Vulnerability Summary for the Week of January 4, 2021

The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:  High - Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 - 10.0  Medium - Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 - 6.9  Low - Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 - 3.9 Entries may include additional information provided by organizations and efforts sponsored by Ug-CERT. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletins is compiled from external, open source reports and is not a direct result of Ug-CERT analysis.

High Vulnerabilities

Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

Directory traversal vulnerability in post- CVE- edit. in MiniCMS V1.10 allows remote 2020-

1234n -- minicms 2021-01-05 7.5 attackers to include and execute arbitrary 36052 files via the state parameter. MISC

CVE- The package asciitable.js before 1.0.3 are asciitable.js_project -- 2020-7771

vulnerable to Prototype Pollution via the 2021-01-04 7.5 asciitable.js MISC main function. MISC Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

The ASUS DSL-N17U modem with firmware 1.1.0.2 allows attackers to access the admin interface by changing the admin CVE- password without authentication via a POST 2020-

asus -- dsl-n17u_firmware request to Advanced_System_Content.asp 2021-01-04 10 35219 with the MISC uiViewTools_username=admin&uiViewToo MISC ls_Password= and uiViewTools_PasswordConfirm= substrings.

Creeper is an experimental dynamic, interpreted language. The binary release of Creeper Interpreter 1.1.3 contains potential malware. The compromised binary release was available for a few hours between CVE- December 26, 2020 at 3:22 PM EST to 2020- December 26, 2020 at 11:00 PM EST. If you chatter-social -- creeper 2021-01-04 7.5 26292 used the source code, you are **NOT** CONFIR affected. This only affects the binary M releases. The binary of unknown quality has been removed from the release. If you have downloaded the binary, please delete it and run a reputable antivirus scanner to ensure that your computer is clean. Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

clickhouse-driver before 0.1.5 allows a CVE- malicious clickhouse server to trigger a crash 2020- clickhouse-driver_project

or execute arbitrary code (on a database 2021-01-06 7.5 26759 -- clickhouse-driver client) via a crafted server response, due to a MISC buffer overflow. MISC

CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR error-based SQL injection in pubid CVE- cse_bookstore_project -- parameter in bookPerPub.php and in 2020-

2021-01-04 7.5 cse_bookstore cart.php. A successful exploitation of this 36112 vulnerability will lead to an attacker MISC dumping the entire database on which the is running.

Dell EMC Isilon OneFS versions 8.1 and later and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation CVE- vulnerability on a SmartLock Compliance 2020- dell -- emc_isilon_onefs mode cluster. The compadmin user 2021-01-05 7.2 26181 connecting using ISI PRIV LOGIN SSH or MISC ISI PRIV LOGIN CONSOLE can elevate privileges to the root user if they have ISI PRIV HARDENING privileges. Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

CVE- This affects the package djv before 2.1.4. By 2020- controlling the schema file, an attacker can 28464 djv_project -- djv 2021-01-04 10 run arbitrary JavaScript code on the victim MISC machine. MISC MISC

CVE- MyDrivers64.sys in DriverGenius 2020- drivergenius -- 9.61.3708.3054 allows attackers to cause a

2021-01-03 7.1 28841 drivergenius_firmware system crash via the ioctl command MISC 0x9c402000 to \\.\MyDrivers0_0_1. MISC

FasterXML jackson-databind 2.x before CVE- 2.9.10.8 mishandles the interaction between 2020- fasterxml -- jackson-

serialization gadgets and typing, related to 2021-01-06 7.5 36185 databind org.apache.tomcat.dbcp.dbcp2.datasources.S MISC haredPoolDataSource. MISC

FasterXML jackson-databind 2.x before CVE- 2.9.10.8 mishandles the interaction between 2020- fasterxml -- jackson-

serialization gadgets and typing, related to 2021-01-06 7.5 36181 databind org.apache.tomcat.dbcp.dbcp.cpdsadapter.Dr MISC iverAdapterCPDS. MISC Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

FasterXML jackson-databind 2.x before CVE- 2.9.10.8 mishandles the interaction between 2020- fasterxml -- jackson-

serialization gadgets and typing, related to 2021-01-07 7.5 36182 databind org.apache.tomcat.dbcp.dbcp2.cpdsadapter. MISC DriverAdapterCPDS. MISC

FasterXML jackson-databind 2.x before CVE- 2.9.10.8 mishandles the interaction between 2020- fasterxml -- jackson-

serialization gadgets and typing, related to 2021-01-07 7.5 36183 databind org.docx4j.org.apache.xalan.lib.sql.JNDICon MISC nectionPool. MISC

FasterXML jackson-databind 2.x before CVE- 2.9.10.8 mishandles the interaction between 2020- fasterxml -- jackson-

serialization gadgets and typing, related to 2021-01-06 7.5 36184 databind org.apache.tomcat.dbcp.dbcp2.datasources.P MISC erUserPoolDataSource. MISC

FasterXML jackson-databind 2.x before CVE- 2.9.10.8 mishandles the interaction between 2020- fasterxml -- jackson-

serialization gadgets and typing, related to 2021-01-07 7.5 36179 databind oadd.org.apache.commons.dbcp.cpdsadapter. MISC DriverAdapterCPDS. MISC Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

FasterXML jackson-databind 2.x before CVE- 2.9.10.8 mishandles the interaction between 2020- fasterxml -- jackson-

serialization gadgets and typing, related to 2021-01-06 7.5 36186 databind org.apache.tomcat.dbcp.dbcp.datasources.Pe MISC rUserPoolDataSource. MISC

FasterXML jackson-databind 2.x before CVE- 2.9.10.8 mishandles the interaction between 2020- fasterxml -- jackson-

serialization gadgets and typing, related to 2021-01-06 7.5 36187 databind org.apache.tomcat.dbcp.dbcp.datasources.Sh MISC aredPoolDataSource. MISC

FasterXML jackson-databind 2.x before CVE- 2.9.10.8 mishandles the interaction between 2020- fasterxml -- jackson-

serialization gadgets and typing, related to 2021-01-06 7.5 36188 databind com.newrelic.agent.deps.ch.qos.logback.core MISC .db.JNDIConnectionSource. MISC

FasterXML jackson-databind 2.x before CVE- 2.9.10.8 mishandles the interaction between 2020- fasterxml -- jackson-

serialization gadgets and typing, related to 2021-01-06 7.5 36189 databind com.newrelic.agent.deps.ch.qos.logback.core MISC .db.DriverManagerConnectionSource. MISC Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

FasterXML jackson-databind 2.x before CVE- 2.9.10.8 mishandles the interaction between 2020- fasterxml -- jackson-

serialization gadgets and typing, related to 2021-01-07 7.5 36180 databind org.apache.commons.dbcp2.cpdsadapter.Dri MISC verAdapterCPDS. MISC

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), Q(10.0), and CVE- R(11.0) (Exynos chipsets) . The 2021- google -- android 2021-01-05 7.1 Mali GPU driver allows out-of-bounds 22495 access and a device reset. The Samsung ID is MISC SVE-2020-19174 (January 2021).

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5_2, 6.0.0.0 through 6.0.3.2, and 6.1.0.0 could allow a CVE- remote attacker to execute arbitrary code on 2019-4728 ibm -- the system, caused by the deserialization of

2021-01-05 9 XF sterling_b2b_integrator untrusted data. By sending specially crafted CONFIR request, an attacker could exploit this M vulnerability to execute arbitrary code with SYSTEM privileges. IBM X-Force ID: 172452. Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

CVE- ipeak Infosystems ibexwebCMS (aka 2021-3018 IPeakCMS) 3.5 is vulnerable to an MISC

ipeak -- ipeakcms unauthenticated Boolean-based SQL 2021-01-05 7.5 MISC injection via the id parameter on the MISC /cms/print.php page. MISC MISC

