < 74.0 and Firefox ESR < 68.6.0 - Use-After-Free via Stream Reinitialization
Mar 25, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-6806
HIGH
Firefox < 74.0 and Firefox ESR < 68.6.0 - Out-of-bounds Read via Promise Resolution
Mar 25, 2020
CVSS 8.8
EPSS 0.03
CVE-2020-6805
HIGH
Firefox < 74.0 and Firefox ESR < 68.6.0 - Use-After-Free in Quota Manager
Mar 25, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-10942
MEDIUM
Linux kernel <5.5.8 - Memory Corruption
Mar 24, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-1951
MEDIUM
Apache Tika 1.0-1.23 - Denial of Service via Crafted PSD File
Mar 23, 2020
CVSS 5.5
EPSS 0.03
CVE-2020-1950
MEDIUM
Apache Tika 1.0-1.23 - Uncontrolled Resource Consumption in PSDParser
Mar 23, 2020
CVSS 5.5
EPSS 0.03
CVE-2020-0556
HIGH
BlueZ < 5.54 - Unauthenticated Privilege Escalation and Denial of Service via Adjacent Access
Mar 12, 2020
CVSS 7.1
EPSS 0.01
CVE-2020-10531
HIGH
International Components for Unicode < 66.1 - Heap-Based Buffer Overflow via UnicodeString::doAppend() Integer Overflow
Mar 12, 2020
CVSS 8.8
EPSS 0.03
CVE-2020-10109
CRITICAL
Twisted Web < 19.10.0 - HTTP Request Smuggling via Content-Length and Chunked Encoding
Mar 12, 2020
CVSS 9.8
EPSS 0.03
CVE-2020-10108
CRITICAL
Twisted Web < 19.10.0 - HTTP Request Smuggling via Dual Content-Length Headers
Mar 12, 2020
CVSS 9.8
EPSS 0.04
CVE-2020-10174
HIGH
Timeshift < 20.03 - Unauthenticated Race Condition via Predictable Temporary Directory
Mar 05, 2020
CVSS 7.0
EPSS 0.00
CVE-2020-9402
HIGH
NUCLEI
Django 1.11-1.11.28, 2.2-2.2.10, 3.0-3.0.3 - SQL Injection via GIS Tolerance Parameter
Mar 05, 2020
CVSS 8.8
EPSS 0.23
CVE-2020-10029
MEDIUM
glibc < 2.32 - Out-of-bounds Write in Long Double Range Reduction
Mar 04, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-10018
CRITICAL
WebKitGTK and WPE WebKit < 2.28.0 - Use-After-Free
Mar 02, 2020
CVSS 9.8
EPSS 0.05
Products
ubuntu_linux 4,120
lxd 23
juju 20
apport 17
snapd 16
Ubuntu Linux 13
cloud-init 9
Juju 7
metal_as_a_service 5
multipass 5
accountsservice 4
authd 4
ubuntu_core 4
ubuntu_touch 4
Ubuntu 3
landscape 3
maas 3
subiquity 3
LXD 2
Multipass 2
Ubuntu 20.04 LTS 2
Ubuntu 22.04 LTS 2
Ubuntu 24.04 LTS 2
acpi-support 2
lxcfs 2
software-properties 2
ubuntu 2
ubuntu_desktop_provision 2
unity-firefox-extension 2
update-manager 2
Quick Filters