How severe is CVE-2020-27738?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.4 out of 10.

What type of vulnerability is CVE-2020-27738?

This is classified as CWE-788, which is a common weakness in software security.

CVE-2020-27738

HIGH Year: 2020

CVSS v3 Score

7.4

High

CVSS v2 Score

5.8

Medium

Weakness Type

CWE-788

View all →

Vulnerability Description

A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.3), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (Versions including affected DNS modules), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5). The DNS domain name record decompression functionality does not properly validate the pointer offset values. The parsing of malformed responses could result in a read access past the end of an allocated structure. An attacker with a privileged position in the network could leverage this vulnerability to cause a denial-of-service condition.

CVE-2023-20169

HIGH

CVSS:7.4(High)

A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco NX-OS Software for the Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone N...

CWE-7882023

CVE-2021-25660

HIGH

CVSS:7.5(High)

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\" & 15\" (inc...

CWE-7882021

CVE-2021-25661

HIGH

CVSS:7.5(High)

CWE-7882021

CVE-2023-0103

HIGH

CVSS:7.5(High)

If an attacker were to access memory locations of LS ELECTRIC XBC-DN32U with operating system version 01.80 that are outside of the communication buffer, the device stops operating. This could allow a...

CWE-7882023

CVE-2024-27829

HIGH

CVSS:7.5(High)

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.5. Processing a file may lead to unexpected app termination or arbitrary code execution.

CWE-7882024

CVE-2022-1451

HIGH

CVSS:7.1(High)

Out-of-bounds Read in r_bin_java_constant_value_attr_new function in GitHub repository radareorg/radare2 prior to 5.7.0. The bug causes the program reads data past the end 2f the intented buffer. Typi...

CWE-7882022

CVE-2020-27738

Vulnerability Description

Related Vulnerabilities

CVE-2023-20169

CVE-2021-25660

CVE-2021-25661

CVE-2023-0103

CVE-2024-27829

CVE-2022-1451