CVE- ISPConfig before 3.2.2 allows SQL 2021-3021 ispconfig -- ispconfig 2021-01-05 7.5 injection. MISC MISC

CVE- mwifiex_cmd_802_11_ad_hoc_start in 2020- drivers/net/wireless/marvell/mwifiex/join.c 36158 in the Linux kernel through 5.10.4 might linux -- linux_kernel 2021-01-05 8.3 MISC allow remote attackers to execute arbitrary MISC code via a long SSID value, aka CID- MISC 5c455c5ab332. MISC proofpoint -- rcdsvc in the Proofpoint Insider Threat CVE-

inside_threat_managemen Management Windows Agent (formerly 2021-01-06 9 2020-8884 t ObserveIT Windows Agent) before 7.9 MISC Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

allows remote authenticated users to execute CONFIR arbitrary code as SYSTEM because of M improper deserialization over named pipes.

The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before CVE- 7.9.1 contains a vulnerability in the ITM 2020- proofpoint -- 's WriteImage API. The 10658 insider_threat_manageme 2021-01-06 7.5 vulnerability allows an anonymous remote MISC nt_server attacker to execute arbitrary code with local CONFIR administrator privileges. The vulnerability is M caused by improper deserialization.

The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.9.1 contains a vulnerability in the ITM CVE- application server's 2020- proofpoint -- WriteWindowMouseWithChunksV2 API. 10656 insider_threat_manageme 2021-01-06 7.5 The vulnerability allows an anonymous MISC nt_server remote attacker to execute arbitrary code CONFIR with local administrator privileges. The M vulnerability is caused by improper deserialization. Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before CVE- 7.9.1 contains a vulnerability in the ITM 2020- proofpoint -- application server's WriteWindowMouse 10655 insider_threat_manageme API. The vulnerability allows an anonymous 2021-01-06 7.5 MISC nt_server remote attacker to execute arbitrary code CONFIR with local administrator privileges. The M vulnerability is caused by improper deserialization.

A NULL pointer deference vulnerability has CVE- been identified in the protocol converter. An 2020- redlion -- crimson attacker could send a specially crafted packet 2021-01-06 7.8 27279 that could reboot the device running Crimson MISC 3.1 (Build versions prior to 3119.001).

The REST/JSON project 7.x-1.x for Drupal CVE- allows field access bypass, aka SA- rest\/json_project -- 2016-

CONTRIB-2016-033. NOTE: This project is 2021-01-01 7.5 rest\/json 20004 not covered by Drupal's security advisory MISC policy. rest\/json_project -- The REST/JSON project 7.x-1.x for Drupal CVE-

2021-01-01 7.5 rest\/json allows node access bypass, aka SA- 2016- Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

CONTRIB-2016-033. NOTE: This project is 20001 not covered by Drupal's security advisory MISC policy.

The REST/JSON project 7.x-1.x for Drupal CVE- allows comment access bypass, aka SA- rest\/json_project -- 2016-

CONTRIB-2016-033. NOTE: This project is 2021-01-01 7.5 rest\/json 20002 not covered by Drupal's security advisory MISC policy.

The REST/JSON project 7.x-1.x for Drupal CVE- allows user registration bypass, aka SA- rest\/json_project -- 2016-

CONTRIB-2016-033. NOTE: This project is 2021-01-01 7.5 rest\/json 20005 not covered by Drupal's security advisory MISC policy.

