Skip to main content
CVE-2020-25575 CRITICAL POC PATCH Act Now

An issue was discovered in the failure crate through 0.1.5 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Information Disclosure Failure
NVD GitHub
CVSS 3.1
9.8
EPSS
2.9%
CVE-2020-25573 CRITICAL POC PATCH Act Now

An issue was discovered in the linked-hash-map crate before 0.5.3 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Memory Corruption Linked Hash Map
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
CVE-2020-24660 CRITICAL POC PATCH Act Now

An issue was discovered in LemonLDAP::NG through 2.0.8, when NGINX is used. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js Authentication Bypass Nginx Lemonldap Debian Linux
NVD GitHub
CVSS 3.1
9.8
EPSS
2.3%
CVE-2020-11684 CRITICAL POC PATCH Act Now

AT91bootstrap before 3.9.2 does not properly wipe encryption and authentication keys from memory before passing control to a less privileged software component. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure At91Bootstrap
NVD GitHub
CVSS 3.1
9.1
EPSS
1.1%
CVE-2020-13300 CRITICAL Act Now

GitLab CE/EE version 13.3 prior to 13.3.4 was vulnerable to an OAuth authorization scope change without user consent in the middle of the authorization flow. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Gitlab Authentication Bypass
NVD
CVSS 3.1
10.0
EPSS
1.3%
CVE-2020-13312 CRITICAL Act Now

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Gitlab Information Disclosure
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2020-25576 CRITICAL PATCH Act Now

An issue was discovered in the rand_core crate before 0.4.2 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Rand
NVD
CVSS 3.1
9.8
EPSS
1.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy