CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-25014 – istio-pilot: requests to debug api can result in panic
https://notcve.org/view.php?id=CVE-2019-25014
29 Jan 2021 — Issues addressed include integer overflow and null pointer vulnerabilities. • https://bugzilla.redhat.com/show_bug.cgi?id=1919066 • CWE-125: Out-of-bounds Read CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 2%CPEs: 33EXPL: 0CVE-2021-3326 – glibc: Assertion failure in ISO-2022-JP-3 gconv module related to combining characters
https://notcve.org/view.php?id=CVE-2021-3326
27 Jan 2021 — Issues addressed include code execution, cross site scripting, denial of service, integer overflow, and null pointer vulnerabilities. • http://www.openwall.com/lists/oss-security/2021/01/28/2 • CWE-617: Reachable Assertion •
CVSS: 9.8EPSS: 0%CPEs: 23EXPL: 2CVE-2021-1782 – Apple Multiple Products Race Condition Vulnerability
https://notcve.org/view.php?id=CVE-2021-1782
27 Jan 2021 —  Apple tiene conocimiento de un reporte que indica que este problema puede haber sido explotado activamente. macOS Big Sur 11.2, Security Update 2021-001 Catalina, and Security Update 2021-001 Mojave address buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://github.com/synacktiv/CVE-2021-1782 • CWE-667: Improper Locking •
CVSS: 9.8EPSS: 1%CPEs: 10EXPL: 0CVE-2021-1870 – Apple iOS, iPadOS, and macOS WebKit Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-1870
27 Jan 2021 — The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. macOS Big Sur 11.2, Security Update 2021-001 Catalina, and Security Update 2021-001 Mojave address buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN6ZOD62CTO54CHTMJTHVEF6R2Y532TJ • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 1%CPEs: 9EXPL: 0CVE-2021-1871 – Apple iOS, iPadOS, and macOS WebKit Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-1871
27 Jan 2021 — The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. macOS Big Sur 11.2, Security Update 2021-001 Catalina, and Security Update 2021-001 Mojave address buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2020-9492 – hadoop: WebHDFS client might send SPNEGO authorization header
https://notcve.org/view.php?id=CVE-2020-9492
26 Jan 2021 — Issues addressed include denial of service, information leakage, integer overflow, and resource exhaustion vulnerabilities. • https://lists.apache.org/thread.html/r0a534f1cde7555f7208e9f9b791c1ab396d215eaaef283b3a9153429%40%3Ccommits.druid.apache.org%3E • CWE-863: Incorrect Authorization •
CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0CVE-2021-3114 – golang: crypto/elliptic: incorrect operations on the P-224 curve
https://notcve.org/view.php?id=CVE-2021-3114
26 Jan 2021 — In Go before 1.14.14 and 1.15.x before 1.15.7, crypto/elliptic/p224.go can generate incorrect outputs, related to an underflow of the lowest limb during the final complete reduction in the P-224 field. ... Issues addressed include denial of service and integer overflow vulnerabilities. • https://github.com/golang/go/commit/d95ca9138026cbe40e0857d76a81a16d03230871 • CWE-682: Incorrect Calculation •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2020-27814 – openjpeg: heap-buffer-overflow in lib/openjp2/mqc.c could result in DoS
https://notcve.org/view.php?id=CVE-2020-27814
25 Jan 2021 — Issues addressed include buffer overflow, code execution, denial of service, double free, integer overflow, null pointer, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://bugzilla.redhat.com/show_bug.cgi?id=1901998 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.7EPSS: 0%CPEs: 1EXPL: 0CVE-2021-21272 – zip slip in ORAS
https://notcve.org/view.php?id=CVE-2021-21272
25 Jan 2021 — Issues addressed include code execution, cross site scripting, denial of service, integer overflow, and null pointer vulnerabilities. • https://github.com/deislabs/oras/commit/96cd90423303f1bb42bd043cb4c36085e6e91e8e • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.5EPSS: 3%CPEs: 22EXPL: 0CVE-2020-36221 – Apple Security Advisory 2021-05-25-4
https://notcve.org/view.php?id=CVE-2020-36221
25 Jan 2021 — An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck). • http://seclists.org/fulldisclosure/2021/May/64 • CWE-191: Integer Underflow (Wrap or Wraparound) •