A directory traversal vulnerability in file CVE- upload function of Gotenberg through 6.2.1 2020- thecodingmachine -- allows an attacker to upload and overwrite

2021-01-07 7.5 13450 gotenberg any writable files outside the intended folder. MISC This can lead to DoS, a change to program MISC behavior, or code execution. Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

An incomplete-cleanup vulnerability in the CVE- Office rendering engine of Gotenberg 2020- thecodingmachine --

through 6.2.1 allows an attacker to overwrite 2021-01-07 7.5 13451 gotenberg LibreOffice configuration files and execute MISC arbitrary code via macros. MISC

In Gotenberg through 6.2.1, insecure CVE- permissions for tini (writable by user 2020- thecodingmachine --

gotenberg) potentially allow an attacker to 2021-01-07 7.5 13452 gotenberg overwrite the file, which can lead to denial of MISC service or code execution. MISC

FUEL CMS 1.4.11 allows SQL Injection via CVE- parameter 'name' in /fuel/permissions/create/. 2020- thedaylightstudio -- Exploiting this issue could allow an attacker 26045

2021-01-05 7.5 fuel_cms to compromise the application, access or MISC modify data, or exploit latent vulnerabilities MISC in the underlying database. MISC

A flaw was found in OpenJPEG in versions CVE- prior to 2.4.0. This flaw allows an attacker to 2020- uclouvain -- openjpeg provide specially crafted input to the 2021-01-05 7.1 27843 conversion or encoding functionality, MISC causing an out-of-bounds read. The highest Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

threat from this vulnerability is system availability.

A flaw was found in openjpeg's src/lib/openjp2/t2.c in versions prior to 2.4.0. This flaw allows an attacker to provide CVE- crafted input to openjpeg during conversion 2020- uclouvain -- openjpeg 2021-01-05 8.3 and encoding, causing an out-of-bounds 27844 write. The highest threat from this MISC vulnerability is to confidentiality, integrity, as well as system availability.

An issue was discovered in the Ultimate Member plugin before 2.1.12 for WordPress, aka Unauthenticated Privilege Escalation via User Meta. An attacker could supply an CVE- array parameter for sensitive metadata, such 2020- ultimatemember -- as the wp_capabilities user meta that defines 36155

2021-01-04 7.5 ultimate_member a user's role. During the registration process, MISC submitted registration details were passed to MISC the update_profile function, and any MISC metadata was accepted, e.g., wp_capabilities[administrator] for Administrator access. Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

An issue was discovered in the Ultimate Member plugin before 2.1.12 for WordPress, aka Unauthenticated Privilege Escalation via CVE- User Roles. Due to the lack of filtering on 2020- ultimatemember -- the role parameter that could be supplied 36157

2021-01-04 7.5 ultimate_member during the registration process, an attacker MISC could supply the role parameter with a MISC WordPress capability (or any custom MISC Ultimate Member role) and effectively be granted those privileges.

An exploitable local privilege elevation vulnerability exists in the file system permissions of the Mobile-911 Server V2.5 CVE- install directory. Depending on the vector win911 -- mobile- 2020-

chosen, an attacker can overwrite the service 2021-01-05 7.2 911_server 13541 executable and execute arbitrary code with MISC System privileges or replace other files within the installation folder that could lead to local privilege escalation.

Medium Vulnerabilities Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

Directory traversal vulnerability in CVE- page_edit.php in MiniCMS V1.10 2020-

1234n -- minicms 2021-01-05 5 allows remote attackers to read arbitrary 36051 files via the state parameter. MISC

The Advanced Custom Fields plugin CVE- advancedcustomfields -- before 5.8.12 for WordPress mishandles 2020-

2021-01-06 4.3 advanced_custom_fields the escaping of strings in Select2 36172 dropdowns, potentially leading to XSS. MISC

CVE- Apache Flink 1.5.1 introduced a REST 2020- handler that allows you to write an 17518 uploaded file to an arbitrary location on MLIST the local file system, through a MLIST maliciously modified HTTP HEADER. MLIST The files can be written to any location MLIST apache -- flink 2021-01-05 5 accessible by Flink 1.5.1. All users MLIST should upgrade to Flink 1.11.3 or 1.12.0 MLIST if their Flink instance(s) are exposed. MISC The issue was fixed in commit MLIST a5264a6f41524afe8ceadf1d8ddc8c80f32 MLIST 3ebc4 from apache/flink:master. MLIST MLIST Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

