canonical

4,226 tracked vulnerabilities.

CVE-2019-7306 MEDIUM
byobu - Information Disclosure via Apport Hook
Apr 17, 2020
CVSS 4.3
EPSS 0.00
CVE-2019-12520 HIGH
Squid < 4.7 - Cache Poisoning via Decoded UserInfo in Absolute URL
Apr 15, 2020
CVSS 7.5
EPSS 0.06
CVE-2019-12519 CRITICAL
Squid < 3.5.28 - Out-of-bounds Write via ESI Expression Evaluation
Apr 15, 2020
CVSS 9.8
EPSS 0.08
CVE-2019-12524 CRITICAL
Squid < 4.7 - Unauthenticated Cache Manager Access via URL Encoding Bypass
Apr 15, 2020
CVSS 9.8
EPSS 0.01
CVE-2019-12521 MEDIUM
Squid 3.0-4.7 - Denial of Service via ESI Element Stack Overflow
Apr 15, 2020
CVSS 5.9
EPSS 0.01
CVE-2019-11480 HIGH
c-kernel < 2019-07-16 - Unauthenticated Package Installation via Hardcoded Insecure APT Options
Apr 14, 2020
CVSS 8.4
EPSS 0.00
CVE-2019-15789 HIGH
MicroK8s < 1.15.3 - Privilege Escalation via Privileged Container Provisioning
Apr 08, 2020
CVSS 8.8
EPSS 0.00
CVE-2019-18860 MEDIUM
Squid < 4.9 - Cross-Site Scripting via cachemgr.cgi Host Parameter
Mar 20, 2020
CVSS 6.1
EPSS 0.04
CVE-2019-14855 HIGH
GnuPG < 2.2.18 - Certificate Signature Forgery via SHA-1 Collision
Mar 20, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20503 MEDIUM
usrsctp < 0.9.4.0 - Out-of-bounds Read in sctp_load_addresses_from_init
Mar 06, 2020
CVSS 6.5
EPSS 0.02
CVE-2019-20382 LOW
QEMU 4.1.0 - Memory Leak in VNC Disconnect Operation
Mar 05, 2020
CVSS 3.5
EPSS 0.00
CVE-2019-17026 HIGH KEV
Firefox < 72.0.1 and Firefox ESR < 68.4.1 - Type Confusion in IonMonkey JIT Compiler
Mar 02, 2020
CVSS 8.8
EPSS 0.56
CVE-2019-19921 HIGH
runc <1.0.0-rc9 - Privilege Escalation
Feb 12, 2020
CVSS 7.0
EPSS 0.00
CVE-2019-11485 LOW
Apport - Unrestricted Externally Accessible Lock via World-Writable Directory
Feb 08, 2020
CVSS 3.3
EPSS 0.00
CVE-2019-11484 MEDIUM
whoopsie - Denial of Service via Integer Overflow in bson_ensure_space
Feb 08, 2020
CVSS 6.3
EPSS 0.00
CVE-2019-11483 HIGH
Apport - Unprotected Privileged Process Crash Report Exposure via Container Crash Dump
Feb 08, 2020
CVSS 7.0
EPSS 0.00
CVE-2019-11482 MEDIUM
Ubuntu Linux - Time-of-check Time-of-use Race Condition in Apport Core File Handling
Feb 08, 2020
CVSS 4.2
EPSS 0.00
CVE-2019-11481 LOW
Ubuntu Linux Apport - Privilege Escalation via Symbolic Link Attack
Feb 08, 2020
CVSS 3.8
EPSS 0.00
CVE-2019-12528 HIGH
Squid < 4.10 - Information Disclosure via Crafted FTP Server Response
Feb 04, 2020
CVSS 7.5
EPSS 0.24
CVE-2019-9674 HIGH
Python < 3.8 - Denial of Service via ZIP Bomb
Feb 04, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20446 MEDIUM
librsvg < 2.46.2 - Denial of Service via Nested SVG Pattern Elements
Feb 02, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-20445 CRITICAL
Netty < 4.1.44 - HTTP Request Smuggling via Duplicate Content-Length Header
Jan 29, 2020
CVSS 9.1
EPSS 0.04
CVE-2019-20444 CRITICAL
Netty < 4.1.44 - HTTP Request Smuggling via Malformed HTTP Header
Jan 29, 2020
CVSS 9.1
EPSS 0.18
CVE-2019-20421 HIGH
Exiv2 0.27.2 - Denial of Service via Infinite Loop in Jp2Image::readMetadata()
Jan 27, 2020
CVSS 7.5
EPSS 0.03
CVE-2019-17570 CRITICAL
Apache XML-RPC - Remote Code Execution via Untrusted Deserialization in XmlRpcResponseParser
Jan 23, 2020
CVSS 9.8
EPSS 0.71
Products
ubuntu_linux 4,106 juju 20 lxd 19 apport 17 snapd 16 cloud-init 9 Juju 7 metal_as_a_service 5 accountsservice 4 authd 4 ubuntu_core 4 ubuntu_touch 4 landscape 3 maas 3 multipass 3 subiquity 3 Ubuntu 2 acpi-support 2 lxcfs 2 software-properties 2 ubuntu 2 ubuntu_desktop_provision 2 unity-firefox-extension 2 update-manager 2 Ubuntu 16.04 LTS 1 Ubuntu 18.04 LTS 1 Ubuntu 20.04 LTS 1 Ubuntu 22.04 LTS 1 Ubuntu 24.04 LTS 1 Ubuntu Linux 1
Quick Filters
Critical CVEs With Exploits In CISA KEV