CVE-2020-35494

MEDIUM Year: 2020
CVSS v3 Score
6.1
Medium
CVSS v2 Score
5.8
Medium
Weakness Type
CWE-908
View all →

Vulnerability Description

There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to application availability with a lower threat to data confidentiality. This flaw affects binutils versions prior to 2.34.

Related Vulnerabilities

CVE-2024-57874

MEDIUM
CVSS:6.1(Medium)

In the Linux kernel, the following vulnerability has been resolved: arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL Currently tagged_addr_ctrl_set() doesn't initialize the temporary '...

CWE-9082024

CVE-2024-57877

MEDIUM
CVSS:6.1(Medium)

In the Linux kernel, the following vulnerability has been resolved: arm64: ptrace: fix partial SETREGSET for NT_ARM_POE Currently poe_set() doesn't initialize the temporary 'ctrl' variable, and a SETR...

CWE-9082024

CVE-2024-57878

MEDIUM
CVSS:6.1(Medium)

In the Linux kernel, the following vulnerability has been resolved: arm64: ptrace: fix partial SETREGSET for NT_ARM_FPMR Currently fpmr_set() doesn't initialize the temporary 'fpmr' variable, and a SE...

CWE-9082024

CVE-2020-14703

MEDIUM
CVSS:6.0(Medium)

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Easily expl...

CWE-9082020

CVE-2020-14704

MEDIUM
CVSS:6.0(Medium)

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Easily expl...

CWE-9082020

CVE-2021-31423

MEDIUM
CVSS:6.0(Medium)

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.5-47309. An attacker must first obtain the ability to execute high-privi...

CWE-9082021