A change introduced in Apache Flink CVE- 1.11.0 (and released in 1.11.1 and 1.11.2 2020- as well) allows attackers to read any file 17519 on the local filesystem of the MISC JobManager through the REST interface MLIST of the JobManager process. Access is MLIST

apache -- flink restricted to files accessible by the 2021-01-05 5 MLIST JobManager process. All users should MLIST upgrade to Flink 1.11.3 or 1.12.0 if their MLIST Flink instance(s) are exposed. The issue MISC was fixed in commit MLIST b561010b0ee741543c3953306037f00d7 MLIST a9f0801 from apache/flink:master. MLIST

CA Service Catalog 17.2 and 17.3 CVE- contain a vulnerability in the default 2020-

broadcom -- ca_service_catalog configuration of the Setup Utility that 2021-01-05 5 29478 may allow a remote attacker to cause a CONFIR denial of service condition. M

Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text CVE- Password Storage Vulnerability in 2020- dell -- emc_powerstore_firmware 2021-01-05 4.6 PowerStore X & T environments. A 29502 locally authenticated attacker could MISC potentially exploit this vulnerability, Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account.

Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage Vulnerability in PowerStore X & T environments. A CVE- locally authenticated attacker could 2020- dell -- emc_powerstore_firmware potentially exploit this vulnerability, 2021-01-05 4.6 29501 leading to the disclosure of certain user MISC credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account.

Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage Vulnerability in CVE- PowerStore T environments. A locally 2020- dell -- emc_powerstore_firmware 2021-01-05 4.6 authenticated attacker could potentially 29500 exploit this vulnerability, leading to the MISC disclosure of certain user credentials. The attacker may be able to use the Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

exposed credentials to access the vulnerable application with privileges of the compromised account.

Dell Wyse Management Suite versions prior to 3.1 contain an open redirect vulnerability. A remote unauthenticated attacker could potentially exploit this CVE- vulnerability to redirect application 2020- dell -- wyse_management_suite users to arbitrary web URLs by tricking 2021-01-04 5.8 29498 the victim users to click on maliciously MISC crafted links. The vulnerability could be used to conduct phishing attacks that cause users to unknowingly visit malicious sites.

Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. A remote CVE- unauthenticated attacker could 2020- dell -- wyse_thinos 2021-01-04 6.4 potentially exploit this vulnerability to 29492 access the writable file and manipulate MISC the configuration of any target specific station. Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. A remote CVE- unauthenticated attacker could 2020- dell -- wyse_thinos potentially exploit this vulnerability to 2021-01-04 5 29491 gain access to the sensitive information MISC on the local network, leading to the potential compromise of impacted thin clients.

CVE- Cross Site Scripting (XSS) vulnerability 2020- in Digisol DG-HR3400 can be exploited 35262 digisol -- dg-hr3400_firmware via the NTP server name in Time and 2021-01-06 4.3 MISC date module and "Keyword" in URL MISC Filter. MISC

CVE- An issue was discovered in Dovecot 2020- before 2.3.13. By using IMAP IDLE, an 24386 authenticated attacker can trigger MISC

dovecot -- dovecot unhibernation via attacker-controlled 2021-01-04 6.5 FULLDIS parameters, leading to access to other C users' email messages (and path CONFIR disclosure). M MISC Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

CONFIR M MISC GENTOO DEBIAN

CVE- 2020- 25275 MISC Dovecot before 2.3.13 has Improper FULLDIS Input Validation in lda, lmtp, and imap, C

dovecot -- dovecot leading to an application crash via a 2021-01-04 5 CONFIR crafted email message with certain M choices for ten thousand MIME parts. CONFIR M MISC GENTOO DEBIAN

An issue was discovered in the Quiz and CVE- Survey Master plugin before 7.0.1 for 2020- expresstech -- WordPress. It allows users to delete

2021-01-01 6.4 35951 quiz_and_survey_master arbitrary files such as wp-config.php MISC file, which could effectively take a site MISC offline and allow an attacker to reinstall Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

with a WordPress instance under their control. This occurred via qsm_remove_file_fd_question, which allowed unauthenticated deletions (even though it was only intended for a person to delete their own quiz-answer files).

CVE- decode_frame in libavcodec/exr.c in 2020- FFmpeg 4.3.1 has an out-of-bounds 35965 ffmpeg -- ffmpeg write because of errors in calculations of 2021-01-04 5 MISC when to perform memset zero MISC operations. MISC

CVE- track_header in libavformat/vividas.c in 2020- FFmpeg 4.3.1 has an out-of-bounds ffmpeg -- ffmpeg 2021-01-03 4.3 35964 write because of incorrect extradata MISC packing. MISC

Foxit Reader before 9.5, and CVE- PhantomPDF before 8.3.10 and 9.x 2018- foxitsoftware -- phantompdf 2021-01-07 6.8 before 9.5, has a proxyPreviewAction 20313 race condition that can cause a stack- MISC Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

based buffer overflow or an out-of- bounds read.

Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x CVE- before 9.5, has a proxyDoAction race 2018- foxitsoftware -- phantompdf condition that can cause a stack-based 2021-01-07 6.8 20312 buffer overflow or an out-of-bounds MISC read, a different issue than CVE-2018- 20310 because of a different opcode.

Foxit Reader before 9.5, and CVE- PhantomPDF before 8.3.10 and 9.x 2018- foxitsoftware -- phantompdf before 9.5, has a race condition that can 2021-01-07 6.8 20315 cause a stack-based buffer overflow or MISC an out-of-bounds read.

Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x CVE- before 9.5, has a proxyCheckLicence 2018- foxitsoftware -- phantompdf 2021-01-07 6.8 race condition that can cause a stack- 20314 based buffer overflow or an out-of- MISC bounds read. Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x CVE- before 9.5, has a proxyDoAction race 2018- foxitsoftware -- phantompdf condition that can cause a stack-based 2021-01-07 6.8 20316 buffer overflow or an out-of-bounds MISC read, a different issue than CVE-2018- 20310 because of a different opcode.

Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x CVE- before 9.5, has a proxyCPDFAction race 2018- foxitsoftware -- phantompdf 2021-01-07 6.8 condition that can cause a stack-based 20311 buffer overflow or an out-of-bounds MISC read.

Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x CVE- before 9.5, has a proxyGetAppEdition 2018- foxitsoftware -- phantompdf 2021-01-07 6.8 race condition that can cause a stack- 20309 based buffer overflow or an out-of- MISC bounds read.

Foxit Reader before 9.5, and CVE- foxitsoftware -- phantompdf PhantomPDF before 8.3.10 and 9.x 2021-01-07 6.8 2018- before 9.5, has a proxyDoAction race Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

condition that can cause a stack-based 20310 buffer overflow or an out-of-bounds MISC read.

CVE- GigaVUE-OS (GVOS) 5.4 - 5.9 stores a 2020- gigamon -- gigavue-os 2021-01-05 4 Redis database password in plaintext. 23249 MISC

GJSON <=v1.6.5 allows attackers to CVE- cause a denial of service (panic: runtime 2020- gjson_project -- gjson 2021-01-05 5 error: slice bounds out of range) via a 36067 crafted GET call. MISC

CVE- GJSON <1.6.5 allows attackers to cause 2020- gjson_project -- gjson a denial of service (remote) via crafted 2021-01-05 5 36066 JSON. MISC

There's a flaw in CVE- bfd_pef_scan_start_address() of 2020-

gnu -- binutils bfd/pef.c in binutils which could allow 2021-01-04 4.3 35496 an attacker who is able to submit a MISC crafted file to be processed by objdump FEDORA Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

to cause a NULL pointer dereference. The greatest threat of this flaw is to application availability. This flaw affects binutils versions prior to 2.34.

There's a flaw in binutils /opcodes/tic4x- dis.c. An attacker who is able to submit a crafted input file to be processed by CVE- binutils could cause usage of 2020-

gnu -- binutils uninitialized memory. The highest threat 2021-01-04 5.8 35494 is to application availability with a MISC lower threat to data confidentiality. This FEDORA flaw affects binutils versions prior to 2.34.

A flaw exists in binutils in bfd/pef.c. An attacker who is able to submit a crafted CVE- PEF file to be parsed by objdump could 2020-

gnu -- binutils cause a heap buffer overflow -> out-of- 2021-01-04 4.3 35493 bounds read that could lead to an impact MISC to application availability. This flaw FEDORA affects binutils versions prior to 2.34.

There's a flaw in binutils /bfd/pef.c. An CVE- gnu -- binutils 2021-01-04 4.3 attacker who is able to submit a crafted 2020- Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

input file to be processed by the 35495 objdump program could cause a null MISC pointer dereference. The greatest threat FEDORA from this flaw is to application availability. This flaw affects binutils versions prior to 2.34.

There's a flaw in bfd_pef_parse_function_stubs of bfd/pef.c in binutils which could allow CVE- an attacker who is able to submit a 2020- gnu -- binutils crafted file to be processed by objdump 2021-01-04 4.3 35507 to cause a NULL pointer dereference. MISC The greatest threat of this flaw is to application availability. This flaw affects binutils versions prior to 2.34.

The iconv feature in the GNU C Library CVE- (aka glibc or libc6) through 2.32, when 2019-

gnu -- glibc processing invalid multi-byte input 2021-01-04 5 25013 sequences in the EUC-KR encoding, MISC may have a buffer over-read. MISC

In x/text in Go 1.15.4, an "index out of CVE- golang -- go 2021-01-02 5 range" panic occurs in 2020- Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

language.ParseAcceptLanguage while 28851 parsing the -u- extension. MISC (x/text/language is supposed to be able to parse an HTTP Accept-Language header.)

In x/text in Go 1.15.4, a "slice bounds out of range" panic occurs in CVE- language.ParseAcceptLanguage while 2020- golang -- go processing a BCP 47 tag. 2021-01-02 5 28852 (x/text/language is supposed to be able MISC to parse an HTTP Accept-Language header.)

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. The quram library CVE- allows attackers to execute arbitrary 2021- google -- android 2021-01-05 6.8 code or cause a denial of service 22493 (memory corruption) during dng MISC decoding. The Samsung ID is SVE- 2020-18811 (January 2021).

An issue was discovered in the CVE- google -- android 2021-01-05 4.3 fingerprint scanner on Samsung Note20 2021- Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

mobile devices with Q(10.0) software. 22494 When a screen protector is used, the MISC required image compensation is not present. Consequently, inversion can occur during fingerprint enrollment, and a high False Recognition Rate (FRR) can occur. The Samsung ID is SVE- 2020-19216 (January 2021).

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and CVE- Q(10.0) (Broadcom Bluetooth chipsets) 2021- google -- android 2021-01-05 5.8 software. The Bluetooth UART driver 22492 has a buffer overflow. The Samsung ID MISC is SVE-2020-18731 (January 2021).

A potential security vulnerability has been identified in HPE Integrated Lights-Out 5 (iLO 5) and Integrated CVE-

hp -- integrated_lights-out_4 Lights-Out 4 (iLO 4) firmware. The 2021-01-05 5 2020-7202 vulnerability could be remotely MISC exploited to disclose the serial number and other information. Source & Primary CVSS Description Published Patch Vendor -- Product Score Info

HtmlSanitizer is a .NET library for cleaning HTML fragments and documents from constructs that can lead to XSS attacks. In HtmlSanitizer before CVE- version 5.0.372, there is a possible XSS 2020- bypass if style tag is allowed. If you 26293 have explicitly allowed the `